Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e3135382e35362e302f32342d3234203d3e20313533333933.roa
File: 34352e3135382e35362e302f32342d3234203d3e20313533333933.roa (raw, json)
Hash identifier: 4mQJL9d1FK7Gw32pBwo/prBBYj4lIIvM6FuaFqL2s78=
Subject key identifier: 9F:D6:0F:D8:8D:D6:20:4A:8D:7C:F7:E8:29:5B:70:F2:76:61:F9:DD
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 7BABC8CC9AB073E56047FE002AB7B6C3FC84B115
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e3135382e35362e302f32342d3234203d3e20313533333933.roa
Signing time: Thu 10 Apr 2025 15:31:36 +0000
ROA not before: Thu 10 Apr 2025 15:26:36 +0000
ROA not after: Thu 09 Apr 2026 15:31:36 +0000
asID: 153393
IP address blocks: 45.158.56.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:ab:c8:cc:9a:b0:73:e5:60:47:fe:00:2a:b7:b6:c3:fc:84:b1:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: Apr 10 15:26:36 2025 GMT
Not After : Apr 9 15:31:36 2026 GMT
Subject: CN=9FD60FD88DD6204A8D7CF7E8295B70F27661F9DD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:8d:de:a8:96:35:77:f0:3e:29:06:3b:0f:cf:
c6:de:1e:c1:d5:00:95:74:9a:b5:2a:b1:4e:62:e6:
49:35:ff:67:99:d3:c5:0a:23:3c:36:43:62:a2:47:
3d:b7:9b:31:74:db:bf:18:5a:c3:c9:6f:4b:ca:7b:
ab:1c:bd:f6:dd:8e:91:6a:16:c5:a0:3a:2c:22:52:
f9:29:77:00:bc:b8:d7:1f:2b:c8:cb:b5:50:f2:41:
cb:b4:df:7e:b6:cf:73:86:f1:d5:2e:1f:3c:29:23:
28:28:08:4e:9d:df:5d:62:d3:cd:bf:95:a2:bf:dd:
27:6e:44:ac:0c:00:b7:c7:20:04:fb:01:34:4b:9f:
91:be:31:88:cb:94:9d:33:b4:20:8f:85:a3:21:43:
c1:01:69:a7:03:0b:23:6d:37:25:da:66:58:3a:b3:
66:a6:30:85:e8:5b:34:6f:1c:04:fd:dd:ed:88:b9:
61:3b:06:8f:f1:a0:3a:c2:53:2e:5d:0f:e4:c4:d6:
10:ee:3a:b2:f5:8b:2a:b4:c1:da:76:6f:59:36:18:
75:23:1a:b3:be:46:72:a1:c5:fd:a5:16:0f:84:e2:
e4:c0:f0:26:a9:03:50:a4:fd:ed:44:16:e0:73:2a:
50:b8:6a:e8:84:a6:98:63:a5:7d:08:f6:f7:af:1c:
c5:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:D6:0F:D8:8D:D6:20:4A:8D:7C:F7:E8:29:5B:70:F2:76:61:F9:DD
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e3135382e35362e302f32342d3234203d3e20313533333933.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.56.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:29:d1:ec:18:5c:03:e3:87:1f:84:c4:46:61:2e:9e:1f:a0:
bc:8b:f5:c5:5b:05:03:14:65:4d:fb:95:85:a9:40:59:50:41:
0c:97:da:7c:bc:d8:56:a5:9b:a4:d6:6f:2f:39:68:80:67:3b:
38:d6:41:db:a1:57:2d:a5:5f:51:07:f1:ae:e2:9c:0c:e1:55:
e7:d7:7a:ce:f0:ff:7b:da:07:08:1b:28:e3:56:be:c4:92:1f:
ea:c0:ae:0d:c9:ad:c4:d4:dc:98:36:c6:b5:7c:2f:96:d2:b5:
7e:33:ce:69:b2:ef:dc:bb:6e:aa:cb:b1:5f:d7:3d:64:8d:39:
9b:c4:38:3e:be:05:ae:63:ef:ea:0a:5c:0e:1d:d9:04:19:01:
47:84:cf:e8:d5:e5:75:2a:d7:32:7a:fd:e7:76:b7:82:b4:bc:
12:ad:a1:b4:c8:bb:76:f4:a8:89:f3:99:78:c2:56:22:61:dc:
8b:6a:c1:78:c4:cc:f0:84:a2:32:8d:00:bf:6d:f2:c9:fe:7e:
af:33:61:e8:62:41:ab:16:99:4d:b0:77:0b:1e:c5:3f:7e:78:
3f:d1:a1:e1:3d:bb:8b:14:87:f7:ce:fa:5b:1d:30:ef:82:8b:
38:8d:35:42:26:2a:d6:66:9a:bf:db:39:0e:64:ed:5a:16:c8:
c2:30:d0:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:34:29 2025 by rpki-client on console.sobornost.net