Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a3a2f33322d3438203d3e203438373030.roa
File: 326130363a313238333a3a2f33322d3438203d3e203438373030.roa (raw, json)
Hash identifier: ha9nNfo9jMELVZhwxYBoeVLOpvfN3ACE+45GODs4USo=
Subject key identifier: 4F:F9:1F:C5:D4:83:66:E1:D5:1E:B5:DB:E2:38:EC:6E:49:F4:38:FF
Certificate issuer: /CN=20595BDBAD09C7D604202305854D1DF14F190959
Certificate serial: 25653E63F6E55F53867DAF0C6FE79C5D8C3B375B
Authority key identifier: 20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a3a2f33322d3438203d3e203438373030.roa
Signing time: Sat 19 Oct 2024 08:32:04 +0000
ROA not before: Sat 19 Oct 2024 08:27:04 +0000
ROA not after: Sat 18 Oct 2025 08:32:04 +0000
asID: 48700
IP address blocks: 2a06:1283::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:65:3e:63:f6:e5:5f:53:86:7d:af:0c:6f:e7:9c:5d:8c:3b:37:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20595BDBAD09C7D604202305854D1DF14F190959
Validity
Not Before: Oct 19 08:27:04 2024 GMT
Not After : Oct 18 08:32:04 2025 GMT
Subject: CN=4FF91FC5D48366E1D51EB5DBE238EC6E49F438FF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:80:39:3b:99:e3:80:3b:bf:13:c6:07:63:95:
fe:ac:5d:5d:fc:0a:be:3b:5f:07:0b:6e:53:76:de:
24:f9:0c:da:05:32:e4:bc:fd:e3:44:2e:3a:36:a1:
ab:28:63:20:13:45:fa:93:4c:bb:3b:cc:bf:cb:2c:
92:92:8f:b7:30:30:0c:33:fa:1f:b9:4a:75:84:11:
1a:36:34:33:4a:e4:a7:82:40:f8:d4:50:c0:58:b8:
54:e1:79:f6:51:8c:21:21:ce:1f:ff:5e:0b:90:96:
5b:d1:72:d6:a7:f1:aa:a3:d8:83:e2:a5:1a:7d:e4:
3d:9f:b7:d7:14:bc:0d:b8:b7:65:94:fa:f6:c2:23:
22:a0:4e:42:87:8e:38:96:2e:88:dc:cb:ef:37:f8:
54:45:3e:d8:26:a3:12:76:a7:b6:03:15:d3:b2:c3:
a2:fe:9a:eb:4b:8e:a9:ba:a8:ca:f5:3f:56:c7:b4:
e4:23:82:4d:d0:33:a2:c3:0b:55:40:98:ba:7e:65:
57:ae:16:a7:a2:25:d1:97:62:e7:64:20:b4:a6:9d:
f3:5b:2d:43:3f:57:b9:09:24:2f:7f:db:ef:b9:e7:
26:16:c5:dc:6e:11:27:c6:32:4e:fc:e6:29:54:b0:
5e:f6:bf:87:7b:43:59:e9:d3:87:6d:70:ba:0b:87:
6b:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:F9:1F:C5:D4:83:66:E1:D5:1E:B5:DB:E2:38:EC:6E:49:F4:38:FF
X509v3 Authority Key Identifier:
keyid:20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a3a2f33322d3438203d3e203438373030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1283::/32
Signature Algorithm: sha256WithRSAEncryption
31:85:58:19:86:60:8d:b5:e7:7f:c2:01:dc:56:93:a2:da:79:
d9:5a:ae:f9:da:14:0c:40:32:c4:2b:d2:3f:f5:51:91:07:7f:
64:9a:26:ae:8f:ea:29:19:d5:60:a0:16:a2:ee:da:ee:61:1e:
11:cf:72:77:9d:10:d6:2e:ce:c1:6c:2c:c7:70:95:d2:cd:61:
62:5e:17:42:89:77:15:b3:3d:71:7c:bf:a7:e0:9e:44:cf:15:
d8:ac:c4:9f:94:47:e1:9f:90:a1:65:cf:8e:e8:b3:0b:d3:8b:
d3:81:02:98:56:c3:af:e6:20:5b:d7:c4:0f:9c:bf:c6:48:70:
c7:45:74:f5:97:63:04:ba:69:d3:7c:6f:be:7f:e2:42:0f:7b:
be:63:e2:f1:59:55:1c:a7:07:a0:43:a9:ff:1f:d1:97:8f:e9:
05:32:ce:03:bb:79:de:a6:93:54:7d:b5:af:2a:78:0d:b0:37:
8c:b6:7a:5a:eb:be:33:f1:aa:87:df:ff:24:da:a4:c9:c3:ca:
57:bf:3f:26:f6:13:ad:88:83:9f:f5:ef:b9:ff:f8:cb:cf:04:
5e:19:a1:f7:32:fa:93:10:2d:4e:c3:f4:12:59:5c:0b:c5:ab:
df:73:90:1d:fd:de:46:81:91:dc:05:1e:14:7d:88:25:6a:a6:
91:b6:15:09
-----BEGIN CERTIFICATE-----
MIIFYjCCBEqgAwIBAgIUJWU+Y/blX1OGfa8Mb+ecXYw7N1swDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0
RjE5MDk1OTAeFw0yNDEwMTkwODI3MDRaFw0yNTEwMTgwODMyMDRaMDMxMTAvBgNV
BAMTKDRGRjkxRkM1RDQ4MzY2RTFENTFFQjVEQkUyMzhFQzZFNDlGNDM4RkYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcgDk7meOAO78Txgdjlf6sXV38
Cr47XwcLblN23iT5DNoFMuS8/eNELjo2oasoYyATRfqTTLs7zL/LLJKSj7cwMAwz
+h+5SnWEERo2NDNK5KeCQPjUUMBYuFThefZRjCEhzh//XguQllvRctan8aqj2IPi
pRp95D2ft9cUvA24t2WU+vbCIyKgTkKHjjiWLojcy+83+FRFPtgmoxJ2p7YDFdOy
w6L+mutLjqm6qMr1P1bHtOQjgk3QM6LDC1VAmLp+ZVeuFqeiJdGXYudkILSmnfNb
LUM/V7kJJC9/2++55yYWxdxuESfGMk785ilUsF72v4d7Q1np04dtcLoLh2sVAgMB
AAGjggJsMIICaDAdBgNVHQ4EFgQUT/kfxdSDZuHVHrXb4jjsbkn0OP8wHwYDVR0j
BBgwFoAUIFlb260Jx9YEICMFhU0d8U8ZCVkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm
NDA5LzEvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5MDk1OS5j
cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp
LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1
YzkxYmUzZjlkLzIvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5
MDk1OS5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt
MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzEvMzI2MTMwMzYzYTMxMzIzODMz
M2EzYTJmMzMzMjJkMzQzODIwM2QzZTIwMzQzODM3MzAzMC5yb2EwGAYDVR0gAQH/
BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACoG
EoMwDQYJKoZIhvcNAQELBQADggEBADGFWBmGYI2153/CAdxWk6LaedlarvnaFAxA
MsQr0j/1UZEHf2SaJq6P6ikZ1WCgFqLu2u5hHhHPcnedENYuzsFsLMdwldLNYWJe
F0KJdxWzPXF8v6fgnkTPFdisxJ+UR+GfkKFlz47oswvTi9OBAphWw6/mIFvXxA+c
v8ZIcMdFdPWXYwS6adN8b75/4kIPe75j4vFZVRynB6BDqf8f0ZeP6QUyzgO7ed6m
k1R9ta8qeA2wN4y2elrrvjPxqoff/yTapMnDyle/Pyb2E62Ig5/177n/+MvPBF4Z
ofcy+pMQLU7D9BJZXAvFq99zkB393kaBkdwFHhR9iCVqppG2FQk=
-----END CERTIFICATE-----
Generated at Sat Apr 5 04:31:24 2025 by rpki-client