Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/13f68561-0a74-4cca-bf8f-12faaafc8eb8/2/326130613a363034303a613130323a3a2f34382d3438203d3e20323033383433.roa
File: 326130613a363034303a613130323a3a2f34382d3438203d3e20323033383433.roa (raw, json)
Hash identifier: bikmWHpjPmXFeu6RdysBAjYypuerlP+G4LoSWyPysCg=
Subject key identifier: 8A:DE:A1:70:C7:27:D8:B9:91:DF:0D:BE:F3:53:B8:1E:BC:F5:92:F2
Certificate issuer: /CN=13DDCFA128DC141F076EB7B60F46359286489D55
Certificate serial: 71894232E8930CB1E9AC83DC68A0128C7BC9281F
Authority key identifier: 13:DD:CF:A1:28:DC:14:1F:07:6E:B7:B6:0F:46:35:92:86:48:9D:55
Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/13DDCFA128DC141F076EB7B60F46359286489D55.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/13f68561-0a74-4cca-bf8f-12faaafc8eb8/2/326130613a363034303a613130323a3a2f34382d3438203d3e20323033383433.roa
Signing time: Sun 06 Oct 2024 04:55:36 +0000
ROA not before: Sun 06 Oct 2024 04:50:36 +0000
ROA not after: Sun 05 Oct 2025 04:55:36 +0000
asID: 203843
IP address blocks: 2a0a:6040:a102::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:89:42:32:e8:93:0c:b1:e9:ac:83:dc:68:a0:12:8c:7b:c9:28:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13DDCFA128DC141F076EB7B60F46359286489D55
Validity
Not Before: Oct 6 04:50:36 2024 GMT
Not After : Oct 5 04:55:36 2025 GMT
Subject: CN=8ADEA170C727D8B991DF0DBEF353B81EBCF592F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:e6:ea:ed:f9:37:09:a1:16:8d:9c:b9:e0:92:
9f:4f:7a:c4:f6:6a:ee:b8:8a:6e:c9:67:a3:2e:7f:
bc:9c:09:5d:2f:f3:f5:59:07:31:61:e9:60:de:fe:
cc:0d:b0:71:e0:db:59:8c:d8:23:4d:b6:7b:dc:78:
fc:c4:73:f4:eb:39:17:4b:8d:a0:04:2f:56:dc:f9:
95:0f:6c:cc:8f:dc:ae:a4:a6:0d:9b:5f:99:00:0c:
0c:67:cc:8a:d9:17:eb:c0:cd:18:b0:a4:23:13:00:
a3:af:5a:9e:86:6f:1a:31:12:1e:d2:c1:d8:ce:34:
84:63:82:1c:00:c6:6b:b2:eb:17:db:7b:2b:6d:5b:
47:16:82:22:eb:5f:25:ea:1a:87:05:1b:15:74:03:
fe:0c:bd:40:c3:34:a4:1a:04:08:80:b2:a4:8d:bd:
11:43:f5:ae:6b:ba:4d:f1:5e:bf:ac:0e:26:98:39:
95:23:c7:7f:b1:fb:51:f6:9a:3c:d2:ad:fb:c4:61:
32:43:1b:55:6c:27:7b:cb:dd:e4:16:aa:a8:f0:c6:
b4:cb:c3:8a:49:be:54:7b:90:15:03:f0:5a:c5:32:
60:4e:cd:3d:be:f8:fa:79:a5:0a:69:69:5d:ad:77:
ba:8b:e8:a6:1f:32:6d:dd:89:86:5a:f1:c1:e3:1a:
dc:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:DE:A1:70:C7:27:D8:B9:91:DF:0D:BE:F3:53:B8:1E:BC:F5:92:F2
X509v3 Authority Key Identifier:
keyid:13:DD:CF:A1:28:DC:14:1F:07:6E:B7:B6:0F:46:35:92:86:48:9D:55
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/13f68561-0a74-4cca-bf8f-12faaafc8eb8/2/13DDCFA128DC141F076EB7B60F46359286489D55.crl
Authority Information Access:
CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/13DDCFA128DC141F076EB7B60F46359286489D55.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/13f68561-0a74-4cca-bf8f-12faaafc8eb8/2/326130613a363034303a613130323a3a2f34382d3438203d3e20323033383433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6040:a102::/48
Signature Algorithm: sha256WithRSAEncryption
ac:91:7a:24:75:b6:dd:d8:ed:be:73:e8:a7:79:62:9f:d4:9b:
3b:09:89:2c:c1:a0:8d:e2:36:70:f9:58:a3:fa:ff:3f:05:98:
76:4e:d4:32:1f:5c:c9:54:f5:44:7f:ce:8c:bd:13:23:92:0c:
04:59:f2:88:3d:42:75:3b:a3:57:cb:20:a2:92:8d:ee:2a:06:
6f:f6:e4:2d:c7:54:a1:1c:7d:3f:c3:51:4b:b4:2e:d7:ea:cc:
8f:e7:f5:64:c5:7f:59:0c:0c:c2:3a:31:9f:29:dc:a0:e6:74:
9f:ea:7a:bb:e8:ee:eb:f1:36:a5:85:9d:80:47:a1:b1:3b:3b:
5f:2a:31:74:ed:d4:ad:93:a7:28:aa:a6:9b:ec:c1:a0:f1:96:
69:a7:57:df:83:b0:05:15:3c:b8:f5:d9:3c:52:1f:99:78:6a:
d2:fc:2a:fa:6d:c8:2e:2f:8b:bc:6a:90:d8:01:8b:39:e7:9b:
bf:ce:65:86:09:51:16:a6:eb:82:cb:8f:7e:20:a2:b5:53:88:
e7:49:1b:b4:1c:f7:2f:57:cb:a5:e1:27:14:f7:0d:0f:ab:5f:
61:0c:4c:61:98:89:33:25:0c:bd:3d:cc:17:80:f0:a7:0c:1f:
d3:b6:15:65:45:88:a7:26:ed:93:fd:c2:d9:a8:bf:94:1b:93:
87:ec:6f:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 11:00:46 2025 by rpki-client