Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/6/326131323a646434373a383430303a3a2f34302d3431203d3e20323033303639.roa
File: 326131323a646434373a383430303a3a2f34302d3431203d3e20323033303639.roa (raw, json)
Hash identifier: 6uTPKjd8Jsf6Wi2b8XzHwu4gfGjOpqSBVas5aTchW9k=
Subject key identifier: 60:F5:EF:54:11:2B:54:25:DB:7E:EE:05:8A:DD:00:68:19:84:0A:9D
Certificate issuer: /CN=34E6AAC74193FE34C57CB5F562608EE1E50DAD51
Certificate serial: 0D2CD73CBEE8F1796819541D4D30D45222B70A0E
Authority key identifier: 34:E6:AA:C7:41:93:FE:34:C5:7C:B5:F5:62:60:8E:E1:E5:0D:AD:51
Authority info access: rsync://rpki.co/repo/AS945/1/34E6AAC74193FE34C57CB5F562608EE1E50DAD51.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/6/326131323a646434373a383430303a3a2f34302d3431203d3e20323033303639.roa
Signing time: Fri 10 May 2024 19:29:53 +0000
ROA not before: Fri 10 May 2024 19:24:53 +0000
ROA not after: Fri 09 May 2025 19:29:53 +0000
asID: 203069
IP address blocks: 2a12:dd47:8400::/40 maxlen: 41
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:2c:d7:3c:be:e8:f1:79:68:19:54:1d:4d:30:d4:52:22:b7:0a:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34E6AAC74193FE34C57CB5F562608EE1E50DAD51
Validity
Not Before: May 10 19:24:53 2024 GMT
Not After : May 9 19:29:53 2025 GMT
Subject: CN=60F5EF54112B5425DB7EEE058ADD006819840A9D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:14:0c:ec:62:96:39:f0:b3:80:17:d7:76:9c:
05:17:7f:c9:fa:14:05:b3:d9:41:43:2c:6e:63:75:
26:c7:49:df:65:64:7f:8b:9c:9c:ae:4d:fe:4c:eb:
8d:f0:ca:6d:9d:7d:dc:49:fb:80:de:fb:42:3a:bc:
b3:f3:03:56:65:9a:79:66:cf:07:6b:c6:51:2d:ae:
38:3a:81:4f:dd:d1:e6:b8:1e:34:47:fb:31:b4:3e:
06:e9:21:b3:60:e0:1c:87:5f:3f:e8:76:da:0f:23:
92:f6:cd:05:7b:16:8a:9a:4c:99:7a:ca:b1:22:74:
0b:41:53:46:e1:36:f9:39:de:24:c1:de:83:5f:63:
4d:c3:4c:43:a0:63:0c:9a:e8:8b:a8:67:0e:9b:28:
84:2b:a0:05:1f:5e:71:95:52:5f:2c:85:31:2b:82:
a6:46:62:d7:a2:83:e3:b5:3a:fa:f0:0c:c5:20:38:
50:37:ee:eb:c2:13:38:be:46:25:33:25:65:5f:6c:
23:53:66:b8:fa:ee:66:fd:1d:c6:aa:1d:36:3d:b9:
61:5d:14:be:b3:cd:0a:04:c4:72:29:ba:10:65:86:
77:66:e1:30:3f:f9:ed:69:f9:80:9f:10:23:1b:e7:
53:83:3a:a5:99:0c:4e:eb:4f:83:20:cc:f6:86:2d:
65:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:F5:EF:54:11:2B:54:25:DB:7E:EE:05:8A:DD:00:68:19:84:0A:9D
X509v3 Authority Key Identifier:
keyid:34:E6:AA:C7:41:93:FE:34:C5:7C:B5:F5:62:60:8E:E1:E5:0D:AD:51
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/6/34E6AAC74193FE34C57CB5F562608EE1E50DAD51.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.co/repo/AS945/1/34E6AAC74193FE34C57CB5F562608EE1E50DAD51.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/6/326131323a646434373a383430303a3a2f34302d3431203d3e20323033303639.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:dd47:8400::/40
Signature Algorithm: sha256WithRSAEncryption
76:e9:8d:ce:12:55:96:ba:40:47:76:fe:71:36:d8:94:b0:5c:
1c:3a:27:83:fe:4a:ae:cd:fc:b8:0f:70:f5:e9:2c:70:b0:0f:
45:18:cd:d6:45:3b:5e:d1:6a:f9:e6:95:5c:85:af:93:f1:07:
72:4c:4d:6d:28:62:36:61:47:32:7a:32:96:26:8a:24:8c:99:
b3:4f:98:79:ad:9c:a7:e0:aa:4d:9b:15:b7:9f:78:8f:0b:95:
8e:59:5e:2f:d3:a6:56:10:42:d3:a7:0e:7a:a7:15:57:e0:7e:
fd:f1:3a:e3:07:cf:d0:46:08:b6:fe:9c:f3:60:cc:c6:54:26:
57:4a:6f:77:4f:02:cf:6c:37:f8:bc:1c:a4:f9:a8:3a:12:ed:
6d:2c:49:00:19:a4:fd:03:29:21:a1:f8:c3:9b:15:99:55:f0:
71:cb:e3:e3:2b:d4:29:fd:6a:a2:33:e7:3d:2d:98:5e:4f:23:
fe:b6:0a:60:2e:79:39:58:c5:38:e4:47:5c:de:ca:48:2f:f6:
26:12:bd:83:dd:3a:13:44:dc:93:62:43:b8:52:21:cd:e6:27:
03:f0:af:5d:e9:e3:4d:e8:4e:76:5e:1e:2b:72:d2:2e:c4:c8:
c6:c8:e3:fe:c7:e2:47:a7:cd:c7:3f:85:55:59:f5:69:a7:2f:
3c:1f:ed:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 22 03:57:34 2024 by rpki-client on console-ams.rpki-client.org