Route Origin Authorization
$ rpki-client -vvf rsync.rp.ki/repo/aci/0/326131323a313730313a3a2f33322d3438203d3e203335343837.roa
File: 326131323a313730313a3a2f33322d3438203d3e203335343837.roa (raw, json)
Hash identifier: PhL0RsHIXj3EIjtmCFVwycBSzCv3fZCrrmt1SSpE0Cs=
Subject key identifier: 38:78:DF:FC:F8:0E:DC:28:C1:4D:2C:CE:90:A9:13:5E:47:39:DC:08
Certificate issuer: /CN=0c7610d96dbfca260037f5025b14a97ec3d6fa11
Certificate serial: 2B99D743513CDB8FD3F08D44E153F645959DEAC0
Authority key identifier: 0C:76:10:D9:6D:BF:CA:26:00:37:F5:02:5B:14:A9:7E:C3:D6:FA:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DHYQ2W2_yiYAN_UCWxSpfsPW-hE.cer
Subject info access: rsync://rsync.rp.ki/repo/aci/0/326131323a313730313a3a2f33322d3438203d3e203335343837.roa
Signing time: Sun 03 Dec 2023 21:38:40 +0000
ROA not before: Sun 03 Dec 2023 21:33:40 +0000
ROA not after: Sun 01 Dec 2024 21:38:40 +0000
asID: 35487
IP address blocks: 2a12:1701::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:99:d7:43:51:3c:db:8f:d3:f0:8d:44:e1:53:f6:45:95:9d:ea:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c7610d96dbfca260037f5025b14a97ec3d6fa11
Validity
Not Before: Dec 3 21:33:40 2023 GMT
Not After : Dec 1 21:38:40 2024 GMT
Subject: CN=3878DFFCF80EDC28C14D2CCE90A9135E4739DC08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:4f:22:1f:8b:bd:48:21:42:36:1c:ed:a8:3e:
d5:a3:33:4a:43:57:6b:d8:59:60:12:0d:79:7e:d0:
b2:03:14:3c:74:7c:87:b4:74:2a:ef:95:df:ef:de:
69:8e:8a:c3:80:f9:d1:22:9e:eb:1b:f0:b2:ff:d6:
6c:a8:5b:d4:97:c9:1a:c5:4d:94:60:db:5c:90:40:
e7:bf:11:17:52:02:c5:40:ba:57:eb:06:37:65:aa:
a8:c8:95:10:2d:8b:f6:54:40:19:42:1c:7c:c4:c0:
4a:b1:12:73:88:82:54:c5:59:de:89:be:e0:6a:ff:
77:2f:fa:3a:bf:1e:db:b9:f6:b7:92:12:e0:80:b2:
95:df:9e:c4:96:86:d8:14:b9:b4:2f:8e:45:15:91:
7b:1f:e1:cc:18:e2:76:c4:2f:3d:74:2e:38:ff:cd:
39:2c:f6:13:82:56:0e:91:ee:cc:11:26:7b:03:90:
0a:05:75:df:63:c7:35:c5:85:76:c9:82:cd:ab:db:
59:2d:3b:3c:36:30:b3:fe:0b:49:d5:ea:00:c0:b7:
90:f4:29:8e:a1:ab:2c:ec:14:8c:de:65:25:03:1e:
78:61:e1:d8:df:cf:1d:24:bf:2b:ec:1a:ed:28:b5:
60:8f:85:6d:9a:39:de:ea:e3:20:2e:09:2a:90:bc:
8e:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:78:DF:FC:F8:0E:DC:28:C1:4D:2C:CE:90:A9:13:5E:47:39:DC:08
X509v3 Authority Key Identifier:
keyid:0C:76:10:D9:6D:BF:CA:26:00:37:F5:02:5B:14:A9:7E:C3:D6:FA:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.rp.ki/repo/aci/0/0C7610D96DBFCA260037F5025B14A97EC3D6FA11.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DHYQ2W2_yiYAN_UCWxSpfsPW-hE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.rp.ki/repo/aci/0/326131323a313730313a3a2f33322d3438203d3e203335343837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:1701::/32
Signature Algorithm: sha256WithRSAEncryption
90:91:66:41:cc:8f:76:95:29:d1:9f:25:ff:a6:4c:d2:e0:77:
f8:3d:06:00:c3:60:c7:0d:d1:0c:7d:37:e3:82:70:f7:47:e8:
de:72:b6:db:6d:e9:b8:ae:88:e7:2d:b6:02:ef:95:a0:c3:bc:
b5:53:ca:14:c5:5f:e9:56:7a:01:1c:10:46:b5:bc:61:bf:58:
70:a0:4e:ca:b5:2b:b0:5c:02:35:61:ac:bc:ad:9b:56:2d:b4:
a3:bf:37:c9:0c:fe:07:4c:d2:0c:a9:7e:28:b6:4b:7c:a7:ed:
c5:52:24:d2:5b:e7:91:db:b2:6b:0b:9b:ab:20:e9:87:96:6f:
ca:06:5a:87:f7:08:16:53:11:91:0a:e5:a1:48:b3:ef:30:f1:
7f:9a:03:b6:83:d0:82:7a:bb:d5:59:b0:c7:45:9a:c4:13:c9:
fc:17:3e:51:f3:2e:d9:0c:7c:05:05:a6:02:03:15:70:9e:62:
a5:94:35:91:81:1a:42:59:f0:69:90:da:77:db:4b:b8:26:64:
e6:de:d5:a3:88:59:e1:f6:ef:39:43:de:bd:bf:2a:c7:7b:9f:
a9:2e:05:6b:75:21:f3:42:da:5d:94:3b:f2:58:4c:c9:22:b5:
80:07:71:d7:8b:1b:b8:ae:ca:0a:c6:b9:81:20:13:d4:95:8d:
c0:29:fc:42
-----BEGIN CERTIFICATE-----
MIIEvzCCA6egAwIBAgIUK5nXQ1E824/T8I1E4VP2RZWd6sAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMGM3NjEwZDk2ZGJmY2EyNjAwMzdmNTAyNWIxNGE5N2Vj
M2Q2ZmExMTAeFw0yMzEyMDMyMTMzNDBaFw0yNDEyMDEyMTM4NDBaMDMxMTAvBgNV
BAMTKDM4NzhERkZDRjgwRURDMjhDMTREMkNDRTkwQTkxMzVFNDczOURDMDgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCTyIfi71IIUI2HO2oPtWjM0pD
V2vYWWASDXl+0LIDFDx0fIe0dCrvld/v3mmOisOA+dEinusb8LL/1myoW9SXyRrF
TZRg21yQQOe/ERdSAsVAulfrBjdlqqjIlRAti/ZUQBlCHHzEwEqxEnOIglTFWd6J
vuBq/3cv+jq/Htu59reSEuCAspXfnsSWhtgUubQvjkUVkXsf4cwY4nbELz10Ljj/
zTks9hOCVg6R7swRJnsDkAoFdd9jxzXFhXbJgs2r21ktOzw2MLP+C0nV6gDAt5D0
KY6hqyzsFIzeZSUDHnhh4djfzx0kvyvsGu0otWCPhW2aOd7q4yAuCSqQvI7xAgMB
AAGjggHJMIIBxTAdBgNVHQ4EFgQUOHjf/PgO3CjBTSzOkKkTXkc53AgwHwYDVR0j
BBgwFoAUDHYQ2W2/yiYAN/UCWxSpfsPW+hEwDgYDVR0PAQH/BAQDAgeAMFwGA1Ud
HwRVMFMwUaBPoE2GS3JzeW5jOi8vcnN5bmMucnAua2kvcmVwby9hY2kvMC8wQzc2
MTBEOTZEQkZDQTI2MDAzN0Y1MDI1QjE0QTk3RUMzRDZGQTExLmNybDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvREhZUTJXMl95aVlBTl9VQ1d4U3Bmc1BXLWhFLmNlcjBz
BggrBgEFBQcBCwRnMGUwYwYIKwYBBQUHMAuGV3JzeW5jOi8vcnN5bmMucnAua2kv
cmVwby9hY2kvMC8zMjYxMzEzMjNhMzEzNzMwMzEzYTNhMmYzMzMyMmQzNDM4MjAz
ZDNlMjAzMzM1MzQzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAG
CCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKhIXATANBgkqhkiG9w0BAQsFAAOC
AQEAkJFmQcyPdpUp0Z8l/6ZM0uB3+D0GAMNgxw3RDH0344Jw90fo3nK2223puK6I
5y22Au+VoMO8tVPKFMVf6VZ6ARwQRrW8Yb9YcKBOyrUrsFwCNWGsvK2bVi20o783
yQz+B0zSDKl+KLZLfKftxVIk0lvnkduyawubqyDph5ZvygZah/cIFlMRkQrloUiz
7zDxf5oDtoPQgnq71Vmwx0WaxBPJ/Bc+UfMu2Qx8BQWmAgMVcJ5ipZQ1kYEaQlnw
aZDad9tLuCZk5t7Vo4hZ4fbvOUPevb8qx3ufqS4Fa3Uh80LaXZQ78lhMySK1gAdx
14sbuK7KCsa5gSAT1JWNwCn8Qg==
-----END CERTIFICATE-----
Generated at Mon Apr 7 03:36:19 2025 by rpki-client