Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/326131343a316563373a666666663a3a2f34382d3438203d3e20323030313739.roa
File: 326131343a316563373a666666663a3a2f34382d3438203d3e20323030313739.roa (raw, json)
Hash identifier: jxX5jejatt6POI8r69/OIdC4tpqjlqDh7/l5cMHt1Lc=
Subject key identifier: 6D:BE:BC:C3:D6:91:51:B7:0E:1D:55:49:33:73:29:C4:44:1E:16:44
Certificate issuer: /CN=3134ee987e08d8b5583feef621a03150c4f35434
Certificate serial: 39FB5D3C5536869DE4FE26F711F847B286AD221F
Authority key identifier: 31:34:EE:98:7E:08:D8:B5:58:3F:EE:F6:21:A0:31:50:C4:F3:54:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/326131343a316563373a666666663a3a2f34382d3438203d3e20323030313739.roa
Signing time: Fri 14 Feb 2025 18:55:27 +0000
ROA not before: Fri 14 Feb 2025 18:50:27 +0000
ROA not after: Fri 13 Feb 2026 18:55:27 +0000
asID: 200179
IP address blocks: 2a14:1ec7:ffff::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:fb:5d:3c:55:36:86:9d:e4:fe:26:f7:11:f8:47:b2:86:ad:22:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3134ee987e08d8b5583feef621a03150c4f35434
Validity
Not Before: Feb 14 18:50:27 2025 GMT
Not After : Feb 13 18:55:27 2026 GMT
Subject: CN=6DBEBCC3D69151B70E1D5549337329C4441E1644
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:5f:75:82:c8:70:c3:09:ab:bb:f0:ae:ec:26:
7a:4c:0a:73:31:00:99:95:de:66:35:3f:41:96:af:
53:61:1f:af:0b:81:e9:ec:f8:da:ea:ea:d0:0a:09:
19:38:9a:77:dd:5c:61:56:61:8a:5f:d5:9a:50:18:
0a:d7:3b:2b:93:5c:fa:96:22:13:b0:b2:a5:3c:2c:
7d:be:ef:a3:b5:87:fc:ff:4e:36:15:6c:63:ba:ef:
02:49:28:80:a6:3a:4f:44:05:7d:3c:c1:15:54:e4:
38:1b:54:11:53:85:d7:0e:a7:6b:4f:29:14:b8:b2:
4b:aa:c2:f1:c6:85:7a:8d:37:67:fb:d7:5d:98:7a:
e1:d3:f0:e1:2b:66:91:b3:16:5d:45:e2:6b:ae:63:
a0:8a:46:dc:48:9c:10:16:cb:96:31:1c:69:d0:10:
bf:73:93:4d:64:70:42:2b:b8:0d:76:f2:de:28:9d:
45:8a:dd:26:80:ae:90:5b:61:14:a0:2f:d2:f6:8b:
08:12:13:ab:8a:68:3a:db:ec:20:7f:b9:62:91:75:
cd:d9:b9:c5:08:aa:61:2f:1f:41:33:ab:9c:10:4e:
11:d6:94:64:aa:ec:4b:da:81:17:55:61:f5:b3:62:
4b:07:b1:ff:20:c5:34:a2:e9:ef:20:4c:9d:a2:46:
10:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:BE:BC:C3:D6:91:51:B7:0E:1D:55:49:33:73:29:C4:44:1E:16:44
X509v3 Authority Key Identifier:
keyid:31:34:EE:98:7E:08:D8:B5:58:3F:EE:F6:21:A0:31:50:C4:F3:54:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/326131343a316563373a666666663a3a2f34382d3438203d3e20323030313739.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:1ec7:ffff::/48
Signature Algorithm: sha256WithRSAEncryption
9f:71:e2:20:80:83:04:c9:2e:ea:ee:d5:0b:4c:6c:90:c2:d2:
69:ef:1d:aa:4c:30:e3:55:3b:1c:6c:a7:6a:00:1d:c0:07:cd:
43:be:4c:ca:8d:02:fc:6b:1f:91:8d:d1:a4:ff:34:f5:b3:5f:
50:13:c2:0b:e9:28:a5:95:84:4b:65:b6:84:7c:2e:13:1a:43:
4f:6c:f0:aa:9c:8d:e0:b7:ca:a0:90:ad:4e:f9:e9:97:71:e8:
3b:f9:a8:1f:04:db:7c:9c:bd:ef:3b:e3:38:0c:f8:95:b4:bb:
65:c3:46:b8:c1:07:ea:94:9f:b0:8b:e4:18:22:b3:2d:af:1e:
14:19:90:61:60:d0:1e:27:e5:be:14:8d:ba:57:7f:fc:8c:d5:
b3:49:d3:8e:bd:0d:7f:19:ed:1b:92:c5:ce:fb:15:2b:a8:49:
dd:80:d9:ba:a1:28:28:69:4f:c6:fa:8f:67:97:0e:49:4b:6a:
33:b3:ec:3a:5c:26:04:bb:24:ae:b4:0f:59:06:0f:60:e5:f3:
a9:04:76:a0:f3:82:8b:84:e3:48:ac:6e:34:45:2e:0d:d7:0f:
60:f2:28:35:71:49:6d:a9:31:23:8f:0d:1d:31:63:05:05:42:
e1:e2:b5:ed:49:90:83:2c:c0:84:9a:93:c4:d3:9a:e9:f1:bf:
a1:c8:52:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 22:33:48 2025 by rpki-client