Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a6535343a3a2f34362d3438203d3e20323135313932.roa
File: 326130623a346530373a6535343a3a2f34362d3438203d3e20323135313932.roa (raw, json)
Hash identifier: r6tJ7+PsYReNkVi9bF8I5Y276vNcfkbxeYw2zslVfdY=
Subject key identifier: 78:83:CB:44:6C:EE:1E:20:79:A5:66:97:18:F1:D0:40:B3:A0:27:D5
Certificate issuer: /CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC
Certificate serial: 2F915E7508D17C244903318CF5CF276BD68AE027
Authority key identifier: D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a6535343a3a2f34362d3438203d3e20323135313932.roa
Signing time: Mon 12 Aug 2024 11:56:08 +0000
ROA not before: Mon 12 Aug 2024 11:51:08 +0000
ROA not after: Mon 11 Aug 2025 11:56:08 +0000
asID: 215192
IP address blocks: 2a0b:4e07:e54::/46 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:91:5e:75:08:d1:7c:24:49:03:31:8c:f5:cf:27:6b:d6:8a:e0:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC
Validity
Not Before: Aug 12 11:51:08 2024 GMT
Not After : Aug 11 11:56:08 2025 GMT
Subject: CN=7883CB446CEE1E2079A5669718F1D040B3A027D5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c8:7f:44:57:e0:e2:83:7b:20:91:a7:45:31:
b5:95:64:23:ba:49:98:d3:2e:4d:9e:07:fb:70:d6:
f7:5e:87:ba:4c:01:5b:0f:1c:45:ef:9c:14:51:de:
65:6e:10:ca:4a:91:aa:e0:a8:6d:b2:e7:45:fd:df:
be:3f:67:bb:2a:78:26:f3:5a:d0:9e:80:ff:ec:30:
52:ba:e6:45:67:a0:6c:2e:74:1c:85:e1:bb:e8:96:
2d:7b:f3:f1:4a:aa:a5:69:29:82:1c:68:90:04:6d:
4f:68:08:ec:a1:0e:74:3b:47:b0:e0:12:f7:a8:0e:
50:f5:35:6b:d9:c6:00:7e:cb:d9:95:f3:0b:0c:ad:
9f:46:ba:ee:e8:c4:f1:9f:22:3f:8a:3e:f5:e4:52:
87:57:e9:ad:1c:16:ec:8e:3f:fa:e7:d7:1f:91:6e:
84:61:ab:34:11:54:10:1d:46:c6:8f:64:50:51:49:
b7:37:d6:0b:ec:af:6c:25:cf:ba:78:87:c1:0c:38:
38:64:47:3e:f5:bc:b3:f1:03:07:1e:2b:12:2f:79:
d8:82:2d:c8:61:8f:4f:48:db:13:d3:ab:5e:09:a9:
c0:42:48:56:9b:82:7c:6d:4f:97:51:2b:b5:19:3a:
82:b7:ce:b8:94:02:51:c7:e5:63:57:89:16:bf:3d:
64:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:83:CB:44:6C:EE:1E:20:79:A5:66:97:18:F1:D0:40:B3:A0:27:D5
X509v3 Authority Key Identifier:
keyid:D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a6535343a3a2f34362d3438203d3e20323135313932.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:4e07:e54::/46
Signature Algorithm: sha256WithRSAEncryption
96:fc:c7:05:42:fd:e9:41:44:ea:4f:a0:da:3c:1f:0c:61:ac:
45:e4:d5:8f:f0:5a:96:01:e1:cd:90:73:25:c2:e2:ad:68:f6:
4c:28:3d:6c:4a:c4:93:1a:42:80:eb:cf:5a:6e:4f:40:6c:1e:
8a:a5:d7:60:53:eb:62:b6:fc:a8:1d:71:8a:b6:7b:27:57:0f:
22:5c:fe:99:63:09:1d:7b:e5:72:aa:be:8e:00:75:3a:06:08:
20:82:e5:3c:d9:1b:f0:27:21:93:47:9e:a5:8d:0f:14:6c:40:
4d:86:cc:cb:5d:62:2b:44:2b:7b:0a:57:31:35:99:be:a7:a9:
72:8e:28:3f:ee:45:0a:89:2f:bb:25:1c:b3:ff:ca:fd:9e:e3:
6e:3c:0d:98:3b:a3:b9:c0:90:95:56:56:68:11:5a:c4:9b:d3:
1c:96:4f:1c:fc:e1:fe:d6:ef:55:73:4e:32:40:be:74:ab:1a:
e6:57:ae:94:dc:42:5f:db:9d:dc:d9:d8:f9:08:08:9e:b8:cc:
dd:a5:5f:d3:7a:ce:1c:31:28:91:41:55:2a:87:8b:69:18:81:
9d:58:66:fd:73:70:bf:ec:17:e4:d5:11:78:61:22:18:db:98:
54:45:8b:05:3f:1c:71:02:e5:0d:36:22:7c:42:de:90:39:66:
fa:d9:cc:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 13:03:35 2025 by rpki-client