Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/6/326131323a646434373a383466653a3a2f34382d3438203d3e2030.roa
File: 326131323a646434373a383466653a3a2f34382d3438203d3e2030.roa (raw, json)
Hash identifier: B29AvyCcHF6Ey+hbokvxYTeaXKEiFIqZzdkHp/0ApbE=
Subject key identifier: 3A:1E:EE:D0:33:34:46:55:15:42:D8:64:0E:B9:A2:B5:E2:03:9D:CA
Certificate issuer: /CN=34E6AAC74193FE34C57CB5F562608EE1E50DAD51
Certificate serial: 539620C79E23442EAA59D2FA8A2FF50E66D3C829
Authority key identifier: 34:E6:AA:C7:41:93:FE:34:C5:7C:B5:F5:62:60:8E:E1:E5:0D:AD:51
Authority info access: rsync://rpki.co/repo/AS945/1/34E6AAC74193FE34C57CB5F562608EE1E50DAD51.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/6/326131323a646434373a383466653a3a2f34382d3438203d3e2030.roa
Signing time: Mon 29 Jan 2024 13:50:40 +0000
ROA not before: Mon 29 Jan 2024 13:45:40 +0000
ROA not after: Mon 27 Jan 2025 13:50:40 +0000
asID: 0
IP address blocks: 2a12:dd47:84fe::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:96:20:c7:9e:23:44:2e:aa:59:d2:fa:8a:2f:f5:0e:66:d3:c8:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34E6AAC74193FE34C57CB5F562608EE1E50DAD51
Validity
Not Before: Jan 29 13:45:40 2024 GMT
Not After : Jan 27 13:50:40 2025 GMT
Subject: CN=3A1EEED0333446551542D8640EB9A2B5E2039DCA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:14:43:32:df:0c:c4:be:82:71:7a:26:19:05:
10:c8:3f:a7:3d:0e:99:87:90:ad:6f:f3:92:de:4d:
0f:d2:5b:12:36:63:e4:75:02:49:8e:5f:27:e4:45:
5e:18:3e:8b:4b:ce:59:28:e8:cb:88:3c:40:76:de:
55:cc:d5:0e:0d:8c:76:92:33:77:e8:9d:29:5e:25:
7c:ca:c2:68:1c:c4:e2:41:11:e6:c4:95:b1:72:60:
37:a3:7e:ac:6d:6b:07:38:be:05:a4:ab:08:81:8d:
5a:be:b9:1a:76:08:82:cb:4c:69:ec:9a:64:24:90:
f3:f0:f5:24:f7:ff:f0:30:63:36:6d:76:52:b3:c5:
00:06:d6:5a:1f:e0:34:6a:f1:a2:34:ac:60:91:fa:
14:0b:b9:52:d0:bd:b2:e0:8c:29:28:7c:46:1c:0d:
b2:16:c6:a3:f8:b1:d6:e8:6e:90:fc:ff:6f:2a:76:
7e:44:75:07:a4:73:b1:b1:3d:fd:ac:f1:2f:31:3b:
5a:52:56:d2:fa:95:7a:5e:31:c6:98:33:6c:38:0b:
bb:fe:56:20:eb:97:52:6d:e8:d5:ba:d4:78:89:24:
59:29:fc:47:6a:32:06:c1:ca:8f:dd:23:41:89:67:
20:61:3b:6a:2c:b5:9a:5c:05:85:7b:6f:fa:8f:25:
2e:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:1E:EE:D0:33:34:46:55:15:42:D8:64:0E:B9:A2:B5:E2:03:9D:CA
X509v3 Authority Key Identifier:
keyid:34:E6:AA:C7:41:93:FE:34:C5:7C:B5:F5:62:60:8E:E1:E5:0D:AD:51
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/6/34E6AAC74193FE34C57CB5F562608EE1E50DAD51.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.co/repo/AS945/1/34E6AAC74193FE34C57CB5F562608EE1E50DAD51.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/6/326131323a646434373a383466653a3a2f34382d3438203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:dd47:84fe::/48
Signature Algorithm: sha256WithRSAEncryption
08:04:2b:69:ef:2a:4c:36:af:09:74:e2:c5:45:b1:69:63:a5:
b6:b8:f3:96:43:73:21:d7:0a:c2:41:f9:a6:84:01:de:2f:0c:
0c:cd:47:87:61:37:e5:26:a1:76:c6:6b:ae:99:f5:71:0a:b7:
0d:90:28:c4:bb:bf:9a:46:e7:89:6a:f2:0b:36:c0:d1:58:3e:
28:ad:78:b8:21:0a:47:a9:2e:84:ee:0b:0a:d2:09:3c:8d:75:
ce:7e:67:ca:9d:4f:c1:3d:aa:fc:50:9e:76:35:79:4b:a2:07:
fa:f0:8d:ae:a8:9e:47:37:4b:22:23:66:9b:0f:92:b2:4e:fa:
8e:7a:bc:9e:10:51:e3:43:f9:f7:73:80:8d:b2:15:a8:90:6d:
39:ce:3b:98:d2:4a:66:e4:8a:85:9f:34:09:a1:83:48:3b:85:
b8:4a:06:af:78:16:86:02:27:52:ba:70:05:d0:65:df:2d:51:
46:92:d5:a9:de:15:1c:fe:d6:51:97:8d:5e:b8:1c:c7:85:16:
f6:8c:68:62:f6:dd:86:e9:c0:30:cd:0e:cb:6a:18:75:11:2f:
27:5c:41:77:58:09:65:02:d7:06:79:bf:7a:ec:22:0d:0a:f6:
65:9f:55:91:80:9f:21:e7:ef:83:c3:6d:99:a4:04:9c:93:b1:
80:82:6f:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:49:29 2025 by rpki-client