Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3130333a3a2f34382d3438203d3e20323136333234.roa
File: 326131343a373538313a3130333a3a2f34382d3438203d3e20323136333234.roa (raw, json)
Hash identifier: 3AX1McjNiDgH+3Qwn6EABosVdrcOBawKw5VzTiv+COk=
Subject key identifier: 36:30:D9:46:73:14:97:9E:F3:EB:C2:8F:C9:DE:95:6A:E3:29:7C:EB
Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11
Certificate serial: 0C5D464774C85366335A5B6FB5976F2DB211EEA1
Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3130333a3a2f34382d3438203d3e20323136333234.roa
Signing time: Tue 04 Feb 2025 15:01:55 +0000
ROA not before: Tue 04 Feb 2025 14:56:55 +0000
ROA not after: Tue 03 Feb 2026 15:01:55 +0000
asID: 216324
IP address blocks: 2a14:7581:103::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:5d:46:47:74:c8:53:66:33:5a:5b:6f:b5:97:6f:2d:b2:11:ee:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11
Validity
Not Before: Feb 4 14:56:55 2025 GMT
Not After : Feb 3 15:01:55 2026 GMT
Subject: CN=3630D9467314979EF3EBC28FC9DE956AE3297CEB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:69:5a:32:8f:40:e9:68:12:57:12:b0:e4:10:
70:42:e9:6d:af:51:15:e6:40:3c:68:a0:d2:f3:f4:
69:9d:31:14:96:63:1c:cc:fc:72:a8:ee:24:de:77:
21:8d:59:e5:c9:fb:80:13:7d:1a:53:41:eb:db:15:
51:bb:69:c0:fd:f5:f8:d5:29:46:de:0e:f8:e0:b1:
30:91:44:f7:33:f0:68:95:74:65:51:64:3b:b8:c1:
ee:e0:e6:34:ef:4c:7d:5c:08:b6:64:6e:8f:48:ff:
8f:d8:8d:79:dd:32:21:f4:ef:46:35:36:c4:86:56:
d3:e2:43:ea:f9:6e:0e:15:c3:13:e3:70:07:3d:16:
bd:03:ba:52:9e:4d:b1:c8:09:a9:5a:b4:0d:b2:39:
a9:ac:33:31:0b:62:9f:e2:78:a3:d7:62:01:4d:ea:
3a:4d:4b:dc:56:ad:01:99:25:65:51:49:1f:af:8a:
75:8f:09:b8:35:7c:c4:cb:2b:bd:bf:b2:fa:83:a7:
cb:cf:79:63:1c:4f:2e:42:bc:51:38:5f:53:fa:12:
05:e2:7b:1b:0c:da:65:09:7b:9e:f0:9d:ac:6b:16:
df:88:1d:e5:82:eb:d5:0f:02:c8:ba:6d:ee:b8:7d:
93:6e:d0:db:58:98:63:48:c2:58:e2:38:8f:8e:8f:
f1:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:30:D9:46:73:14:97:9E:F3:EB:C2:8F:C9:DE:95:6A:E3:29:7C:EB
X509v3 Authority Key Identifier:
keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3130333a3a2f34382d3438203d3e20323136333234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:103::/48
Signature Algorithm: sha256WithRSAEncryption
43:4e:9d:c2:fb:c0:78:44:6c:9d:75:fb:c5:72:32:80:c1:3a:
7c:81:d6:2f:9d:b4:50:da:0e:d8:19:8c:38:fd:d2:a6:92:7a:
e8:fa:ba:6f:8e:04:50:0f:67:3e:3c:de:85:61:e6:0f:62:59:
db:6c:09:bc:28:b8:4b:0f:06:85:c4:26:eb:ce:25:27:7d:ef:
21:25:16:89:1b:d8:b4:50:37:cf:3c:e3:2c:e1:1d:e3:f5:7e:
c6:82:f7:f4:0a:96:cb:bf:07:e6:4d:45:66:ea:21:d2:16:19:
53:91:78:f3:55:36:e0:c1:04:18:5e:65:2c:8d:4b:df:26:99:
36:bc:bd:29:39:a9:af:89:d9:93:d0:17:5d:16:38:74:2d:9a:
61:ce:ac:60:3d:87:73:64:4c:ad:a5:be:47:b6:c2:0a:15:b3:
f1:f9:2b:99:c4:46:ba:37:07:a9:61:91:e2:04:72:41:8d:e0:
8f:7c:79:19:59:a3:49:a0:4d:c7:48:98:27:8f:e9:1c:b2:0d:
de:e2:ca:93:96:24:9a:70:b2:8a:a8:dc:85:bc:c8:a0:23:2a:
78:99:81:11:a4:d3:c7:2c:c0:ee:18:f8:30:fe:66:fd:df:04:
86:87:44:06:81:52:37:67:7e:3c:84:3f:82:95:00:94:1c:d0:
af:84:ce:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:31:23 2025 by rpki-client