Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030303a3a2f34382d3438203d3e20323135333634.roa
File: 326131343a373538313a313030303a3a2f34382d3438203d3e20323135333634.roa (raw, json)
Hash identifier: bVfDGrPWdLwui8DtfBXvbCiHVGuacy8rV0eRqE8FYSQ=
Subject key identifier: B2:E3:17:1B:B7:C3:89:67:A7:F6:1A:68:3B:14:67:59:A4:D6:43:CC
Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11
Certificate serial: A9DE1F33864F93FDFD7359F5C9BD64FCFD79F7
Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030303a3a2f34382d3438203d3e20323135333634.roa
Signing time: Wed 05 Mar 2025 16:02:18 +0000
ROA not before: Wed 05 Mar 2025 15:57:18 +0000
ROA not after: Wed 04 Mar 2026 16:02:18 +0000
asID: 215364
IP address blocks: 2a14:7581:1000::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
a9:de:1f:33:86:4f:93:fd:fd:73:59:f5:c9:bd:64:fc:fd:79:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11
Validity
Not Before: Mar 5 15:57:18 2025 GMT
Not After : Mar 4 16:02:18 2026 GMT
Subject: CN=B2E3171BB7C38967A7F61A683B146759A4D643CC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:4a:f9:a5:f6:61:4c:e0:41:ef:48:6c:4e:e2:
51:a4:cf:21:3c:02:d5:3b:b6:30:c7:6d:34:8d:cc:
a2:e0:39:49:85:86:f5:68:39:3c:d7:1b:64:75:50:
37:30:05:c2:c1:69:1c:31:68:b5:33:0f:c1:44:48:
e2:50:de:79:86:3e:1a:fe:1a:34:4d:e6:1d:7e:ab:
93:26:c3:99:65:39:9f:38:e1:14:d4:de:da:41:81:
1f:ac:19:89:51:34:a6:50:52:0a:2b:d6:71:37:af:
8c:ed:e8:e9:26:0e:e6:d9:c9:f5:59:15:5b:65:e5:
1a:c2:15:68:ef:9b:92:cd:da:0b:1e:c0:e2:3c:9e:
fc:65:57:28:df:1f:3d:63:74:6a:31:2c:30:0a:d1:
b1:62:b0:36:31:de:16:8f:af:46:39:41:70:d8:82:
5a:c8:e0:e4:8f:82:e3:85:49:2b:e4:eb:04:18:3e:
f7:77:20:8b:68:47:cc:54:d8:19:e5:93:33:6a:90:
09:98:f6:aa:16:35:12:6d:15:29:93:68:ae:0b:b4:
d6:a4:ff:98:1d:df:1c:16:e9:72:b8:25:7a:fd:50:
b5:39:6b:c1:84:b5:03:3e:96:c9:8b:bf:b7:bd:8d:
9a:1c:dd:00:18:b4:1b:11:f0:c2:db:e9:01:05:f7:
8d:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:E3:17:1B:B7:C3:89:67:A7:F6:1A:68:3B:14:67:59:A4:D6:43:CC
X509v3 Authority Key Identifier:
keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030303a3a2f34382d3438203d3e20323135333634.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:1000::/48
Signature Algorithm: sha256WithRSAEncryption
9a:c8:96:d3:68:fb:49:e6:5c:c6:6c:13:e4:5e:a6:a7:28:a1:
97:61:55:42:e6:5b:97:3b:f3:9a:35:92:28:05:a2:2c:df:b5:
32:5c:28:3d:d0:18:f1:41:38:00:f8:96:9e:7d:7e:98:f2:6b:
bd:d7:3e:db:7b:24:4a:7d:8e:90:df:f3:47:61:51:33:85:63:
88:ff:91:37:d6:0b:0f:08:81:e0:16:bf:7f:22:22:3d:1d:1f:
bc:e1:ad:2c:5c:a7:16:7a:0d:26:4e:71:a3:53:8c:84:b4:60:
b6:5b:14:44:74:d0:f0:81:3e:ef:e5:8a:1f:6c:81:22:8d:69:
06:a4:ac:6b:58:5f:c6:97:2a:a2:f5:0b:1b:2f:dc:81:61:21:
e0:c0:b0:66:fa:9f:b2:8f:b5:6d:16:24:29:62:45:8a:d2:6b:
de:98:04:5d:b9:ed:55:af:72:97:37:a6:a0:9b:d0:a4:04:0e:
8d:6a:0e:94:9e:4f:5f:79:28:85:43:b8:00:69:ff:55:cf:33:
70:74:19:2c:e2:ad:06:2b:db:86:01:a5:1b:b2:ff:2d:83:66:
c0:21:d0:f2:57:e6:a7:90:e8:d7:60:55:09:9b:d5:81:3d:26:
14:af:ca:6c:9b:6d:41:a9:ec:02:4c:63:4e:28:29:03:98:02:
a3:d6:8e:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:33:58 2025 by rpki-client