Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/326130353a646663313a6330303a3a2f34302d3430203d3e20323136313037.roa
File: 326130353a646663313a6330303a3a2f34302d3430203d3e20323136313037.roa (raw, json)
Hash identifier: HKmgP2ypG6wwvWOLbdtRfnpQpQFEpIJ3B8Rmypw0n+E=
Subject key identifier: 73:37:EB:A4:45:CC:E8:08:88:96:B4:99:95:78:3F:CB:C0:6B:15:C2
Certificate issuer: /CN=A0BDCD4CEF02B9AA3CBD0A837666716397198BFD
Certificate serial: 3B1C380A13B5232DB1B9C4B9D4473BA3A35261D0
Authority key identifier: A0:BD:CD:4C:EF:02:B9:AA:3C:BD:0A:83:76:66:71:63:97:19:8B:FD
Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/326130353a646663313a6330303a3a2f34302d3430203d3e20323136313037.roa
Signing time: Fri 20 Dec 2024 19:58:50 +0000
ROA not before: Fri 20 Dec 2024 19:53:50 +0000
ROA not after: Fri 19 Dec 2025 19:58:50 +0000
asID: 216107
IP address blocks: 2a05:dfc1:c00::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:1c:38:0a:13:b5:23:2d:b1:b9:c4:b9:d4:47:3b:a3:a3:52:61:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A0BDCD4CEF02B9AA3CBD0A837666716397198BFD
Validity
Not Before: Dec 20 19:53:50 2024 GMT
Not After : Dec 19 19:58:50 2025 GMT
Subject: CN=7337EBA445CCE8088896B49995783FCBC06B15C2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:61:03:c9:be:18:04:58:37:5a:d2:df:69:8b:
c3:06:d9:c7:97:1e:86:ea:60:43:de:b4:b8:e7:34:
ab:07:76:6a:2b:2f:26:61:90:c9:08:1a:f1:7b:7f:
07:9b:6a:55:94:58:0f:ef:c3:ea:66:8a:c2:fb:4f:
7b:1f:79:3d:af:8d:b7:19:e1:39:9f:0a:ee:07:f4:
1c:e0:f6:6d:8e:a1:2c:a9:e9:8c:c8:79:2c:75:0b:
7c:aa:06:ec:0e:6d:3a:59:b8:fa:bb:c6:5d:cd:40:
3a:0e:32:42:76:39:7e:93:4a:6a:8d:6a:24:5e:a0:
f5:e1:a5:cd:8e:d4:8f:d8:72:50:67:8b:c9:bb:24:
8f:ef:8d:5a:65:4d:80:22:c5:93:4a:d7:a6:77:68:
80:de:f8:8b:59:ae:8d:2e:3a:1d:ba:60:57:15:39:
28:55:9b:c3:96:ad:a8:29:c6:03:e7:07:3d:a4:a7:
bc:fd:9b:c6:1b:78:bc:aa:dd:63:f4:49:d7:5d:75:
22:eb:77:e9:e6:3e:11:13:72:3a:6d:ce:9c:0a:f2:
a7:9a:24:ae:55:b0:cd:b1:8e:8e:8e:8f:84:96:13:
15:c7:5d:3a:a6:10:75:bb:89:52:9f:da:e2:39:d9:
65:d4:f7:50:e1:21:ee:a0:82:34:00:61:59:60:e0:
91:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:37:EB:A4:45:CC:E8:08:88:96:B4:99:95:78:3F:CB:C0:6B:15:C2
X509v3 Authority Key Identifier:
keyid:A0:BD:CD:4C:EF:02:B9:AA:3C:BD:0A:83:76:66:71:63:97:19:8B:FD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.crl
Authority Information Access:
CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/326130353a646663313a6330303a3a2f34302d3430203d3e20323136313037.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:c00::/40
Signature Algorithm: sha256WithRSAEncryption
6b:9d:74:9b:04:eb:61:e0:dd:bd:7b:b2:40:93:4b:e4:21:a5:
6a:03:e0:20:df:c4:ee:8e:f6:e4:65:aa:a8:d5:1f:b5:cf:98:
97:f9:2f:35:f7:eb:5c:a0:7f:04:32:07:49:f7:c5:b6:be:c0:
21:ae:51:52:60:54:a0:19:b2:33:3d:ea:05:0e:38:9f:18:9f:
a3:32:93:25:49:c9:8f:70:47:7b:0d:bf:f9:1e:b6:4c:72:0f:
3a:00:82:7a:53:7f:70:39:2a:4b:2d:f7:52:43:da:ed:e4:df:
f6:86:bd:c8:fb:13:b7:a7:2f:ff:53:ef:bf:87:4b:19:69:52:
46:db:f7:c8:cf:ae:5b:74:af:41:99:01:58:bb:87:0a:e7:08:
06:2c:17:14:aa:3d:a6:d0:c2:7e:ec:35:c4:f8:c1:d9:99:ce:
26:de:75:61:ad:d6:7e:ba:71:92:bc:47:90:f7:60:1d:b4:8e:
13:53:d2:63:bb:2c:59:d1:f3:7c:0a:42:a1:c3:60:c7:a5:50:
6c:4d:f0:12:fa:8c:d1:04:13:6e:78:d4:ac:63:94:d7:ad:5d:
a2:c0:b3:e6:91:ca:f4:67:22:c9:5d:cd:2f:ef:ba:88:dd:b4:
47:8f:17:df:70:f9:46:f7:57:ff:07:53:24:41:94:d5:28:f5:
d0:80:69:68
-----BEGIN CERTIFICATE-----
MIIFUzCCBDugAwIBAgIUOxw4ChO1Iy2xucS51Ec7o6NSYdAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQTBCRENENENFRjAyQjlBQTNDQkQwQTgzNzY2NjcxNjM5
NzE5OEJGRDAeFw0yNDEyMjAxOTUzNTBaFw0yNTEyMTkxOTU4NTBaMDMxMTAvBgNV
BAMTKDczMzdFQkE0NDVDQ0U4MDg4ODk2QjQ5OTk1NzgzRkNCQzA2QjE1QzIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMYQPJvhgEWDda0t9pi8MG2ceX
HobqYEPetLjnNKsHdmorLyZhkMkIGvF7fwebalWUWA/vw+pmisL7T3sfeT2vjbcZ
4TmfCu4H9Bzg9m2OoSyp6YzIeSx1C3yqBuwObTpZuPq7xl3NQDoOMkJ2OX6TSmqN
aiReoPXhpc2O1I/YclBni8m7JI/vjVplTYAixZNK16Z3aIDe+ItZro0uOh26YFcV
OShVm8OWragpxgPnBz2kp7z9m8YbeLyq3WP0SddddSLrd+nmPhETcjptzpwK8qea
JK5VsM2xjo6Oj4SWExXHXTqmEHW7iVKf2uI52WXU91DhIe6ggjQAYVlg4JFLAgMB
AAGjggJdMIICWTAdBgNVHQ4EFgQUczfrpEXM6AiIlrSZlXg/y8BrFcIwHwYDVR0j
BBgwFoAUoL3NTO8Cuao8vQqDdmZxY5cZi/0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMjhjZDYyMjQtYTNiMC00NjhlLWFhMzctODJjYTZhM2U5
MjQzLzEvQTBCRENENENFRjAyQjlBQTNDQkQwQTgzNzY2NjcxNjM5NzE5OEJGRC5j
cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt
cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wL0EwQkRDRDRDRUYwMkI5
QUEzQ0JEMEE4Mzc2NjY3MTYzOTcxOThCRkQuY2VyMIG1BggrBgEFBQcBCwSBqDCB
pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l
dC9yZXBvc2l0b3J5LzI4Y2Q2MjI0LWEzYjAtNDY4ZS1hYTM3LTgyY2E2YTNlOTI0
My8xLzMyNjEzMDM1M2E2NDY2NjMzMTNhNjMzMDMwM2EzYTJmMzQzMDJkMzQzMDIw
M2QzZTIwMzIzMTM2MzEzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwQwwDQYJKoZIhvcNAQEL
BQADggEBAGuddJsE62Hg3b17skCTS+QhpWoD4CDfxO6O9uRlqqjVH7XPmJf5LzX3
61ygfwQyB0n3xba+wCGuUVJgVKAZsjM96gUOOJ8Yn6MykyVJyY9wR3sNv/ketkxy
DzoAgnpTf3A5Kkst91JD2u3k3/aGvcj7E7enL/9T77+HSxlpUkbb98jPrlt0r0GZ
AVi7hwrnCAYsFxSqPabQwn7sNcT4wdmZzibedWGt1n66cZK8R5D3YB20jhNT0mO7
LFnR83wKQqHDYMelUGxN8BL6jNEEE2541KxjlNetXaLAs+aRyvRnIsldzS/vuojd
tEePF99w+Ub3V/8HUyRBlNUo9dCAaWg=
-----END CERTIFICATE-----
Generated at Sat Apr 5 19:59:56 2025 by rpki-client