Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e3134342e38312e302f32342d3332203d3e20313336373837.roa
File: 34352e3134342e38312e302f32342d3332203d3e20313336373837.roa (raw, json)
Hash identifier: mYfa+220KRHDjeETfl6xSWPRnDqiC0DXol740K2VSVg=
Subject key identifier: E7:A1:D9:C2:DA:13:F7:5C:A7:05:41:16:3F:07:F7:AA:89:DB:AA:83
Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Certificate serial: 42FDB0E27E68C6ED5132FEECC04C4499EDC10AA8
Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e3134342e38312e302f32342d3332203d3e20313336373837.roa
Signing time: Mon 27 Jan 2025 09:44:51 +0000
ROA not before: Mon 27 Jan 2025 09:39:51 +0000
ROA not after: Mon 26 Jan 2026 09:44:51 +0000
asID: 136787
IP address blocks: 45.144.81.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:fd:b0:e2:7e:68:c6:ed:51:32:fe:ec:c0:4c:44:99:ed:c1:0a:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Validity
Not Before: Jan 27 09:39:51 2025 GMT
Not After : Jan 26 09:44:51 2026 GMT
Subject: CN=E7A1D9C2DA13F75CA70541163F07F7AA89DBAA83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:7b:a8:54:f6:5a:3c:ce:d1:13:59:77:f6:8f:
4c:ff:f5:af:6f:2d:26:f7:92:78:14:cb:89:ae:8d:
49:a2:e5:71:b8:8e:74:5f:e4:00:60:4c:8e:c8:8d:
15:ed:e5:9a:4f:b4:38:f2:e0:a6:c6:ef:49:6f:df:
4a:3c:bf:6b:0a:00:de:c2:b3:9a:1a:ed:86:28:ac:
38:bd:73:b3:74:29:2a:0d:04:ed:97:3e:09:96:58:
3b:6d:69:10:7a:9d:49:84:e9:47:00:aa:fa:13:d6:
b0:72:65:38:09:ad:dd:8a:92:0f:41:67:c3:d8:db:
a5:a2:73:4f:11:d5:00:b7:00:0d:ac:d0:05:cb:cd:
f8:f8:a5:0e:5c:46:16:96:d0:24:d3:17:1e:c3:b4:
21:b4:cd:c7:37:b7:70:76:16:af:45:04:2e:43:fa:
26:b0:2b:b7:fe:00:e7:d5:4a:aa:8e:b4:71:dc:a9:
b5:0f:44:83:06:4f:6d:0a:3b:84:90:0d:fa:dd:c6:
d2:86:f5:72:35:fc:3f:8b:9b:d0:8f:82:62:f2:0b:
6b:2b:6e:a4:d3:d5:b1:2e:21:4f:d2:af:01:03:f1:
64:17:55:50:3e:b0:97:3b:7a:ac:b8:76:f1:f1:f2:
78:12:58:46:9e:91:72:85:9a:97:a8:bc:6f:69:92:
76:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:A1:D9:C2:DA:13:F7:5C:A7:05:41:16:3F:07:F7:AA:89:DB:AA:83
X509v3 Authority Key Identifier:
keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e3134342e38312e302f32342d3332203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.81.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:b3:7b:90:08:32:d3:23:8e:f8:f7:b6:6f:0b:6c:af:73:62:
47:89:8e:18:ce:e1:34:b9:d0:cb:cb:38:18:c5:78:e1:0b:d0:
33:5f:e7:8d:50:ae:c0:c0:3e:89:58:c5:07:5a:b1:3e:f8:2a:
b7:f7:55:1e:9b:00:d6:33:4d:f8:f0:41:1b:e8:c8:8c:0b:bd:
bc:56:47:af:1e:1e:71:f9:80:9f:43:5a:21:10:1e:01:6e:f6:
4e:24:cf:a0:74:14:fa:01:7c:36:3c:76:00:aa:66:a7:73:d6:
a0:22:65:fc:8a:e5:ac:0e:c4:52:f8:4a:07:ed:92:03:3e:09:
03:33:05:96:67:a2:98:e4:d9:cd:e8:7d:0f:c7:e7:cb:2e:f8:
d6:9c:80:58:6c:9d:55:4d:0d:d7:e2:c1:16:7a:44:37:e5:73:
1f:e8:ce:81:9f:db:f6:13:c9:50:f2:cc:ba:52:d9:c4:ac:27:
c7:0c:d4:c0:5a:50:20:a4:05:a4:6b:03:6b:64:cb:27:47:c6:
71:be:2a:eb:7c:97:70:b7:f3:5c:d6:7d:8a:7b:96:62:57:5c:
7f:e5:2c:70:b3:01:e5:05:c0:32:e1:05:d5:64:d7:dd:cc:7f:
8d:07:59:39:63:c7:be:6a:24:df:dd:e0:fb:b9:d8:c1:93:97:
fb:63:84:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 19:50:48 2025 by rpki-client