Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a3931633a3a2f34382d3438203d3e20323134393939.roa
File: 326130623a346530373a3931633a3a2f34382d3438203d3e20323134393939.roa (raw, json)
Hash identifier: OlGJebwgzLl1MZkg6WAWp5Rn1p2QRt/im/GQMhP3acE=
Subject key identifier: BD:9D:30:2B:93:85:B5:E7:1E:48:E4:CC:58:44:49:BC:BD:55:02:F2
Certificate issuer: /CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC
Certificate serial: 7C013C1BA0912D0933B8F928F4F828E554FFD1DC
Authority key identifier: D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a3931633a3a2f34382d3438203d3e20323134393939.roa
Signing time: Fri 09 Aug 2024 13:53:38 +0000
ROA not before: Fri 09 Aug 2024 13:48:38 +0000
ROA not after: Fri 08 Aug 2025 13:53:38 +0000
asID: 214999
IP address blocks: 2a0b:4e07:91c::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:01:3c:1b:a0:91:2d:09:33:b8:f9:28:f4:f8:28:e5:54:ff:d1:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC
Validity
Not Before: Aug 9 13:48:38 2024 GMT
Not After : Aug 8 13:53:38 2025 GMT
Subject: CN=BD9D302B9385B5E71E48E4CC584449BCBD5502F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:8e:9c:24:eb:98:ac:76:1f:2f:df:5b:03:65:
c2:9f:e3:a9:ff:a7:fa:37:0a:85:d6:e8:96:3e:bc:
3f:10:9d:60:8c:fc:03:62:7d:6d:f9:b5:68:07:a3:
44:9a:d5:d5:ef:5f:8b:38:d9:0e:be:8f:4e:d5:c3:
c9:a9:9e:ba:17:52:56:f9:a0:56:5f:4a:da:5f:e7:
eb:26:2d:ea:2b:c4:69:51:92:6c:29:4e:0c:f6:00:
f4:65:c0:e4:ce:3e:55:49:55:38:00:6d:cf:ac:21:
c3:74:ab:82:15:dd:6a:ef:b2:51:96:9b:33:66:78:
d4:92:ae:f5:79:c4:45:60:58:7f:5f:2f:51:78:55:
0d:40:14:56:c2:ac:f1:2c:93:58:b9:5e:22:73:43:
65:af:00:22:03:ca:61:6f:dd:6a:e2:2b:ae:e8:4a:
31:11:01:bf:51:8e:ae:77:0c:f7:a0:34:1a:4b:cf:
8e:1c:77:73:ff:34:3c:28:11:2a:97:fe:22:e8:cf:
7b:b2:9c:02:0b:6e:1c:a4:2d:33:65:45:31:15:0c:
a5:53:1c:ee:74:bf:ae:80:eb:00:c5:89:e6:96:d7:
c0:aa:6f:c7:75:89:97:29:7a:dd:61:f3:89:5c:e9:
1b:a1:f7:e6:d7:c9:7c:5a:51:f3:47:83:cc:79:d9:
0e:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:9D:30:2B:93:85:B5:E7:1E:48:E4:CC:58:44:49:BC:BD:55:02:F2
X509v3 Authority Key Identifier:
keyid:D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a3931633a3a2f34382d3438203d3e20323134393939.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:4e07:91c::/48
Signature Algorithm: sha256WithRSAEncryption
ac:c7:92:8a:ba:41:d9:c6:66:96:49:9b:ec:ec:67:aa:c9:27:
ba:01:72:64:7c:99:51:00:ee:b7:1d:41:52:6e:17:f4:6a:ba:
89:b4:46:b5:b2:55:39:4b:aa:d5:49:dc:11:d9:91:8b:11:81:
69:6f:ef:6d:5e:b0:35:36:61:4e:6b:5b:96:c7:e5:c6:b7:d7:
43:b4:99:51:b8:74:9f:06:cf:00:54:93:a9:8d:29:0e:ee:80:
28:22:aa:3f:b6:25:99:07:45:b8:7a:89:29:8f:db:72:47:c2:
fe:f8:38:d4:48:00:4e:84:ac:1c:68:04:ff:e1:16:92:76:91:
b8:6d:82:21:45:56:94:a7:cc:72:bc:2e:9f:1b:47:c5:a4:38:
08:c3:f6:71:58:52:4d:4d:11:3b:45:db:52:46:9f:fa:eb:be:
9c:7e:e9:93:58:1e:7d:65:5c:5f:37:1d:f7:69:98:44:13:3f:
32:65:46:c5:be:9b:d8:71:44:5b:e5:1e:c8:8f:77:6d:d2:fe:
26:f5:fd:aa:0f:0b:77:be:3f:51:3c:af:a8:8c:8f:0d:68:84:
52:fd:0d:a8:d0:c5:68:6c:4d:d9:a0:9f:48:32:7d:2c:f1:0c:
61:ab:45:1f:dd:25:9e:25:fb:68:c6:59:74:98:a0:90:c4:d6:
55:52:91:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 20:40:24 2025 by rpki-client