Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/34352e38342e33382e302f32342d3234203d3e20323039383534.roa
File: 34352e38342e33382e302f32342d3234203d3e20323039383534.roa (raw, json)
Hash identifier: WNbV98qxh3988Ic5YY3u99cvR4qKI5JQdo6X43Maj5g=
Subject key identifier: F5:49:31:94:46:C3:CA:A9:73:3C:95:8F:CE:01:3D:A9:0B:51:C8:BD
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 13E024077409A731CCC2B2E72B3EAB4E61BB25D5
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/34352e38342e33382e302f32342d3234203d3e20323039383534.roa
Signing time: Wed 19 Feb 2025 08:45:45 +0000
ROA not before: Wed 19 Feb 2025 08:40:45 +0000
ROA not after: Wed 18 Feb 2026 08:45:45 +0000
asID: 209854
IP address blocks: 45.84.38.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:e0:24:07:74:09:a7:31:cc:c2:b2:e7:2b:3e:ab:4e:61:bb:25:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Feb 19 08:40:45 2025 GMT
Not After : Feb 18 08:45:45 2026 GMT
Subject: CN=F549319446C3CAA9733C958FCE013DA90B51C8BD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d9:25:51:c4:56:01:65:eb:53:be:27:b7:c3:
ee:d8:bc:56:39:bc:8b:5c:3d:07:97:02:74:a9:40:
d7:25:09:ba:b9:62:16:49:c9:4f:dd:ec:0b:a6:4c:
4f:c1:38:99:b2:66:12:39:8a:4f:06:4d:bc:74:e5:
2e:99:73:6a:42:ec:04:7d:3c:d4:e7:5e:60:7f:68:
82:74:1e:fe:62:dc:5e:31:2a:8a:a5:d6:b9:bb:44:
1b:9c:c7:8d:1c:b8:71:80:8a:9a:cc:7f:71:2c:0d:
8d:58:b0:ab:25:13:56:8b:ac:58:5e:40:d3:24:0d:
7d:d1:f0:f9:8c:0e:ee:dd:74:e7:fe:7c:03:78:91:
97:1c:81:80:32:a9:5f:a7:cb:25:6f:ec:b9:0e:6d:
d7:0f:7f:7f:64:bb:01:b9:78:ea:87:e4:ed:a7:1c:
ca:ab:0c:79:25:ba:de:d5:3e:42:4e:76:b3:d0:f4:
18:90:1f:f8:a3:5b:2c:38:a9:19:14:ce:33:af:5a:
0c:28:a1:42:8f:09:59:90:fb:d0:be:3f:67:8f:d1:
7a:35:f5:4f:df:ef:b0:56:61:ce:f8:8e:93:f3:5c:
1b:11:5e:64:1e:89:78:da:1b:01:60:0a:9f:2f:e6:
0c:e9:a5:5a:1a:6b:26:8d:a7:31:af:79:bf:e5:84:
c2:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:49:31:94:46:C3:CA:A9:73:3C:95:8F:CE:01:3D:A9:0B:51:C8:BD
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/34352e38342e33382e302f32342d3234203d3e20323039383534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.38.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:1c:61:95:b8:5d:63:b3:3a:84:63:ac:bc:d5:e4:fb:7e:51:
62:4f:33:b4:4d:82:3e:a5:72:1c:25:a3:e6:e6:b8:36:be:79:
76:26:74:ac:2c:06:6c:7b:1e:b2:4f:47:75:4b:2d:6b:99:e8:
d5:91:65:09:19:f6:30:b9:ef:80:dd:06:37:22:4b:62:cf:d8:
6a:90:87:e9:8e:b7:46:3a:1d:ec:e2:08:f0:6c:3c:6b:e3:78:
de:2f:15:cb:6f:ee:9c:21:4f:81:b5:7d:57:12:e3:ab:3d:14:
68:cf:6e:5a:83:9d:52:23:8b:e4:fa:0d:ef:48:ce:d6:a6:65:
7b:f0:58:00:f8:3d:32:2e:47:40:6d:b8:15:e3:1d:63:d5:c1:
d6:92:e8:2b:60:e3:80:7d:76:c5:fc:b3:0d:c8:e6:3a:f0:df:
b9:20:f0:a8:99:11:a7:a3:8c:a6:cb:ed:45:de:3e:e7:ff:32:
5d:6d:e1:66:59:94:ce:c8:10:20:61:7f:51:a5:ca:29:be:5e:
9d:c4:fa:16:02:f4:6d:5e:a4:3e:c1:9f:b5:12:a7:ab:f8:63:
d4:b3:c5:47:6f:67:d1:a4:da:38:02:aa:4c:34:f7:c3:ee:3d:
e7:82:b0:10:cf:e3:35:53:84:84:a5:91:6b:25:bd:4a:c8:ab:
29:c7:39:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 19:10:42 2025 by rpki-client