Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/326130353a646663313a393330303a3a2f34302d3430203d3e20323136313037.roa
File: 326130353a646663313a393330303a3a2f34302d3430203d3e20323136313037.roa (raw, json)
Hash identifier: hAG8kF083sc71HTpZHIm9pVONzb5X6Kq/j0og2972Og=
Subject key identifier: 97:85:8F:AD:E3:F4:92:66:8B:06:3E:A9:AB:FC:FF:08:60:81:25:29
Certificate issuer: /CN=A0BDCD4CEF02B9AA3CBD0A837666716397198BFD
Certificate serial: 624179D43728DE026EEBEB1848AABE368F3A9331
Authority key identifier: A0:BD:CD:4C:EF:02:B9:AA:3C:BD:0A:83:76:66:71:63:97:19:8B:FD
Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/326130353a646663313a393330303a3a2f34302d3430203d3e20323136313037.roa
Signing time: Fri 10 Jan 2025 15:58:53 +0000
ROA not before: Fri 10 Jan 2025 15:53:53 +0000
ROA not after: Fri 09 Jan 2026 15:58:53 +0000
asID: 216107
IP address blocks: 2a05:dfc1:9300::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:41:79:d4:37:28:de:02:6e:eb:eb:18:48:aa:be:36:8f:3a:93:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A0BDCD4CEF02B9AA3CBD0A837666716397198BFD
Validity
Not Before: Jan 10 15:53:53 2025 GMT
Not After : Jan 9 15:58:53 2026 GMT
Subject: CN=97858FADE3F492668B063EA9ABFCFF0860812529
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:66:de:9b:7a:8f:55:4f:33:14:f6:3b:b1:53:
ef:12:63:45:07:e6:39:30:f5:9d:77:a3:3a:d2:59:
40:f2:2b:2e:50:0f:46:3f:11:58:a3:70:87:4e:6b:
c3:c6:1f:78:50:70:34:d7:b7:4b:54:71:f6:dd:20:
dd:29:22:ef:df:ba:da:ac:b6:a4:d6:92:1d:b2:07:
a6:31:95:41:1e:e3:8a:08:b1:f6:ad:63:5a:32:0d:
3a:c0:e2:ea:2f:15:6f:32:2e:17:01:26:11:55:32:
5d:b2:92:97:ae:35:c1:bd:57:ee:26:3d:3d:cd:00:
9d:1c:2d:8d:de:17:43:ac:66:b7:b0:f0:ca:1d:16:
a0:07:6b:78:73:f5:00:c3:a3:9a:cf:43:fc:3c:93:
33:c0:dc:ab:67:3c:e0:5c:94:34:44:a4:d7:f7:0b:
f7:36:0a:60:ee:29:b1:62:52:35:85:35:ae:be:06:
0c:a2:f3:bd:e9:00:15:b2:1d:3a:78:d6:64:40:77:
2c:14:87:c9:40:d6:ed:0e:af:58:9b:d9:9d:92:ca:
6e:d6:38:a4:f0:79:ab:03:59:aa:84:8b:99:ed:c3:
0e:36:dc:81:88:d2:30:d7:6d:c1:6e:eb:61:3f:9b:
92:53:aa:9e:f9:84:d2:af:88:b9:69:64:93:a7:78:
15:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:85:8F:AD:E3:F4:92:66:8B:06:3E:A9:AB:FC:FF:08:60:81:25:29
X509v3 Authority Key Identifier:
keyid:A0:BD:CD:4C:EF:02:B9:AA:3C:BD:0A:83:76:66:71:63:97:19:8B:FD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.crl
Authority Information Access:
CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/326130353a646663313a393330303a3a2f34302d3430203d3e20323136313037.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:9300::/40
Signature Algorithm: sha256WithRSAEncryption
79:7a:2f:e3:ae:c9:74:f4:ed:45:26:68:ee:95:5c:5b:ab:31:
d8:51:05:e3:9d:c1:90:14:cb:53:e7:56:0a:91:af:53:44:5f:
df:ee:5e:33:56:77:91:66:9b:20:c8:3b:fd:5d:40:1c:cd:ec:
04:cc:c8:5d:6f:21:23:2a:48:13:a0:5a:0f:11:49:94:31:61:
17:53:cd:1b:9a:03:f0:ae:74:99:50:47:39:be:eb:24:3d:c8:
9a:d8:73:5d:f3:17:b2:7f:88:6a:2e:16:40:31:57:06:46:e3:
b3:b1:49:6a:20:ab:84:4b:b5:cc:65:b7:2a:d7:ee:8e:55:98:
25:d0:5c:cc:03:06:4d:59:ab:c2:af:3a:e6:61:76:19:42:d6:
81:d3:a6:6b:3a:08:ba:78:5c:a1:a2:eb:e0:31:b8:56:a9:27:
1a:d1:ea:68:fd:48:00:a3:97:a4:b7:7b:fc:ef:a5:11:3a:55:
a7:ba:b9:40:b0:ef:1b:7e:28:7c:50:2c:4b:b3:0a:c9:87:bc:
f5:00:8c:b5:fb:63:6a:80:f1:6d:86:71:35:54:39:9c:9b:f5:
64:9b:47:ef:54:c5:a2:a9:a1:5e:61:7c:69:9c:4b:8c:e9:7f:
45:c7:21:a2:9d:19:fd:09:40:08:78:4f:80:a9:54:ee:5e:b0:
b6:e0:f1:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 3 07:10:25 2025 by rpki-client