Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/326130353a646663313a6330303a3a2f34382d3438203d3e20323136313037.roa
File: 326130353a646663313a6330303a3a2f34382d3438203d3e20323136313037.roa (raw, json)
Hash identifier: 5sfxFWfTleTq60HeudpGR9w7CPONeSZsJgkPlM018cs=
Subject key identifier: 69:02:82:CE:E2:AF:5C:B1:6A:89:D3:21:2A:03:93:E2:63:35:9F:C9
Certificate issuer: /CN=A0BDCD4CEF02B9AA3CBD0A837666716397198BFD
Certificate serial: 740B7C870C65D15847F11A22BF81B83212D03B58
Authority key identifier: A0:BD:CD:4C:EF:02:B9:AA:3C:BD:0A:83:76:66:71:63:97:19:8B:FD
Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/326130353a646663313a6330303a3a2f34382d3438203d3e20323136313037.roa
Signing time: Mon 23 Dec 2024 20:58:51 +0000
ROA not before: Mon 23 Dec 2024 20:53:51 +0000
ROA not after: Mon 22 Dec 2025 20:58:51 +0000
asID: 216107
IP address blocks: 2a05:dfc1:c00::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:0b:7c:87:0c:65:d1:58:47:f1:1a:22:bf:81:b8:32:12:d0:3b:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A0BDCD4CEF02B9AA3CBD0A837666716397198BFD
Validity
Not Before: Dec 23 20:53:51 2024 GMT
Not After : Dec 22 20:58:51 2025 GMT
Subject: CN=690282CEE2AF5CB16A89D3212A0393E263359FC9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:96:23:7f:14:15:10:f8:67:b4:2d:d4:13:2c:
a7:97:55:85:ac:bb:4d:28:a4:40:43:4a:76:92:ed:
6d:53:70:aa:86:4e:06:05:41:50:44:a2:bf:9b:02:
e7:62:bf:6d:41:f7:bb:7a:e4:dd:45:f3:40:83:65:
58:4f:45:73:f4:71:87:ee:a4:34:01:e5:05:6e:bc:
02:86:41:7c:fe:92:7c:cc:d8:cb:67:8c:12:20:f7:
c8:a6:f3:12:35:8c:3a:f3:1f:bc:c0:af:b0:ca:18:
63:62:ef:85:87:d1:7e:9f:ac:62:77:d0:bd:60:d2:
11:bc:ac:01:8e:46:cd:9f:36:1f:29:26:c9:81:6e:
f6:12:b4:d2:97:34:b8:81:37:a8:a2:b8:e5:3c:36:
4f:4b:9f:81:2d:d3:6e:1c:3c:47:83:39:f4:80:75:
ad:44:68:14:3f:6a:54:70:92:b2:46:bd:40:ec:b3:
0c:2e:48:d0:75:52:98:c2:37:3b:ac:8e:85:63:a9:
08:49:ce:8c:4d:c3:81:82:a7:13:b7:85:23:47:47:
0c:c4:d4:80:f7:77:af:8f:14:63:cc:02:40:76:ef:
c6:ad:9f:5d:e2:29:bf:70:92:d6:de:17:a3:42:36:
42:00:4a:27:16:5b:59:f6:78:64:fa:ff:2e:4d:55:
e6:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:02:82:CE:E2:AF:5C:B1:6A:89:D3:21:2A:03:93:E2:63:35:9F:C9
X509v3 Authority Key Identifier:
keyid:A0:BD:CD:4C:EF:02:B9:AA:3C:BD:0A:83:76:66:71:63:97:19:8B:FD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.crl
Authority Information Access:
CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/326130353a646663313a6330303a3a2f34382d3438203d3e20323136313037.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:c00::/48
Signature Algorithm: sha256WithRSAEncryption
1a:a1:d5:25:60:d5:f9:0f:f1:c8:1c:e5:7c:f1:f4:46:39:ee:
e5:c4:61:dc:42:1e:41:cb:a6:c4:2a:17:7f:d8:40:60:a5:36:
4b:1f:d3:71:ad:62:ae:73:5f:df:6f:39:e3:1c:d6:30:fc:5a:
3a:5b:38:3f:df:4f:dc:6e:7f:95:cd:35:7c:ee:cd:68:b8:e6:
20:52:c9:fd:2e:ba:39:67:d1:15:92:1f:83:f9:30:c6:2e:a6:
fa:b7:7e:16:b6:33:16:30:69:0d:11:dd:a5:98:bd:72:e8:63:
d3:7d:00:a2:39:88:f4:84:77:6a:fb:00:64:e6:1c:7e:54:a7:
ab:b4:31:8c:bc:2a:f8:d1:a4:29:82:be:64:d8:ba:63:dd:6f:
65:c5:0e:c6:ad:96:c1:f4:67:00:11:9a:00:b9:c8:15:13:b0:
22:4e:e3:6c:31:71:8e:0e:6c:38:96:9b:6a:3f:81:f8:51:8e:
14:4f:6d:65:23:7c:ef:6e:f0:51:33:c7:b0:5a:5a:22:20:2b:
76:a1:77:51:a8:7a:75:f5:56:13:c7:00:60:e2:8d:6e:5e:00:
cc:1d:ab:8f:1c:34:47:95:9a:5c:72:2a:5d:d3:ab:ab:20:b9:
39:0a:c4:f5:95:34:b2:5a:69:29:2b:7a:bf:82:d3:b2:1c:e8:
59:31:22:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 3 07:10:27 2025 by rpki-client