Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/2/326130393a353463363a383030303a3a2f34372d3437203d3e20323134343531.roa
File: 326130393a353463363a383030303a3a2f34372d3437203d3e20323134343531.roa (raw, json)
Hash identifier: e0au/5cGv1Pv+omA08EMMw/+Xqdlaj4f052UKrYUHYI=
Subject key identifier: 14:5A:22:86:62:46:44:76:99:E1:81:1F:35:0D:0B:26:96:47:FE:67
Certificate issuer: /CN=BD36051F9A727996CE309FAF4E5757E504EB2C46
Certificate serial: 57944C3D086CAD320884EBE2E499FE1949A62EFF
Authority key identifier: BD:36:05:1F:9A:72:79:96:CE:30:9F:AF:4E:57:57:E5:04:EB:2C:46
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/BD36051F9A727996CE309FAF4E5757E504EB2C46.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/2/326130393a353463363a383030303a3a2f34372d3437203d3e20323134343531.roa
Signing time: Thu 24 Oct 2024 20:42:58 +0000
ROA not before: Thu 24 Oct 2024 20:37:58 +0000
ROA not after: Thu 23 Oct 2025 20:42:58 +0000
asID: 214451
IP address blocks: 2a09:54c6:8000::/47 maxlen: 47
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:94:4c:3d:08:6c:ad:32:08:84:eb:e2:e4:99:fe:19:49:a6:2e:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BD36051F9A727996CE309FAF4E5757E504EB2C46
Validity
Not Before: Oct 24 20:37:58 2024 GMT
Not After : Oct 23 20:42:58 2025 GMT
Subject: CN=145A22866246447699E1811F350D0B269647FE67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:19:dc:71:0a:a0:10:85:bd:5f:76:bc:c4:4b:
bf:a9:90:ac:e6:ab:37:15:55:2f:70:52:8d:a7:eb:
ec:f6:86:34:8d:1e:30:2b:36:f8:13:9d:8f:11:6c:
c3:f4:9e:76:90:24:4b:20:4d:c9:d1:5f:e7:a5:99:
ca:4c:dc:89:58:73:87:fa:56:a8:8f:2c:f6:00:92:
5b:3d:0f:99:7e:5a:17:4f:32:72:ad:e0:7b:46:de:
f6:11:2b:55:e8:20:5b:ef:07:21:ea:2b:0e:7e:7a:
10:0b:5c:5c:f0:11:01:7c:59:19:32:d6:0c:c4:64:
e4:12:d6:2c:0b:75:03:57:5f:a9:96:3c:a6:1d:ce:
f1:f2:c5:d7:3a:b8:05:19:9b:dd:7f:87:18:68:85:
05:27:21:89:09:6c:53:ef:f9:06:5a:ce:4b:9d:8f:
f1:dd:ab:18:a8:d0:bf:3a:51:5b:4b:b9:87:ee:1a:
ed:b1:11:bb:58:eb:3a:bd:41:0e:9a:b7:97:16:bc:
19:d6:b1:71:dc:d9:a9:d7:d5:5c:3d:5a:d4:99:60:
cf:57:e8:c4:bf:c1:ad:d0:a7:d5:4f:0d:99:91:85:
1c:d6:fd:e9:37:62:65:3b:c0:2b:92:4a:d0:0f:0c:
7a:d5:f5:5f:3e:f5:dc:bf:47:b7:90:cd:aa:c3:67:
36:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:5A:22:86:62:46:44:76:99:E1:81:1F:35:0D:0B:26:96:47:FE:67
X509v3 Authority Key Identifier:
keyid:BD:36:05:1F:9A:72:79:96:CE:30:9F:AF:4E:57:57:E5:04:EB:2C:46
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/2/BD36051F9A727996CE309FAF4E5757E504EB2C46.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/BD36051F9A727996CE309FAF4E5757E504EB2C46.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/2/326130393a353463363a383030303a3a2f34372d3437203d3e20323134343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:54c6:8000::/47
Signature Algorithm: sha256WithRSAEncryption
97:eb:9f:15:6e:a8:70:d7:7b:57:87:44:94:2f:cd:62:97:01:
97:bc:49:e9:34:8c:36:66:33:98:8e:7c:25:23:ea:67:15:72:
ee:c9:b6:ef:05:a7:a4:9e:bc:06:7d:19:93:65:f1:c1:07:e5:
25:25:d7:be:1c:bb:05:24:0b:27:b5:f7:78:a1:19:ad:b2:07:
6a:02:d6:3c:ec:b3:4f:72:7a:a4:5c:5e:2b:ac:0b:a0:83:bb:
54:37:f1:26:0a:3c:3e:4a:c8:2f:28:6a:0d:6b:72:ba:16:cc:
73:be:f5:86:fb:0f:32:e0:c3:31:73:b6:9a:6c:bb:01:4d:a5:
d8:e6:fe:36:84:ed:95:1a:90:3f:85:a4:d9:61:f3:3c:c5:43:
aa:ef:d9:a7:21:52:4b:39:81:3e:8f:04:58:40:86:4c:b1:7d:
3e:88:b7:6d:6e:a4:34:4d:6f:db:a6:8c:4d:c6:d6:d1:32:9d:
f8:76:4c:03:ea:1e:36:f1:e3:31:1c:d4:bf:14:26:33:b2:e6:
06:30:58:a9:25:7b:6f:d5:af:89:5b:c3:20:17:34:74:1b:99:
c0:47:bb:37:9f:2c:09:59:bd:35:71:3d:e0:2e:65:fc:36:71:
f7:48:8e:23:8a:29:79:ac:02:af:93:6d:72:6e:62:7e:23:06:
24:f2:ac:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:38:21 2025 by rpki-client