Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/326131343a316563373a666666653a3a2f34382d3438203d3e20323135343733.roa
File: 326131343a316563373a666666653a3a2f34382d3438203d3e20323135343733.roa (raw, json)
Hash identifier: tXMEYMrTa38uR0L+SQ9LimzmDrpxo8zhMIaTp0PKkR0=
Subject key identifier: E5:88:AB:2B:3E:59:72:64:31:72:8F:9C:78:3B:03:D1:F2:E2:18:6B
Certificate issuer: /CN=3134ee987e08d8b5583feef621a03150c4f35434
Certificate serial: 64E9FE621AC3B705C07B8FDC30E5E3F1FAAC7393
Authority key identifier: 31:34:EE:98:7E:08:D8:B5:58:3F:EE:F6:21:A0:31:50:C4:F3:54:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/326131343a316563373a666666653a3a2f34382d3438203d3e20323135343733.roa
Signing time: Fri 21 Feb 2025 20:55:27 +0000
ROA not before: Fri 21 Feb 2025 20:50:27 +0000
ROA not after: Fri 20 Feb 2026 20:55:27 +0000
asID: 215473
IP address blocks: 2a14:1ec7:fffe::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:e9:fe:62:1a:c3:b7:05:c0:7b:8f:dc:30:e5:e3:f1:fa:ac:73:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3134ee987e08d8b5583feef621a03150c4f35434
Validity
Not Before: Feb 21 20:50:27 2025 GMT
Not After : Feb 20 20:55:27 2026 GMT
Subject: CN=E588AB2B3E59726431728F9C783B03D1F2E2186B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:a4:9b:3b:b2:af:49:92:3e:7a:72:fa:e1:01:
12:62:79:ac:a5:e1:3f:df:5f:f3:bb:bf:5c:ec:c1:
6d:34:3b:da:8f:24:7b:a6:fb:fb:a5:ad:26:e9:61:
de:4c:01:dd:95:51:f0:22:5a:34:28:e0:3f:5f:03:
b8:b5:d7:2f:84:b0:67:f1:1e:4b:30:0d:f5:32:f3:
6e:b9:3b:53:e1:20:05:e4:bd:0b:b9:9d:0b:c0:c9:
d6:65:26:7a:31:9e:c4:ac:e4:21:41:0d:67:22:61:
59:c0:27:29:8e:73:0b:17:8c:5a:34:2d:a1:66:84:
bc:fa:ee:78:ad:d1:6b:a3:65:0b:f7:2f:a2:18:a6:
b5:45:bf:68:d6:c7:62:49:94:a3:1a:bf:d7:ba:5b:
59:45:57:ce:34:a3:b7:9b:0f:50:a8:69:2c:14:44:
70:86:ac:12:b2:a8:90:40:cc:b2:f1:64:35:32:79:
e4:5b:81:41:37:e4:8d:6c:45:af:5c:f5:c0:0b:8c:
69:30:7b:d0:19:8b:83:dd:82:39:d7:c3:3d:83:cf:
c4:8e:0b:47:bc:f8:14:af:06:ce:8d:15:a2:00:90:
bd:a2:f2:5f:d2:a0:83:6b:61:67:57:f1:3e:ae:4f:
12:80:d8:99:c8:5d:af:6a:71:57:c2:3c:51:1c:6b:
f8:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:88:AB:2B:3E:59:72:64:31:72:8F:9C:78:3B:03:D1:F2:E2:18:6B
X509v3 Authority Key Identifier:
keyid:31:34:EE:98:7E:08:D8:B5:58:3F:EE:F6:21:A0:31:50:C4:F3:54:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/326131343a316563373a666666653a3a2f34382d3438203d3e20323135343733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:1ec7:fffe::/48
Signature Algorithm: sha256WithRSAEncryption
58:44:02:82:73:9b:01:6e:6e:8a:46:a1:3f:95:f8:3d:e3:7e:
24:da:49:03:97:8b:83:8e:93:54:bd:62:a1:66:45:ba:cb:1e:
3d:61:38:71:e8:56:93:2b:ab:ff:e1:55:3f:4a:f4:3f:fd:00:
07:58:75:d4:52:1e:5d:25:ca:e0:33:47:be:f0:9a:28:97:89:
8a:36:19:2d:0b:63:49:ec:39:3c:d3:96:3f:8f:17:fc:ac:16:
35:b3:07:82:05:c8:73:71:b7:22:5c:55:e3:28:2d:4e:28:f1:
d7:78:00:01:8f:90:8e:13:1b:61:f8:ba:3b:c3:e9:80:74:42:
25:45:e4:7b:0f:c7:47:15:de:ef:05:85:5f:df:7e:e4:80:28:
5f:b0:ba:67:d2:e0:76:90:af:46:38:06:7d:a3:e5:5c:ea:21:
9c:77:61:d4:98:06:5d:c1:61:ca:2d:10:ef:90:c0:a2:4a:18:
52:b8:98:0b:60:a2:ae:b0:c8:1b:dc:4f:c5:ac:55:87:03:3d:
96:6f:fb:64:bd:1a:b7:d4:ef:40:7c:2a:10:9d:e1:f1:ff:2d:
30:44:1c:b8:6b:c7:8a:ac:06:31:bd:1b:a3:8a:94:af:3f:ce:
2c:eb:d4:9f:51:09:e0:f7:17:23:46:19:f2:b2:ce:71:24:a9:
79:aa:90:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:37:08 2025 by rpki-client