Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/326130353a646663313a6366663a3a2f34382d3438203d3e20323136313037.roa
File: 326130353a646663313a6366663a3a2f34382d3438203d3e20323136313037.roa (raw, json)
Hash identifier: KjbRTlOn0pUH9so2EM+bXyKGqqTMvpmSO7usB8M9zXI=
Subject key identifier: 52:DF:B7:D0:99:A6:C7:8C:59:B0:8C:2D:03:C9:5C:36:1C:50:5A:15
Certificate issuer: /CN=A0BDCD4CEF02B9AA3CBD0A837666716397198BFD
Certificate serial: 2DF8D99D3AD79B67B7A8647FB2ACCEA7767B25D4
Authority key identifier: A0:BD:CD:4C:EF:02:B9:AA:3C:BD:0A:83:76:66:71:63:97:19:8B:FD
Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/326130353a646663313a6366663a3a2f34382d3438203d3e20323136313037.roa
Signing time: Fri 20 Dec 2024 19:58:49 +0000
ROA not before: Fri 20 Dec 2024 19:53:49 +0000
ROA not after: Fri 19 Dec 2025 19:58:49 +0000
asID: 216107
IP address blocks: 2a05:dfc1:cff::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:f8:d9:9d:3a:d7:9b:67:b7:a8:64:7f:b2:ac:ce:a7:76:7b:25:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A0BDCD4CEF02B9AA3CBD0A837666716397198BFD
Validity
Not Before: Dec 20 19:53:49 2024 GMT
Not After : Dec 19 19:58:49 2025 GMT
Subject: CN=52DFB7D099A6C78C59B08C2D03C95C361C505A15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:df:ab:7e:b1:98:f5:f7:11:90:6c:d1:37:74:
ee:d0:05:b1:bc:3d:8f:94:99:c5:f7:56:30:26:a4:
db:e9:bd:35:bf:6e:76:ae:71:fd:24:1d:ef:c6:93:
3e:fc:6c:81:b2:45:ef:e9:b9:ca:7b:61:52:24:ec:
d8:a7:dd:19:6e:10:8c:f5:62:e1:dc:c8:64:7a:ef:
aa:a4:b8:36:9c:37:3e:5e:e0:a2:fe:bc:ef:25:ca:
3c:54:4b:9c:9d:ff:7f:85:d2:e5:54:8e:2c:96:5c:
56:03:eb:93:8f:31:c8:bf:6c:cb:b7:51:47:2f:fc:
95:92:4b:60:af:7a:01:90:77:83:d0:e5:03:7c:45:
f7:e8:ec:a8:2f:6d:8a:c1:05:11:fb:bd:42:c0:32:
c3:a9:74:b7:25:b5:8c:d2:0d:fe:cf:e7:b9:74:ee:
7b:cb:83:6b:db:90:25:09:80:78:3b:59:c7:6a:7a:
31:a9:bf:e4:0f:64:c2:48:ef:33:c7:55:77:60:7d:
52:24:83:27:1e:8d:88:31:43:c4:91:98:7c:a0:53:
56:45:b2:96:c7:c6:5b:6d:bd:b9:a1:0d:d3:d1:4d:
4f:31:2e:cc:63:be:42:14:75:30:90:8d:23:8a:4d:
9d:07:35:87:02:de:11:57:d2:37:ed:b9:ca:d7:de:
74:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:DF:B7:D0:99:A6:C7:8C:59:B0:8C:2D:03:C9:5C:36:1C:50:5A:15
X509v3 Authority Key Identifier:
keyid:A0:BD:CD:4C:EF:02:B9:AA:3C:BD:0A:83:76:66:71:63:97:19:8B:FD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.crl
Authority Information Access:
CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/326130353a646663313a6366663a3a2f34382d3438203d3e20323136313037.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:cff::/48
Signature Algorithm: sha256WithRSAEncryption
8e:3c:2e:f8:f8:bf:78:d2:31:64:ca:e8:ae:c5:26:5f:48:db:
31:43:31:db:9b:63:bf:e4:7d:b5:86:26:53:6c:89:93:31:51:
72:ac:04:2e:99:9b:85:f4:06:6f:0a:13:6d:eb:de:5c:ca:53:
73:57:4d:41:0f:f3:51:92:b6:d4:fd:ba:19:b5:17:d0:b5:e0:
82:28:b6:df:b9:de:cb:0e:04:cc:e1:9d:93:71:f2:d1:4c:57:
3b:d4:b5:40:50:71:02:10:0e:69:e1:2c:b2:09:8c:45:35:82:
18:fa:7e:e3:13:48:5f:f6:aa:5f:fd:63:d9:b8:07:13:ed:13:
94:dd:28:59:6a:e6:6e:a3:33:7b:7a:d8:92:3e:db:98:9c:c6:
79:1a:d2:dd:a4:c9:1d:fc:f7:de:43:07:37:c3:10:79:f9:92:
de:5b:a5:53:7d:41:02:bd:b0:e6:58:96:5b:9b:c9:44:e7:39:
83:b0:00:c8:15:37:b8:cd:e9:6a:ad:fc:f0:0f:6e:10:7b:0d:
43:14:ba:6a:95:cd:57:10:f6:79:48:4d:bf:50:0b:42:93:79:
bf:43:cd:ec:56:9e:ab:01:c8:9f:a6:51:4b:95:9c:47:08:79:
7a:7b:28:85:d9:2f:c5:85:7c:7b:c2:da:53:2a:ce:48:fb:f8:
70:c3:6a:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 3 07:08:37 2025 by rpki-client