Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e3135312e3132302e302f32342d3234203d3e203437353833.roa
File: 34352e3135312e3132302e302f32342d3234203d3e203437353833.roa (raw, json)
Hash identifier: Lr9jMxyr34F63I/z0zQlG0BgRRK8iDNS+egYf680Vl0=
Subject key identifier: 76:EC:72:71:DA:AD:43:6F:ED:C3:77:0E:60:80:F7:99:F9:F6:46:9C
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 505DE3D4A2614D0FC786669FDF256B0B6FF75517
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e3135312e3132302e302f32342d3234203d3e203437353833.roa
Signing time: Mon 26 Feb 2024 08:53:41 +0000
ROA not before: Mon 26 Feb 2024 08:48:41 +0000
ROA not after: Mon 24 Feb 2025 08:53:41 +0000
asID: 47583
IP address blocks: 45.151.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:5d:e3:d4:a2:61:4d:0f:c7:86:66:9f:df:25:6b:0b:6f:f7:55:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Feb 26 08:48:41 2024 GMT
Not After : Feb 24 08:53:41 2025 GMT
Subject: CN=76EC7271DAAD436FEDC3770E6080F799F9F6469C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:5f:a5:9a:d6:17:ae:16:a9:17:4e:0c:de:c3:
5a:a3:dd:db:52:15:8b:03:06:7b:b3:84:3e:63:64:
52:9b:2e:53:b0:c1:1b:ab:e5:b7:8b:31:0a:13:76:
78:b8:7b:94:c4:9b:54:93:17:a5:02:0a:23:54:92:
35:8e:e6:f7:10:ee:4b:2c:10:d7:73:44:36:62:70:
19:f6:87:c7:e5:ea:46:64:00:5d:d6:42:86:6c:e4:
e2:86:c3:c5:ca:17:3c:00:9d:0f:f6:30:85:0f:29:
b3:97:02:4c:b4:d4:4d:f0:19:fa:1c:e2:ee:55:c2:
38:26:8d:65:d6:94:a1:68:56:6c:44:55:b8:73:8f:
33:ac:a6:88:f3:c2:9f:81:d1:b1:ac:5a:64:39:a7:
54:b4:d0:75:25:5c:9a:e4:82:46:61:55:ac:97:cd:
12:bd:e3:c5:18:8f:68:46:8b:6c:44:f8:3e:92:ef:
67:41:e4:44:f9:76:83:91:c8:00:40:a4:33:e4:ab:
ff:04:13:d3:c7:17:19:46:64:d5:2f:28:62:b0:f1:
b9:c6:d6:c3:43:2b:01:d2:23:dc:2d:57:e6:3c:f4:
9e:4a:3e:7f:90:f9:52:e4:51:20:b2:ce:16:5e:64:
3e:18:ac:3c:0a:d3:f5:d1:58:19:8e:25:af:13:88:
a6:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:EC:72:71:DA:AD:43:6F:ED:C3:77:0E:60:80:F7:99:F9:F6:46:9C
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e3135312e3132302e302f32342d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.120.0/24
Signature Algorithm: sha256WithRSAEncryption
69:b6:90:87:6e:de:de:4b:8f:4a:2f:ec:17:9a:0b:fb:02:ce:
da:97:37:3a:ea:91:33:85:47:e3:ee:b1:dd:c9:a9:a7:c0:1c:
35:0b:6c:f3:3a:18:57:bf:63:25:a4:32:3c:47:bc:27:52:29:
f9:3f:86:28:09:34:c5:3c:75:7f:17:00:d6:1b:dc:81:6d:3e:
46:ab:8c:9b:99:0b:3d:39:f6:de:7a:42:c2:97:03:e6:5c:0e:
af:57:86:6c:5b:06:d0:76:1c:02:07:66:9a:da:58:ac:ee:f4:
ba:08:9f:38:45:00:13:7d:1e:c9:cb:0a:b8:19:e4:80:44:03:
aa:12:6a:fd:7f:da:b9:d7:4c:b9:2c:ea:e4:d2:1e:a6:86:f2:
a3:e2:04:aa:6b:8b:d2:32:ce:63:97:46:04:dc:62:4d:95:58:
f5:2b:df:23:c5:e6:5e:ae:dd:6d:28:48:22:f5:a9:c4:af:31:
83:d6:b3:d6:91:68:ad:ce:3c:ec:00:58:64:72:a6:59:89:7d:
bc:e1:94:bb:1d:7d:69:f9:71:d7:91:59:8b:ad:e7:52:a0:0f:
43:97:f7:e3:54:b7:87:0b:cb:1e:25:7e:d7:15:24:85:5c:0c:
5d:50:0a:0e:b6:28:ee:a3:2a:50:1d:33:f0:92:de:1a:de:ee:
4a:04:84:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:48:07 2025 by rpki-client