Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/326130353a646663313a6364313a3a2f34382d3438203d3e20323136313037.roa
File: 326130353a646663313a6364313a3a2f34382d3438203d3e20323136313037.roa (raw, json)
Hash identifier: mOOzHywYUf8zjI9dUNsK9l53AJEq7KLoJcvQC7/t8eg=
Subject key identifier: 33:8F:E0:C0:33:60:D0:5C:DA:E4:A0:42:9D:B8:CB:8E:DB:78:B3:FA
Certificate issuer: /CN=A0BDCD4CEF02B9AA3CBD0A837666716397198BFD
Certificate serial: 7691ECF865F7FDBBDBF1D0CACDB6DC6A6B5752A0
Authority key identifier: A0:BD:CD:4C:EF:02:B9:AA:3C:BD:0A:83:76:66:71:63:97:19:8B:FD
Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/326130353a646663313a6364313a3a2f34382d3438203d3e20323136313037.roa
Signing time: Fri 20 Dec 2024 19:58:48 +0000
ROA not before: Fri 20 Dec 2024 19:53:48 +0000
ROA not after: Fri 19 Dec 2025 19:58:48 +0000
asID: 216107
IP address blocks: 2a05:dfc1:cd1::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:91:ec:f8:65:f7:fd:bb:db:f1:d0:ca:cd:b6:dc:6a:6b:57:52:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A0BDCD4CEF02B9AA3CBD0A837666716397198BFD
Validity
Not Before: Dec 20 19:53:48 2024 GMT
Not After : Dec 19 19:58:48 2025 GMT
Subject: CN=338FE0C03360D05CDAE4A0429DB8CB8EDB78B3FA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:8f:b5:11:c0:d5:f6:9b:aa:54:3b:c6:a6:2c:
96:e8:47:e8:5e:8c:30:88:be:8c:23:1f:e4:0c:61:
03:61:8e:7b:c7:4e:3f:61:67:7a:71:1e:56:02:dc:
30:be:ef:53:ba:b8:14:68:8d:b1:c4:42:e4:4d:d6:
3e:49:78:22:b2:aa:a8:20:b5:72:4b:c1:51:bc:1b:
ac:aa:94:0d:3c:00:49:7b:99:c2:88:c8:f6:a1:99:
76:c3:22:62:20:3d:57:fe:d6:c9:f3:bf:ac:d9:98:
55:fe:ce:ad:71:b5:40:65:73:8c:76:7d:2f:8d:c4:
8c:66:d1:26:d9:d0:6b:77:6e:58:90:34:33:88:c5:
bd:98:15:0d:93:56:1d:ee:ac:e8:c2:16:ae:6d:0b:
78:bd:52:e3:3b:52:09:f6:10:32:80:cd:26:38:02:
ed:21:5e:de:01:52:c7:62:09:86:0a:58:c6:c4:a9:
7e:69:a1:26:09:fb:36:06:48:b1:e8:73:55:69:ba:
0b:43:50:b9:b5:13:87:83:9d:51:b3:4a:18:e7:07:
52:7c:cd:03:13:76:cd:c6:53:46:be:b8:25:32:60:
35:a6:04:cc:16:f1:f3:38:54:7b:d0:66:f4:3e:b4:
8c:c9:a5:da:8c:ef:3b:d1:ca:fb:76:f3:34:73:dd:
19:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:8F:E0:C0:33:60:D0:5C:DA:E4:A0:42:9D:B8:CB:8E:DB:78:B3:FA
X509v3 Authority Key Identifier:
keyid:A0:BD:CD:4C:EF:02:B9:AA:3C:BD:0A:83:76:66:71:63:97:19:8B:FD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.crl
Authority Information Access:
CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/326130353a646663313a6364313a3a2f34382d3438203d3e20323136313037.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:cd1::/48
Signature Algorithm: sha256WithRSAEncryption
3b:32:ae:a4:95:fc:c5:99:d8:15:23:b7:db:ab:07:16:8e:36:
62:b6:8e:fa:ed:1e:3a:27:47:50:c9:df:7b:3d:32:9f:ce:a5:
18:2c:2c:ac:ad:17:d6:8e:50:f8:3a:2d:05:ee:4f:9c:37:cf:
e3:38:b9:fd:3c:6e:b4:70:e9:3a:17:63:e7:bb:51:f3:82:37:
26:93:7b:57:31:4f:bd:b7:e0:8a:de:7e:5e:19:20:fe:65:7d:
73:47:1a:51:4f:cb:2c:97:a7:4d:0b:99:62:f5:ea:03:f2:e3:
2e:da:b1:98:0d:d1:f9:17:1b:e8:76:b2:3d:94:94:db:d0:5b:
8c:57:f3:db:2b:8b:f3:b0:4a:a5:26:be:bb:ae:f3:89:7f:69:
86:61:e9:0b:3b:1d:3f:ed:00:05:36:92:55:22:42:6e:0a:f7:
ac:09:42:f1:fb:2f:a0:54:c7:72:52:d2:fe:36:73:d9:b5:91:
ed:6b:24:00:02:2a:64:17:cf:06:62:39:62:9b:1d:f9:d9:9c:
12:7e:3b:7b:eb:d8:3f:56:14:55:de:e7:e6:0a:5e:72:f1:4d:
fa:36:f3:2e:32:c9:fa:7f:38:17:cf:5a:91:80:d7:8c:cd:ba:
66:cd:45:12:7e:b5:07:89:84:c6:e0:66:7d:ea:53:82:0c:35:
3d:14:5d:f7
-----BEGIN CERTIFICATE-----
MIIFVDCCBDygAwIBAgIUdpHs+GX3/bvb8dDKzbbcamtXUqAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQTBCRENENENFRjAyQjlBQTNDQkQwQTgzNzY2NjcxNjM5
NzE5OEJGRDAeFw0yNDEyMjAxOTUzNDhaFw0yNTEyMTkxOTU4NDhaMDMxMTAvBgNV
BAMTKDMzOEZFMEMwMzM2MEQwNUNEQUU0QTA0MjlEQjhDQjhFREI3OEIzRkEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLj7URwNX2m6pUO8amLJboR+he
jDCIvowjH+QMYQNhjnvHTj9hZ3pxHlYC3DC+71O6uBRojbHEQuRN1j5JeCKyqqgg
tXJLwVG8G6yqlA08AEl7mcKIyPahmXbDImIgPVf+1snzv6zZmFX+zq1xtUBlc4x2
fS+NxIxm0SbZ0Gt3bliQNDOIxb2YFQ2TVh3urOjCFq5tC3i9UuM7Ugn2EDKAzSY4
Au0hXt4BUsdiCYYKWMbEqX5poSYJ+zYGSLHoc1VpugtDULm1E4eDnVGzShjnB1J8
zQMTds3GU0a+uCUyYDWmBMwW8fM4VHvQZvQ+tIzJpdqM7zvRyvt28zRz3RlnAgMB
AAGjggJeMIICWjAdBgNVHQ4EFgQUM4/gwDNg0Fza5KBCnbjLjtt4s/owHwYDVR0j
BBgwFoAUoL3NTO8Cuao8vQqDdmZxY5cZi/0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMjhjZDYyMjQtYTNiMC00NjhlLWFhMzctODJjYTZhM2U5
MjQzLzEvQTBCRENENENFRjAyQjlBQTNDQkQwQTgzNzY2NjcxNjM5NzE5OEJGRC5j
cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt
cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wL0EwQkRDRDRDRUYwMkI5
QUEzQ0JEMEE4Mzc2NjY3MTYzOTcxOThCRkQuY2VyMIG1BggrBgEFBQcBCwSBqDCB
pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l
dC9yZXBvc2l0b3J5LzI4Y2Q2MjI0LWEzYjAtNDY4ZS1hYTM3LTgyY2E2YTNlOTI0
My8xLzMyNjEzMDM1M2E2NDY2NjMzMTNhNjM2NDMxM2EzYTJmMzQzODJkMzQzODIw
M2QzZTIwMzIzMTM2MzEzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwQzRMA0GCSqGSIb3DQEB
CwUAA4IBAQA7Mq6klfzFmdgVI7fbqwcWjjZito767R46J0dQyd97PTKfzqUYLCys
rRfWjlD4Oi0F7k+cN8/jOLn9PG60cOk6F2Pnu1Hzgjcmk3tXMU+9t+CK3n5eGSD+
ZX1zRxpRT8ssl6dNC5li9eoD8uMu2rGYDdH5FxvodrI9lJTb0FuMV/PbK4vzsEql
Jr67rvOJf2mGYekLOx0/7QAFNpJVIkJuCvesCULx+y+gVMdyUtL+NnPZtZHtayQA
AipkF88GYjlimx352ZwSfjt769g/VhRV3ufmCl5y8U36NvMuMsn6fzgXz1qRgNeM
zbpmzUUSfrUHiYTG4GZ96lOCDDU9FF33
-----END CERTIFICATE-----
Generated at Thu Apr 3 07:08:37 2025 by rpki-client