Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/34352e3135322e34342e302f32342d3234203d3e203437353833.roa
File: 34352e3135322e34342e302f32342d3234203d3e203437353833.roa (raw, json)
Hash identifier: A1QYKYv5aHz/0hYVgU1XGyuEm6gOyqk09HqEhkeOCDM=
Subject key identifier: 2A:C5:93:30:E0:F1:FD:65:07:BA:D0:9A:42:83:52:13:55:0A:87:7A
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 7D94F1D4C2BB27ECBD498FA3E51D32223F8FC539
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/34352e3135322e34342e302f32342d3234203d3e203437353833.roa
Signing time: Mon 27 Jan 2025 09:45:11 +0000
ROA not before: Mon 27 Jan 2025 09:40:11 +0000
ROA not after: Mon 26 Jan 2026 09:45:11 +0000
asID: 47583
IP address blocks: 45.152.44.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:94:f1:d4:c2:bb:27:ec:bd:49:8f:a3:e5:1d:32:22:3f:8f:c5:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jan 27 09:40:11 2025 GMT
Not After : Jan 26 09:45:11 2026 GMT
Subject: CN=2AC59330E0F1FD6507BAD09A42835213550A877A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:da:18:b3:75:96:6e:59:07:f1:1a:88:c3:4b:
13:00:35:f0:b7:75:fd:98:ce:95:95:dd:4d:8b:11:
12:e4:a9:f0:cf:a5:7f:3a:0b:90:dc:c6:a9:76:1b:
56:eb:2a:15:aa:a2:40:07:fa:73:52:55:7c:0c:07:
de:75:9b:97:e8:fe:12:97:7a:fc:3c:4d:d5:c1:01:
46:ef:55:2c:96:9d:86:8a:ed:6a:40:0d:ac:14:06:
8b:8b:f9:92:0c:e1:1c:34:c4:95:37:62:6a:f3:98:
94:57:37:59:ec:25:18:ec:1a:80:d4:5d:73:12:63:
9b:76:45:a5:15:ab:b1:fd:dc:11:6b:13:89:e5:96:
4b:f2:b8:6f:e4:e5:8c:7d:1f:f7:61:2e:77:52:5f:
67:ca:7d:6e:fd:7e:ab:9e:48:0f:18:69:85:d8:2e:
39:3c:95:34:9b:1f:ba:97:8e:33:74:0c:d4:ed:9f:
1e:29:3a:96:14:93:0b:28:b9:bf:0d:33:12:96:ef:
bb:a0:bb:42:73:87:3d:60:e9:50:a9:d4:3a:30:f3:
44:fd:89:39:e7:a5:e4:24:79:ef:7a:da:ab:04:bb:
3d:98:57:ce:a3:e8:10:fe:cd:2e:4b:cc:66:a2:af:
2b:d1:b2:8b:59:22:a6:5b:b9:7b:6c:66:5d:60:de:
c7:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:C5:93:30:E0:F1:FD:65:07:BA:D0:9A:42:83:52:13:55:0A:87:7A
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/34352e3135322e34342e302f32342d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.44.0/24
Signature Algorithm: sha256WithRSAEncryption
05:ae:31:13:4d:67:60:76:61:be:e9:78:6a:dc:d4:5b:38:b4:
29:4e:3b:41:e5:7d:cc:e7:10:cc:2e:07:d0:41:3d:89:0c:ae:
27:46:23:4f:ea:14:0e:a2:0d:f7:fb:2a:94:b0:d7:1c:18:45:
32:58:3f:f7:c4:39:05:79:2f:a1:83:d7:8d:90:9c:bf:f6:91:
4f:f5:15:5a:ba:67:08:78:71:6c:36:ae:30:23:ee:0f:5f:aa:
7a:d4:d2:bc:17:17:eb:4b:d5:84:88:93:65:06:be:64:70:63:
86:de:20:87:53:5e:45:bc:93:ff:3f:d8:33:91:c9:92:74:bb:
41:5b:62:67:1b:e9:4a:79:91:77:ec:b2:b2:bd:9d:ed:c8:a7:
7c:4b:fc:80:42:5e:90:87:17:4e:eb:d6:52:43:a1:8f:9f:c9:
df:d9:b9:35:af:6c:22:40:02:f8:1e:f4:15:76:ff:b5:3d:90:
58:96:f8:31:f0:dd:51:76:83:59:5a:ac:9a:58:99:2f:0e:02:
c1:7e:e7:d8:c2:45:11:85:7b:01:c0:20:64:82:0a:4e:c1:ce:
18:af:2b:80:fa:82:04:5b:7e:35:fe:32:15:77:ce:48:49:55:
a5:41:31:3d:db:68:6e:26:d8:78:7c:60:ef:c8:b1:2d:b4:1a:
b0:3e:a4:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 16:00:27 2025 by rpki-client