Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/0/326130613a363034303a623166333a3a2f34382d3438203d3e20323030363736.roa
File: 326130613a363034303a623166333a3a2f34382d3438203d3e20323030363736.roa (raw, json)
Hash identifier: w5dnEiDx5goNVTXWdKgSFg9sD6RUplNurP3xamwPNaQ=
Subject key identifier: 64:67:9B:B9:0E:4A:D9:90:D5:BA:7C:AF:F6:A4:80:E5:80:06:96:C8
Certificate issuer: /CN=309C25E7B18FF28A60B96B25572F8A9E3104FE76
Certificate serial: 66FDFDE4D0F8878649026AAC38E2B9B5136BB95C
Authority key identifier: 30:9C:25:E7:B1:8F:F2:8A:60:B9:6B:25:57:2F:8A:9E:31:04:FE:76
Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/309C25E7B18FF28A60B96B25572F8A9E3104FE76.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/0/326130613a363034303a623166333a3a2f34382d3438203d3e20323030363736.roa
Signing time: Tue 10 Sep 2024 19:15:19 +0000
ROA not before: Tue 10 Sep 2024 19:10:19 +0000
ROA not after: Tue 09 Sep 2025 19:15:19 +0000
asID: 200676
IP address blocks: 2a0a:6040:b1f3::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:fd:fd:e4:d0:f8:87:86:49:02:6a:ac:38:e2:b9:b5:13:6b:b9:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=309C25E7B18FF28A60B96B25572F8A9E3104FE76
Validity
Not Before: Sep 10 19:10:19 2024 GMT
Not After : Sep 9 19:15:19 2025 GMT
Subject: CN=64679BB90E4AD990D5BA7CAFF6A480E5800696C8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:a4:3a:1e:8d:07:28:b7:51:38:50:6d:e5:e7:
25:1e:c3:68:16:ef:4a:e2:f1:d3:11:bc:2b:63:d8:
4a:54:bd:8c:76:0d:ae:02:c7:e2:74:19:8d:05:e3:
de:58:e2:7f:0d:24:97:ef:5b:e9:63:61:c7:9d:3f:
26:2c:4c:7a:ca:2b:5a:88:cb:96:3b:de:42:c9:0c:
4d:f1:38:e8:94:b5:45:f8:85:f2:0e:a5:85:1c:dc:
36:1f:d9:c0:ba:59:a8:fa:22:2d:a4:2c:ee:40:40:
5f:42:bc:f3:a6:fb:d8:f2:39:51:a4:3c:9a:b2:05:
a5:fe:c0:57:d3:43:e6:8f:07:7e:81:bd:2a:0c:01:
7d:7c:64:43:4c:34:aa:ef:7d:cf:3b:b2:df:52:d1:
69:81:6d:91:32:a9:10:fe:a0:c2:02:b6:f4:ae:22:
ff:fe:a5:23:65:b0:1e:60:51:62:0f:10:ef:26:d6:
14:59:65:bd:fb:1e:e2:07:09:78:2d:c9:5a:c1:5b:
b0:f0:b6:3d:37:17:16:e9:2f:01:48:21:c9:ba:1c:
16:b5:1d:e5:e5:41:f8:1b:65:90:25:32:26:79:3e:
0a:fd:e4:50:73:6e:84:21:5d:a7:9f:50:94:13:0d:
79:81:13:7f:a4:d0:a1:64:1b:f2:72:f5:09:bb:9f:
14:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:67:9B:B9:0E:4A:D9:90:D5:BA:7C:AF:F6:A4:80:E5:80:06:96:C8
X509v3 Authority Key Identifier:
keyid:30:9C:25:E7:B1:8F:F2:8A:60:B9:6B:25:57:2F:8A:9E:31:04:FE:76
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/0/309C25E7B18FF28A60B96B25572F8A9E3104FE76.crl
Authority Information Access:
CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/309C25E7B18FF28A60B96B25572F8A9E3104FE76.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/0/326130613a363034303a623166333a3a2f34382d3438203d3e20323030363736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6040:b1f3::/48
Signature Algorithm: sha256WithRSAEncryption
1d:a8:ad:22:1d:35:9d:c5:88:df:61:b3:c4:42:b1:36:5a:56:
31:74:7c:07:3b:21:0e:56:f2:f9:ea:d1:23:a0:da:22:28:0d:
85:21:18:33:50:aa:ad:76:9a:02:2a:78:78:18:dc:da:69:c4:
b1:ac:1c:3a:af:47:d4:e8:b5:96:6f:2c:46:58:32:a7:aa:ab:
5a:74:9e:f4:f4:48:f0:c5:58:81:35:59:be:f4:3d:f0:98:9d:
e2:4b:15:44:7a:06:12:07:b1:a9:1b:3e:4e:50:b7:88:06:28:
c3:d7:96:c4:e9:e2:60:f7:37:ab:60:51:e3:00:ca:60:5a:7e:
56:3c:0b:e8:68:c2:7a:37:3d:a6:4a:c2:91:18:93:34:b9:2c:
2f:dc:b9:01:de:8d:12:16:6f:4a:43:ad:8b:89:67:54:07:02:
18:79:be:8e:d6:d9:41:89:29:55:1f:58:7b:d1:61:40:2c:f9:
15:08:99:b8:7f:b3:0f:ac:ae:2f:42:f1:10:0f:0a:e0:b0:4e:
b5:59:70:e7:9b:14:13:06:50:3e:55:f9:6c:ec:0e:97:81:06:
bc:d5:08:62:5b:a0:4d:62:e3:53:97:be:f8:33:d9:fb:bb:a9:
60:ad:26:95:66:77:98:8c:db:b4:c5:4f:2c:41:29:d4:65:a1:
e9:d8:9e:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:48:45 2025 by rpki-client