Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3130333a3a2f34382d3438203d3e203533333536.roa
File: 326131343a373538313a3130333a3a2f34382d3438203d3e203533333536.roa (raw, json)
Hash identifier: +2fJLKBQjI9Q6jBQqhYhqk83bTNb57xmop6eIeq8VjM=
Subject key identifier: AE:86:00:60:F7:FE:34:57:82:94:93:9E:C4:A9:2A:94:32:2A:5B:9A
Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11
Certificate serial: 6FA00AA2551B31C7E25CBD248534EC952C083D0B
Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3130333a3a2f34382d3438203d3e203533333536.roa
Signing time: Wed 29 May 2024 16:06:10 +0000
ROA not before: Wed 29 May 2024 16:01:10 +0000
ROA not after: Wed 28 May 2025 16:06:10 +0000
asID: 53356
IP address blocks: 2a14:7581:103::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:a0:0a:a2:55:1b:31:c7:e2:5c:bd:24:85:34:ec:95:2c:08:3d:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11
Validity
Not Before: May 29 16:01:10 2024 GMT
Not After : May 28 16:06:10 2025 GMT
Subject: CN=AE860060F7FE34578294939EC4A92A94322A5B9A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:68:1e:53:de:ba:79:ef:24:55:b1:84:5d:5f:
78:8c:58:14:81:97:b6:e4:be:d0:22:4e:6b:59:bb:
9e:d5:01:06:05:97:d1:de:62:f4:51:d5:54:51:df:
dc:4e:ca:45:e9:3d:fd:a1:fc:4e:3e:62:63:41:d3:
9f:a5:53:7c:0b:2e:6a:1d:e2:f0:7c:b1:7a:48:43:
47:d1:e7:b7:e1:50:eb:79:e1:57:4d:5b:91:a1:51:
d1:96:7b:21:18:a1:89:a1:0e:5a:41:c2:d9:15:e7:
e1:ed:e5:ff:3b:f4:dc:6d:46:1b:5a:0c:ae:2d:6b:
fa:80:90:c7:86:60:72:51:ed:0e:8e:a6:42:cd:d9:
4b:28:3c:d3:8b:95:e0:e3:a4:03:f5:e5:fc:9d:4a:
0c:be:68:ff:f8:0f:15:17:20:da:19:09:62:12:bc:
3f:60:11:2e:ed:2a:cf:d4:25:cf:3d:03:f4:38:3b:
84:ae:ed:52:ef:78:da:f3:fd:23:0a:f3:6e:fe:30:
ff:ee:95:c9:91:3f:74:23:23:83:bf:40:b5:60:2f:
e2:6c:d0:9c:6b:90:c0:0b:fb:ec:08:74:2b:69:89:
67:8f:c2:df:30:21:25:6e:42:55:e3:59:7a:8b:9d:
aa:17:ea:90:80:8f:8b:85:5f:37:6d:0a:64:4e:e4:
9c:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:86:00:60:F7:FE:34:57:82:94:93:9E:C4:A9:2A:94:32:2A:5B:9A
X509v3 Authority Key Identifier:
keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3130333a3a2f34382d3438203d3e203533333536.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:103::/48
Signature Algorithm: sha256WithRSAEncryption
0a:40:34:0f:91:2e:c1:82:3a:e9:87:32:f7:7c:d9:50:27:4e:
ac:9f:5a:be:b8:e6:98:6a:e7:80:4c:20:8a:a7:02:54:81:70:
06:ee:d1:bf:09:35:2a:23:20:48:b1:d4:27:51:0f:4e:a9:67:
cd:71:f1:14:99:17:69:3b:27:47:40:98:4a:3e:5a:b2:e8:af:
a0:90:2c:35:e4:06:8d:53:76:57:95:d6:ce:90:39:6f:80:9b:
31:0a:cb:39:2a:88:88:42:4d:3e:ab:17:e1:45:ff:c6:d5:94:
1a:cc:5a:88:d5:58:8b:c4:35:19:5f:e4:8a:dd:c7:71:61:69:
38:b0:f0:4f:f8:20:de:b1:16:33:88:a7:d4:75:df:7c:3c:5f:
90:f6:87:bb:3b:23:88:eb:ba:f8:bd:33:e1:b9:93:68:67:e0:
08:76:38:e5:1d:3d:c6:1d:03:50:67:82:59:be:2d:7c:b6:27:
cd:19:6f:a3:b0:94:56:be:bb:bc:1a:55:83:10:3b:4a:17:02:
3b:0b:05:0e:18:0a:1b:10:17:32:ce:64:1a:5e:7c:3f:65:02:
26:d8:29:f9:7e:60:43:98:b9:c2:62:bb:a0:0d:11:3e:37:13:
c9:10:d7:76:75:4b:0f:95:19:94:40:69:d8:0c:61:03:1c:3e:
6d:34:6a:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:26:28 2025 by rpki-client