Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e39312e3137362e302f32322d3234203d3e20323033303631.roa
File: 34352e39312e3137362e302f32322d3234203d3e20323033303631.roa (raw, json)
Hash identifier: R1l4jFsJVg252GftROTHuvkrgHwm9iu7IFeMK9Ddjmc=
Subject key identifier: 6D:FC:12:69:DB:9D:8D:17:20:2E:B3:16:24:3F:D6:A3:D3:E1:9C:6D
Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Certificate serial: 6EC24830AB4506FF7B2B3682E04C587C1836F7D8
Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e39312e3137362e302f32322d3234203d3e20323033303631.roa
Signing time: Mon 27 Jan 2025 09:44:49 +0000
ROA not before: Mon 27 Jan 2025 09:39:49 +0000
ROA not after: Mon 26 Jan 2026 09:44:49 +0000
asID: 203061
IP address blocks: 45.91.176.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:c2:48:30:ab:45:06:ff:7b:2b:36:82:e0:4c:58:7c:18:36:f7:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Validity
Not Before: Jan 27 09:39:49 2025 GMT
Not After : Jan 26 09:44:49 2026 GMT
Subject: CN=6DFC1269DB9D8D17202EB316243FD6A3D3E19C6D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:e8:0e:6f:fb:e2:25:2c:95:51:6c:d7:44:5a:
64:47:26:91:59:03:6a:eb:f0:9e:b0:23:1c:17:35:
c9:e9:7e:45:40:02:b2:e4:89:7c:2b:74:53:a0:c4:
79:28:b8:a9:30:26:05:20:54:7e:d8:72:3c:d9:fd:
df:cc:10:23:88:8c:99:cc:86:8d:df:90:a2:c7:64:
34:96:58:d9:dc:d5:b9:04:75:a1:63:f3:92:dd:b4:
79:16:76:07:1a:1f:eb:ba:a0:72:09:d1:1f:1d:4a:
02:07:59:0f:d1:f6:97:ff:ee:c4:53:5e:96:ec:ec:
88:7c:54:b7:ce:82:ff:a1:d7:9f:8a:3b:8f:63:94:
cf:63:be:68:83:2f:61:b5:54:51:c6:24:aa:7e:c1:
b2:fc:0b:da:36:56:08:ff:59:67:76:bc:49:10:37:
9d:e2:22:07:a0:a6:eb:0d:a7:b9:fa:93:14:c4:92:
ea:2d:68:37:a8:f4:23:ef:5a:76:63:27:75:c3:f6:
bb:b9:e8:77:cf:4b:cb:5d:bc:bf:50:7e:e1:3f:c5:
4c:93:63:f0:35:26:c6:a2:e7:da:e4:9d:f9:f5:87:
3c:59:2f:cb:ec:32:5c:1b:35:a9:04:81:dd:9c:46:
4c:ac:a4:ab:ca:ed:98:ba:71:be:9b:47:c1:5d:c5:
ab:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:FC:12:69:DB:9D:8D:17:20:2E:B3:16:24:3F:D6:A3:D3:E1:9C:6D
X509v3 Authority Key Identifier:
keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e39312e3137362e302f32322d3234203d3e20323033303631.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.176.0/22
Signature Algorithm: sha256WithRSAEncryption
50:84:e3:05:31:f0:2f:90:60:bf:92:93:9a:89:ce:29:7d:7f:
a9:b7:0d:55:d7:44:93:1b:3d:c6:66:b8:10:4b:9e:0e:5c:3d:
d6:44:8c:bb:54:a3:28:17:8b:9e:ec:65:d2:da:e3:b3:36:d9:
aa:8e:62:15:70:43:a5:2e:ed:80:e1:d2:f7:c4:b1:91:05:58:
ed:d6:13:77:8c:5d:46:ad:78:c4:05:ef:81:9f:33:6a:c4:ab:
21:43:24:dc:dc:f9:a2:4b:2f:b3:a1:36:1e:02:a0:56:62:6c:
3c:29:77:a1:ac:09:cc:74:83:b1:91:07:15:f9:2e:f8:8f:22:
35:3c:72:da:20:2f:fa:1d:5f:6f:70:7e:a5:71:d2:3f:f5:7e:
16:ca:71:6c:12:4f:a6:8f:b3:cf:86:52:a3:fd:74:a5:82:26:
38:0d:cd:d5:be:a8:cc:19:d4:37:97:43:89:a6:b7:54:f8:05:
ae:c5:14:74:68:06:59:4d:4c:d3:bc:59:7d:62:16:30:3b:9c:
eb:b2:d4:a2:89:2a:52:48:ab:33:6a:9f:e6:84:38:19:cb:98:
93:91:23:8f:52:d1:98:b4:15:9d:49:e1:a6:27:e0:5f:ea:9c:
84:b4:7c:e9:5f:7d:c2:17:d3:01:88:d9:c7:86:bf:35:67:12:
ed:70:07:73
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUbsJIMKtFBv97KzaC4ExYfBg299gwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj
MjMxM2EzYTAeFw0yNTAxMjcwOTM5NDlaFw0yNjAxMjYwOTQ0NDlaMDMxMTAvBgNV
BAMTKDZERkMxMjY5REI5RDhEMTcyMDJFQjMxNjI0M0ZENkEzRDNFMTlDNkQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDG6A5v++IlLJVRbNdEWmRHJpFZ
A2rr8J6wIxwXNcnpfkVAArLkiXwrdFOgxHkouKkwJgUgVH7YcjzZ/d/MECOIjJnM
ho3fkKLHZDSWWNnc1bkEdaFj85LdtHkWdgcaH+u6oHIJ0R8dSgIHWQ/R9pf/7sRT
Xpbs7Ih8VLfOgv+h15+KO49jlM9jvmiDL2G1VFHGJKp+wbL8C9o2Vgj/WWd2vEkQ
N53iIgegpusNp7n6kxTEkuotaDeo9CPvWnZjJ3XD9ru56HfPS8tdvL9QfuE/xUyT
Y/A1Jsai59rknfn1hzxZL8vsMlwbNakEgd2cRkyspKvK7Zi6cb6bR8FdxauPAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUbfwSadudjRcgLrMWJD/Wo9PhnG0wHwYDVR0j
BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J
eE9qby5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzQzNTJlMzkzMTJlMzEzNzM2
MmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzIzMDMzMzAzNjMxLnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC
LVuwMA0GCSqGSIb3DQEBCwUAA4IBAQBQhOMFMfAvkGC/kpOaic4pfX+ptw1V10ST
Gz3GZrgQS54OXD3WRIy7VKMoF4ue7GXS2uOzNtmqjmIVcEOlLu2A4dL3xLGRBVjt
1hN3jF1GrXjEBe+BnzNqxKshQyTc3PmiSy+zoTYeAqBWYmw8KXehrAnMdIOxkQcV
+S74jyI1PHLaIC/6HV9vcH6lcdI/9X4WynFsEk+mj7PPhlKj/XSlgiY4Dc3VvqjM
GdQ3l0OJprdU+AWuxRR0aAZZTUzTvFl9YhYwO5zrstSiiSpSSKszap/mhDgZy5iT
kSOPUtGYtBWdSeGmJ+Bf6pyEtHzpX33CF9MBiNnHhr81ZxLtcAdz
-----END CERTIFICATE-----
Generated at Sat Apr 5 02:40:06 2025 by rpki-client