Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/326130363a396634343a663130303a3a2f34342d3438203d3e20323133323933.roa
File: 326130363a396634343a663130303a3a2f34342d3438203d3e20323133323933.roa (raw, json)
Hash identifier: WPwSkzQmftTMdP2NF4msAGlQy0pqynxEH9ybKWc3p34=
Subject key identifier: E4:69:BA:17:0F:9D:B3:54:22:69:98:BA:92:C1:DB:B7:C3:12:C1:A5
Certificate issuer: /CN=B9542CF5B0923A9011033E2F7CA543D6A25A48C1
Certificate serial: 4AABC5C32CDB9FDC34D65FF0486DDB96CAA9C27F
Authority key identifier: B9:54:2C:F5:B0:92:3A:90:11:03:3E:2F:7C:A5:43:D6:A2:5A:48:C1
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/326130363a396634343a663130303a3a2f34342d3438203d3e20323133323933.roa
Signing time: Tue 12 Dec 2023 14:49:14 +0000
ROA not before: Tue 12 Dec 2023 14:44:14 +0000
ROA not after: Tue 10 Dec 2024 14:49:14 +0000
asID: 213293
IP address blocks: 2a06:9f44:f100::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:ab:c5:c3:2c:db:9f:dc:34:d6:5f:f0:48:6d:db:96:ca:a9:c2:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B9542CF5B0923A9011033E2F7CA543D6A25A48C1
Validity
Not Before: Dec 12 14:44:14 2023 GMT
Not After : Dec 10 14:49:14 2024 GMT
Subject: CN=E469BA170F9DB354226998BA92C1DBB7C312C1A5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:8c:70:5d:41:a4:3d:8a:64:d9:4c:aa:2f:87:
6d:66:2a:b4:b6:c0:2c:5f:1e:5b:27:1a:eb:55:07:
7b:a6:80:89:88:2d:a1:b3:67:70:29:dc:39:f8:b3:
45:f6:c8:c5:92:e8:37:95:37:88:15:9c:1c:d1:fa:
69:25:6e:e9:f2:d6:65:9e:22:51:f6:cf:2d:3f:6c:
84:25:6e:27:db:e1:42:0a:8f:c7:af:cf:68:9f:30:
c7:15:7f:1a:35:9d:a7:d2:34:46:76:6b:c6:2c:63:
f5:eb:c3:f4:f2:7f:f2:47:87:00:1d:74:8e:9f:a6:
3a:6e:74:59:fb:eb:11:73:b4:3a:d3:ec:b3:41:ce:
b8:59:91:8d:55:19:48:3f:d5:9f:96:91:60:4e:8a:
b8:a7:11:63:fe:86:f7:c7:e5:62:11:a1:fd:a7:51:
93:8f:85:c9:a2:00:73:3c:d3:7a:82:07:14:d6:1d:
49:5f:29:8c:d5:09:36:31:f4:aa:cc:09:4a:0d:68:
12:24:61:ed:86:9c:1a:e5:f6:8f:47:46:78:1c:df:
e3:ba:54:08:14:6a:1e:c5:01:b1:18:23:1b:8a:7d:
3f:94:c1:e5:88:88:b7:4d:f5:5c:15:b3:db:50:e1:
df:6f:8f:0b:96:7c:9f:ab:b6:33:02:1a:e2:54:87:
62:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:69:BA:17:0F:9D:B3:54:22:69:98:BA:92:C1:DB:B7:C3:12:C1:A5
X509v3 Authority Key Identifier:
keyid:B9:54:2C:F5:B0:92:3A:90:11:03:3E:2F:7C:A5:43:D6:A2:5A:48:C1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/326130363a396634343a663130303a3a2f34342d3438203d3e20323133323933.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:9f44:f100::/44
Signature Algorithm: sha256WithRSAEncryption
17:b1:fc:c9:a6:16:61:3f:54:d1:c0:ad:8c:7e:52:07:ee:75:
f9:fb:0b:00:81:74:38:80:56:38:42:95:5c:72:1f:ac:81:3b:
58:ba:e3:70:f7:9a:7b:66:99:a1:54:e0:2c:26:32:55:87:f0:
65:c0:89:33:28:45:b5:5c:36:b6:24:4c:87:bd:aa:3d:b6:33:
ba:4f:a4:f0:2c:af:66:89:a0:52:94:6c:c8:68:50:d7:8b:0d:
d9:5d:25:ca:ff:c6:9e:b8:12:fb:d7:a7:7e:4a:61:dd:93:37:
a8:1f:14:4c:01:fe:e0:dd:93:74:a0:be:5f:0e:28:c5:90:93:
e7:98:4c:fc:35:98:b9:c5:1b:a0:4a:d3:40:60:5f:c8:01:01:
74:fc:1d:34:a3:3f:d8:78:cf:2e:db:cc:d4:0d:6a:f9:12:29:
b3:07:be:2d:86:df:ad:09:24:e2:bd:43:53:0a:d3:8e:19:ab:
7f:14:db:ab:be:4e:a2:51:42:4d:f5:2f:f4:92:09:64:26:d0:
2f:98:6d:23:7e:b8:2c:4b:08:53:0e:31:18:b5:24:8e:bc:2e:
27:57:8f:57:ec:c6:f5:4e:c3:d0:68:c7:b4:d1:f1:e5:4b:87:
cb:90:d2:21:cb:55:a4:9b:4f:27:ba:35:c7:e2:03:4d:6a:ac:
a9:95:13:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:33:20 2025 by rpki-client