Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/326130353a646663313a6364333a3a2f34382d3438203d3e20323136313037.roa
File: 326130353a646663313a6364333a3a2f34382d3438203d3e20323136313037.roa (raw, json)
Hash identifier: rsDe4gVLOQQ6T2XmrS2vrQjsrzLl/iWq5oMRojuFXSU=
Subject key identifier: 80:E1:5D:56:9D:30:29:62:EB:75:FB:0F:A1:26:52:B7:44:1B:C6:23
Certificate issuer: /CN=A0BDCD4CEF02B9AA3CBD0A837666716397198BFD
Certificate serial: 5C62D5CB58A852743E2D8D403D15BA2F99D795E2
Authority key identifier: A0:BD:CD:4C:EF:02:B9:AA:3C:BD:0A:83:76:66:71:63:97:19:8B:FD
Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/326130353a646663313a6364333a3a2f34382d3438203d3e20323136313037.roa
Signing time: Fri 20 Dec 2024 19:58:48 +0000
ROA not before: Fri 20 Dec 2024 19:53:48 +0000
ROA not after: Fri 19 Dec 2025 19:58:48 +0000
asID: 216107
IP address blocks: 2a05:dfc1:cd3::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:62:d5:cb:58:a8:52:74:3e:2d:8d:40:3d:15:ba:2f:99:d7:95:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A0BDCD4CEF02B9AA3CBD0A837666716397198BFD
Validity
Not Before: Dec 20 19:53:48 2024 GMT
Not After : Dec 19 19:58:48 2025 GMT
Subject: CN=80E15D569D302962EB75FB0FA12652B7441BC623
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:9f:42:29:42:bf:b3:8c:32:33:12:30:79:2b:
d5:71:aa:58:cf:44:33:5a:cf:53:69:53:2b:68:b8:
93:95:33:a4:02:9d:4c:56:fb:20:9c:ce:0f:dd:2c:
bd:bf:cd:0e:49:c6:b6:81:a8:6a:06:45:9b:90:0f:
06:b5:2d:b5:16:98:4e:0d:13:f8:7b:57:31:ca:2b:
95:a0:6a:24:8f:0e:57:6e:c2:2b:c0:b1:a5:03:fa:
0f:20:99:cd:46:18:b1:72:6e:5a:ba:f8:3a:ca:9f:
5e:46:7a:0a:af:6a:6c:c6:5f:7a:d4:a9:3d:b2:76:
b3:85:ce:04:13:35:f0:69:1d:86:86:cd:02:74:bc:
cf:43:0f:80:d2:c3:da:4d:33:b2:a5:c0:e6:32:9d:
59:27:62:77:31:11:a7:6f:fb:2d:ce:ca:37:a8:8d:
f2:34:68:62:f5:9f:1d:2e:3b:a8:3f:23:df:bb:44:
42:c3:b7:9e:7d:2b:c9:75:8e:64:ed:5c:5e:3f:76:
34:7c:e6:12:8e:33:25:e6:7d:6f:bd:28:a3:0a:1a:
cd:8c:a3:75:3e:80:a0:b6:52:c8:fe:c9:19:55:44:
29:88:57:0f:35:7e:78:27:5a:d6:cf:25:ad:f6:3b:
30:b3:fd:63:9c:90:4e:57:51:30:6b:ec:c1:d0:3a:
cd:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:E1:5D:56:9D:30:29:62:EB:75:FB:0F:A1:26:52:B7:44:1B:C6:23
X509v3 Authority Key Identifier:
keyid:A0:BD:CD:4C:EF:02:B9:AA:3C:BD:0A:83:76:66:71:63:97:19:8B:FD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.crl
Authority Information Access:
CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/326130353a646663313a6364333a3a2f34382d3438203d3e20323136313037.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:cd3::/48
Signature Algorithm: sha256WithRSAEncryption
04:d8:c6:64:f4:41:97:18:7e:9b:a8:b2:6b:c1:78:55:df:b2:
4f:d5:da:a0:73:98:bd:72:d1:2b:70:2a:60:f4:f3:63:e0:97:
05:16:7c:51:71:b4:63:9c:47:87:62:6b:9d:b3:55:8e:d7:30:
da:be:e9:fb:c7:23:d1:4f:9d:31:de:e3:c5:ae:15:f7:6a:9e:
6e:9d:c1:9c:a6:89:3c:22:2b:5d:f1:84:16:cc:11:e2:8a:bd:
9d:a2:55:a9:89:8c:44:d3:63:62:ea:a8:74:e1:43:8f:58:e0:
3a:d7:8b:dc:c6:10:71:53:ae:fa:dc:d0:ad:3f:48:aa:de:24:
ea:d8:03:b7:86:f8:5d:b9:98:44:20:b2:36:a9:a7:29:a4:09:
9d:d9:1a:13:a1:33:57:dd:ef:07:4f:27:a2:f7:30:51:36:cb:
4b:8f:a7:6c:d6:94:6e:fa:ee:cf:82:55:dc:9c:ff:8f:76:1c:
6d:ab:69:a3:5a:a7:bc:b6:29:13:fa:65:34:14:35:81:ee:41:
e4:51:c6:cd:9d:76:d2:e2:82:72:3f:1c:38:dd:0a:2a:3e:5b:
52:8b:b9:26:1b:f6:f2:e1:23:c6:21:2d:21:5a:60:44:e4:f0:
6d:ce:d6:e6:26:98:db:5c:8c:e7:02:e7:8c:6b:78:43:55:15:
5d:23:99:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 3 07:10:27 2025 by rpki-client