Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/1/326130613a363034343a376230313a3a2f34382d3438203d3e20323134373638.roa
File: 326130613a363034343a376230313a3a2f34382d3438203d3e20323134373638.roa (raw, json)
Hash identifier: iF8Ye8vJ9K2gVh9mmhftlrMH0DGBAd4nVfgnpVtc6hw=
Subject key identifier: 0F:97:4D:DA:92:49:5A:23:22:BE:BF:19:D4:28:CF:AA:AD:8B:9F:CD
Certificate issuer: /CN=451E20DA90C6D597951FEC29DF3771EAC47643EE
Certificate serial: 38CC2F2929D5840571F312FE5D89ACAD62A6D33A
Authority key identifier: 45:1E:20:DA:90:C6:D5:97:95:1F:EC:29:DF:37:71:EA:C4:76:43:EE
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/451E20DA90C6D597951FEC29DF3771EAC47643EE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/1/326130613a363034343a376230313a3a2f34382d3438203d3e20323134373638.roa
Signing time: Mon 16 Sep 2024 15:27:45 +0000
ROA not before: Mon 16 Sep 2024 15:22:45 +0000
ROA not after: Mon 15 Sep 2025 15:27:45 +0000
asID: 214768
IP address blocks: 2a0a:6044:7b01::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:cc:2f:29:29:d5:84:05:71:f3:12:fe:5d:89:ac:ad:62:a6:d3:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=451E20DA90C6D597951FEC29DF3771EAC47643EE
Validity
Not Before: Sep 16 15:22:45 2024 GMT
Not After : Sep 15 15:27:45 2025 GMT
Subject: CN=0F974DDA92495A2322BEBF19D428CFAAAD8B9FCD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:6e:cb:64:8e:7b:84:cb:bf:b2:31:d3:48:07:
33:b7:e2:4f:a0:5d:a3:cf:b8:54:df:7c:c0:ae:6b:
a5:56:fa:6e:0d:cf:f0:16:0e:68:96:32:89:8b:37:
93:55:e0:71:1c:78:e7:a2:5d:75:70:91:d2:82:47:
5f:58:2c:e3:10:50:4e:dd:a0:dd:6b:c7:ef:d2:52:
39:77:f0:7b:bf:43:bd:78:4a:8d:7d:f2:4a:43:48:
48:a7:70:da:10:a8:c1:81:58:cb:12:03:8e:cc:93:
40:73:3a:40:93:94:bf:0e:7a:6d:bb:77:28:c9:12:
42:9e:48:c0:b7:87:73:3f:89:82:f8:98:db:57:15:
e8:1f:62:10:7d:1c:af:70:d4:a5:61:e9:74:26:41:
25:51:09:f0:7e:c5:c1:68:aa:23:ea:92:ed:da:40:
5e:1f:ce:eb:3b:1b:ff:64:a9:29:96:66:b5:98:69:
7a:b5:cf:cb:fb:28:f3:48:dd:e7:d5:b6:6e:e5:2f:
51:a7:d8:f6:c6:b8:1e:18:f2:c4:2d:75:e7:2a:c7:
7a:6e:ff:89:f9:6e:6d:36:66:67:f7:b6:b7:db:df:
64:ff:a7:e6:a8:76:84:12:b4:02:95:4c:0a:69:ff:
3c:c4:33:a0:cc:df:14:39:8c:0e:63:ec:73:ac:94:
ae:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:97:4D:DA:92:49:5A:23:22:BE:BF:19:D4:28:CF:AA:AD:8B:9F:CD
X509v3 Authority Key Identifier:
keyid:45:1E:20:DA:90:C6:D5:97:95:1F:EC:29:DF:37:71:EA:C4:76:43:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/1/451E20DA90C6D597951FEC29DF3771EAC47643EE.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/451E20DA90C6D597951FEC29DF3771EAC47643EE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/1/326130613a363034343a376230313a3a2f34382d3438203d3e20323134373638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6044:7b01::/48
Signature Algorithm: sha256WithRSAEncryption
91:b8:b0:cc:ea:16:39:b2:bd:36:17:75:b7:ae:23:60:95:ae:
15:83:15:a5:a9:85:47:4b:ae:84:ed:b1:99:fd:55:58:a6:e0:
31:cd:4d:4a:5d:60:c2:4e:e5:f3:54:bb:72:7d:98:53:57:46:
cb:cb:72:e3:b0:75:eb:61:c4:66:1f:46:9f:69:d3:19:04:5f:
d9:26:fb:ad:49:79:2d:c4:af:a7:1a:a4:77:28:74:a9:6f:97:
46:cf:a7:08:06:bd:a6:c5:09:21:88:8f:7b:36:83:bb:55:89:
3e:42:de:be:3d:90:eb:98:6f:76:8a:9a:7c:7c:83:39:81:6d:
95:07:08:d6:7e:0b:8e:45:96:4d:77:d0:e2:fd:cd:b6:3b:9f:
3a:5c:bf:bf:29:2a:85:03:97:f3:54:d7:7c:33:46:fb:7f:f4:
30:a1:f1:31:67:3c:bc:63:ba:c5:97:f9:bb:21:5d:9f:c5:92:
06:7f:8d:38:76:c0:d6:d2:72:f9:fc:50:a6:c9:7f:13:ee:67:
1b:f4:26:be:32:72:48:b5:56:5b:f5:20:d1:7f:d4:0f:4c:8f:
c0:0c:5a:3d:dd:a9:d1:bd:95:82:c0:a2:ba:f1:25:d4:48:ff:
f5:97:d2:ae:25:60:ee:28:98:5f:54:f0:b0:ca:23:fe:44:74:
92:75:7b:76
-----BEGIN CERTIFICATE-----
MIIFezCCBGOgAwIBAgIUOMwvKSnVhAVx8xL+XYmsrWKm0zowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDUxRTIwREE5MEM2RDU5Nzk1MUZFQzI5REYzNzcxRUFD
NDc2NDNFRTAeFw0yNDA5MTYxNTIyNDVaFw0yNTA5MTUxNTI3NDVaMDMxMTAvBgNV
BAMTKDBGOTc0RERBOTI0OTVBMjMyMkJFQkYxOUQ0MjhDRkFBQUQ4QjlGQ0QwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWbstkjnuEy7+yMdNIBzO34k+g
XaPPuFTffMCua6VW+m4Nz/AWDmiWMomLN5NV4HEceOeiXXVwkdKCR19YLOMQUE7d
oN1rx+/SUjl38Hu/Q714So198kpDSEincNoQqMGBWMsSA47Mk0BzOkCTlL8Oem27
dyjJEkKeSMC3h3M/iYL4mNtXFegfYhB9HK9w1KVh6XQmQSVRCfB+xcFoqiPqku3a
QF4fzus7G/9kqSmWZrWYaXq1z8v7KPNI3efVtm7lL1Gn2PbGuB4Y8sQtdecqx3pu
/4n5bm02Zmf3trfb32T/p+aodoQStAKVTApp/zzEM6DM3xQ5jA5j7HOslK6RAgMB
AAGjggKFMIICgTAdBgNVHQ4EFgQUD5dN2pJJWiMivr8Z1CjPqq2Ln80wHwYDVR0j
BBgwFoAURR4g2pDG1ZeVH+wp3zdx6sR2Q+4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMjNjZGY5Y2EtZGQ2NC00ZjMxLWFiZjMtMGYzMmI4ZTdm
ZTc5LzEvNDUxRTIwREE5MEM2RDU5Nzk1MUZFQzI5REYzNzcxRUFDNDc2NDNFRS5j
cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu
Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8zMjUzZDk3My1kNWJmLTQ1
NDEtYmNjMS0yNzY1NDNhMjVjN2QvMC80NTFFMjBEQTkwQzZENTk3OTUxRkVDMjlE
RjM3NzFFQUM0NzY0M0VFLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF
BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS8yM2NkZjljYS1kZDY0LTRmMzEtYWJmMy0wZjMyYjhlN2ZlNzkvMS8zMjYxMzA2
MTNhMzYzMDM0MzQzYTM3NjIzMDMxM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz
MTM0MzczNjM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF
BwEHAQH/BBMwETAPBAIAAjAJAwcAKgpgRHsBMA0GCSqGSIb3DQEBCwUAA4IBAQCR
uLDM6hY5sr02F3W3riNgla4VgxWlqYVHS66E7bGZ/VVYpuAxzU1KXWDCTuXzVLty
fZhTV0bLy3LjsHXrYcRmH0afadMZBF/ZJvutSXktxK+nGqR3KHSpb5dGz6cIBr2m
xQkhiI97NoO7VYk+Qt6+PZDrmG92ipp8fIM5gW2VBwjWfguORZZNd9Di/c22O586
XL+/KSqFA5fzVNd8M0b7f/QwofExZzy8Y7rFl/m7IV2fxZIGf404dsDW0nL5/FCm
yX8T7mcb9Ca+MnJItVZb9SDRf9QPTI/ADFo93anRvZWCwKK68SXUSP/1l9KuJWDu
KJhfVPCwyiP+RHSSdXt2
-----END CERTIFICATE-----
Generated at Sat Apr 5 06:32:15 2025 by rpki-client