Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/326130353a646663313a6365633a3a2f34382d3438203d3e20323136313037.roa
File: 326130353a646663313a6365633a3a2f34382d3438203d3e20323136313037.roa (raw, json)
Hash identifier: jseZnQDpxM3OGEtPFiaXE9ESnwodw6BGWg1duSXkRMU=
Subject key identifier: 37:5F:27:91:A7:66:6E:DF:B6:AA:9F:66:67:39:33:A6:88:A3:9F:81
Certificate issuer: /CN=A0BDCD4CEF02B9AA3CBD0A837666716397198BFD
Certificate serial: 370ECF6918670163431564F6FCA3DE40C128CC88
Authority key identifier: A0:BD:CD:4C:EF:02:B9:AA:3C:BD:0A:83:76:66:71:63:97:19:8B:FD
Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/326130353a646663313a6365633a3a2f34382d3438203d3e20323136313037.roa
Signing time: Fri 20 Dec 2024 19:58:49 +0000
ROA not before: Fri 20 Dec 2024 19:53:49 +0000
ROA not after: Fri 19 Dec 2025 19:58:49 +0000
asID: 216107
IP address blocks: 2a05:dfc1:cec::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:0e:cf:69:18:67:01:63:43:15:64:f6:fc:a3:de:40:c1:28:cc:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A0BDCD4CEF02B9AA3CBD0A837666716397198BFD
Validity
Not Before: Dec 20 19:53:49 2024 GMT
Not After : Dec 19 19:58:49 2025 GMT
Subject: CN=375F2791A7666EDFB6AA9F66673933A688A39F81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:01:d4:51:fe:a2:6e:2d:22:e7:fb:66:d9:78:
36:8e:4f:a6:76:fa:1e:7b:3f:9f:59:60:2c:19:0a:
04:c7:86:d0:9e:1a:98:e1:39:d4:b3:8d:8d:ab:93:
a4:80:a7:ec:e7:89:18:4f:00:bd:2a:50:4c:b9:7c:
b4:a8:07:c9:bc:0b:91:4c:d9:74:98:40:ab:d0:0b:
40:6c:e1:f8:88:7f:f1:09:dd:d6:4d:07:14:81:dd:
5e:95:f7:3d:93:4d:10:54:54:1e:24:9e:92:1f:f3:
3f:e5:a1:38:89:59:09:65:3f:db:45:01:64:d4:b0:
5a:e7:d2:54:9e:cb:f8:21:4e:22:fb:5a:39:73:2c:
41:a8:2a:4f:45:f3:bc:c9:22:c6:a1:81:28:d5:4a:
2c:af:bc:93:ac:35:20:11:07:3d:9e:c6:ab:c4:e2:
65:b7:2e:8a:50:c0:58:bb:15:90:25:76:2d:96:c3:
ea:ca:a4:76:44:9d:94:d8:e5:a6:e3:19:31:0b:6b:
df:aa:8f:82:2c:fa:36:62:ec:17:7d:a9:1c:55:a4:
a8:8e:c0:13:a9:98:50:e5:5d:56:3c:73:23:11:54:
df:e8:19:47:f9:49:d3:0c:a1:0c:8c:25:82:4e:5a:
7f:4d:d7:19:81:85:a8:9f:5a:e8:aa:a3:d7:d1:9d:
f0:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:5F:27:91:A7:66:6E:DF:B6:AA:9F:66:67:39:33:A6:88:A3:9F:81
X509v3 Authority Key Identifier:
keyid:A0:BD:CD:4C:EF:02:B9:AA:3C:BD:0A:83:76:66:71:63:97:19:8B:FD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.crl
Authority Information Access:
CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/326130353a646663313a6365633a3a2f34382d3438203d3e20323136313037.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:cec::/48
Signature Algorithm: sha256WithRSAEncryption
5b:1d:8b:57:9b:8d:8b:28:a5:86:16:32:c9:1a:de:49:6f:70:
a5:e5:39:2c:4e:8b:cc:8a:16:7b:dd:a2:73:5f:d2:3c:e9:d4:
1f:6a:82:c3:f9:51:21:20:25:e2:be:22:00:f1:8a:e5:de:2a:
be:c7:7c:dd:69:fd:40:5a:8f:ef:4f:71:a9:e5:e4:61:65:e1:
5a:61:37:71:7b:7d:01:55:8c:9d:71:40:bc:31:bb:cd:2e:41:
2d:25:7e:16:e4:f9:7a:cb:71:f4:45:f3:1d:a5:a4:c1:36:2e:
39:f4:96:1a:92:51:09:eb:1f:e2:84:be:b1:a9:23:5c:2d:eb:
84:fa:01:3d:a5:06:fe:24:d3:fd:ec:84:58:58:30:db:a1:d1:
36:9a:2c:56:77:c9:bf:c3:e2:1e:d2:e4:88:ed:a3:6d:f9:28:
45:0f:57:4c:0d:49:44:aa:c8:ba:7f:a2:9d:bb:09:98:bc:3b:
b2:c8:39:d2:0d:86:1c:7b:26:b6:9d:ba:dc:a1:c3:8d:00:0b:
6d:4f:bf:c1:d3:47:ec:17:a2:0b:66:22:7c:28:0e:36:5e:d8:
56:78:38:cb:6e:3a:cf:b8:84:b0:88:b3:a1:cf:5a:9b:9e:d9:
27:94:e0:97:72:99:9c:f8:bf:d5:5f:b6:02:89:88:a5:96:af:
c6:df:7f:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 3 07:07:49 2025 by rpki-client