Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1979f015-2d69-48f1-bb52-3581c4df48fa/0/323030313a3766383a3134623a3a2f34382d3438203d3e2030.roa
File: 323030313a3766383a3134623a3a2f34382d3438203d3e2030.roa (raw, json)
Hash identifier: aHQLak9N9Oms5rgKvpLigAh2LZdfLoi6boC6n7PKDU4=
Subject key identifier: AA:4B:37:7A:CE:E1:B9:56:5C:C3:0C:37:71:C0:D8:7B:3F:F8:E0:D9
Certificate issuer: /CN=600579021287ea6495d7f934a6ded30ee2a5bb38
Certificate serial: 27DA08D15218C9D475E35599EA54AC8D8D194E2D
Authority key identifier: 60:05:79:02:12:87:EA:64:95:D7:F9:34:A6:DE:D3:0E:E2:A5:BB:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YAV5AhKH6mSV1_k0pt7TDuKluzg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1979f015-2d69-48f1-bb52-3581c4df48fa/0/323030313a3766383a3134623a3a2f34382d3438203d3e2030.roa
Signing time: Thu 28 Nov 2024 22:50:31 +0000
ROA not before: Thu 28 Nov 2024 22:45:31 +0000
ROA not after: Thu 27 Nov 2025 22:50:31 +0000
asID: 0
IP address blocks: 2001:7f8:14b::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:da:08:d1:52:18:c9:d4:75:e3:55:99:ea:54:ac:8d:8d:19:4e:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=600579021287ea6495d7f934a6ded30ee2a5bb38
Validity
Not Before: Nov 28 22:45:31 2024 GMT
Not After : Nov 27 22:50:31 2025 GMT
Subject: CN=AA4B377ACEE1B9565CC30C3771C0D87B3FF8E0D9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:33:ad:cd:e3:85:a3:54:ce:00:c2:04:48:1a:
fb:67:c4:eb:57:3b:a5:dc:5b:a3:fe:be:c4:ae:72:
39:31:ea:c8:c8:fb:0e:ec:f4:bc:60:79:3f:b4:02:
ef:ac:82:de:fb:41:c5:c9:db:b7:2a:23:6c:d7:85:
e2:bb:53:f9:40:43:ca:33:2c:20:62:ea:d0:24:f7:
55:8b:7c:f4:b7:18:a6:ec:0b:75:72:18:cf:cc:c2:
1d:7c:d8:cc:d3:62:d1:b1:63:50:e8:c6:78:fd:c9:
f0:e7:c9:2d:7d:d4:9a:44:61:2d:ed:93:ea:71:73:
c6:2a:9c:ca:76:74:2b:17:05:dd:0f:fa:98:e0:e8:
a4:fb:f6:96:7d:ab:8f:d8:f5:b8:55:f9:69:24:4d:
b4:b3:0f:46:c0:59:d4:c6:24:42:00:59:c6:f2:22:
8a:03:74:b3:22:31:93:82:75:af:af:26:56:82:48:
8c:50:60:12:6b:05:02:d4:e9:6a:13:35:da:d8:43:
d6:9e:59:39:06:a6:08:26:1d:a1:1d:e3:e1:94:a0:
ca:0c:a7:35:ae:61:6d:a5:6b:72:58:40:03:d8:a9:
27:5e:46:13:da:7c:f7:8c:31:e5:e9:bf:74:24:c4:
4e:08:da:ea:3c:58:20:5f:de:6e:45:f8:f8:e7:84:
4a:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:4B:37:7A:CE:E1:B9:56:5C:C3:0C:37:71:C0:D8:7B:3F:F8:E0:D9
X509v3 Authority Key Identifier:
keyid:60:05:79:02:12:87:EA:64:95:D7:F9:34:A6:DE:D3:0E:E2:A5:BB:38
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1979f015-2d69-48f1-bb52-3581c4df48fa/0/600579021287EA6495D7F934A6DED30EE2A5BB38.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YAV5AhKH6mSV1_k0pt7TDuKluzg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1979f015-2d69-48f1-bb52-3581c4df48fa/0/323030313a3766383a3134623a3a2f34382d3438203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:7f8:14b::/48
Signature Algorithm: sha256WithRSAEncryption
0f:32:60:90:38:f3:ff:bf:56:1e:42:a8:cd:2a:2a:99:8a:68:
e7:1b:06:c1:5e:61:09:27:60:ca:af:ef:34:35:cc:cf:b0:de:
0c:5f:a7:dc:83:27:65:ca:50:55:cc:8c:24:00:38:d4:e7:c0:
ff:e6:41:77:41:96:7f:ba:dd:e4:2d:bb:0a:a8:04:fa:1b:3b:
97:4d:4d:0f:12:e9:f1:9a:0f:c6:c8:7d:27:d0:02:0e:f3:02:
06:8b:aa:cd:93:5c:c6:52:0b:d3:c1:fd:68:ba:df:ee:c1:93:
00:09:32:15:42:da:3e:9b:bd:31:e7:f7:b7:fe:8c:06:b5:95:
4c:48:e2:fb:32:9d:c6:b6:e2:83:1b:40:2f:fc:ef:71:22:fd:
10:8e:67:8d:d4:5b:32:24:6d:00:35:49:cb:2d:ed:e4:e5:06:
35:9f:77:7a:bf:16:96:0d:75:3b:07:2d:58:ce:c8:d0:35:49:
95:f4:f6:15:40:1a:f6:f2:c9:8a:c6:2d:85:0c:1e:f9:86:84:
e3:6a:9e:47:5c:e8:20:52:80:df:51:22:9d:56:64:4b:34:f1:
f9:d9:2f:6c:8b:4a:6f:e1:1e:65:23:df:41:80:8f:4a:67:e4:
f2:da:b5:83:75:2f:38:20:9a:3e:ff:71:cf:84:66:f8:64:20:
fc:6d:12:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 16:33:14 2025 by rpki-client