Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a623333353a3a2f34382d3438203d3e20323132303439.roa
File: 326130363a313238333a623333353a3a2f34382d3438203d3e20323132303439.roa (raw, json)
Hash identifier: RHMNVLENk+MzWZXz1+9uiMtsOZHDzIdiKn2QbhsEtFs=
Subject key identifier: E6:BD:E6:F6:42:50:A2:A4:AA:77:50:C7:F9:73:DE:3E:42:90:36:17
Certificate issuer: /CN=20595BDBAD09C7D604202305854D1DF14F190959
Certificate serial: 2518DBF2E49F67A2D7BE510CFF02F2FFF0F94D78
Authority key identifier: 20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a623333353a3a2f34382d3438203d3e20323132303439.roa
Signing time: Sun 15 Sep 2024 14:36:37 +0000
ROA not before: Sun 15 Sep 2024 14:31:37 +0000
ROA not after: Sun 14 Sep 2025 14:36:37 +0000
asID: 212049
IP address blocks: 2a06:1283:b335::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:18:db:f2:e4:9f:67:a2:d7:be:51:0c:ff:02:f2:ff:f0:f9:4d:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20595BDBAD09C7D604202305854D1DF14F190959
Validity
Not Before: Sep 15 14:31:37 2024 GMT
Not After : Sep 14 14:36:37 2025 GMT
Subject: CN=E6BDE6F64250A2A4AA7750C7F973DE3E42903617
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:db:3c:0e:58:f8:f4:45:79:35:21:42:f8:29:
b6:69:e1:6f:a9:90:bf:5d:d2:b0:48:31:0b:48:23:
ac:67:21:7b:c8:ae:30:47:1c:b6:a4:31:cf:43:35:
b5:79:19:51:5e:68:9a:1b:10:df:87:16:4a:22:19:
cc:3e:34:1a:a1:50:f1:93:0d:07:76:de:4d:d9:75:
9c:d1:79:65:51:a5:83:67:8c:bc:09:92:fd:df:ac:
b8:7f:c0:8e:12:bd:4e:e7:d1:6d:e8:2d:e3:7e:4e:
88:08:58:a1:b2:83:f2:fb:96:cc:f9:16:a2:61:72:
76:8c:34:1e:17:2d:0a:72:09:5b:4d:2f:85:4b:61:
48:77:38:d7:9e:b5:02:51:3b:54:b1:8f:a3:50:3d:
05:ee:ca:d3:04:5b:f3:33:f5:92:ee:2f:c8:4e:5a:
3b:32:05:68:62:06:e0:b0:4a:52:1c:a4:90:e0:c4:
53:b8:1e:5a:36:7e:1f:85:22:b1:f5:3b:81:b9:47:
82:65:aa:64:d0:3b:13:eb:31:ee:a7:fb:7d:72:8f:
f6:85:e7:75:62:ea:21:23:4b:3c:8b:31:44:06:0f:
0e:6e:f5:57:b2:95:46:1f:43:fa:42:cb:92:c1:7d:
a9:d5:ab:aa:1f:dc:13:07:48:61:f1:a1:7e:8d:ef:
34:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:BD:E6:F6:42:50:A2:A4:AA:77:50:C7:F9:73:DE:3E:42:90:36:17
X509v3 Authority Key Identifier:
keyid:20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a623333353a3a2f34382d3438203d3e20323132303439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1283:b335::/48
Signature Algorithm: sha256WithRSAEncryption
2a:1b:1e:1f:07:b4:93:71:c4:cd:e9:ca:56:62:27:6e:61:2f:
87:d1:c9:fe:13:e8:f2:ec:80:8f:6e:50:4d:a7:b1:0f:29:70:
fd:31:5c:c9:e7:7e:7c:45:ed:40:26:82:f7:1b:25:40:5d:c2:
82:ea:c3:d3:81:8e:89:b6:1f:69:4f:d6:76:fb:69:63:29:c5:
cc:5f:be:ba:e0:5c:4a:7a:13:51:95:48:c7:34:34:a5:a2:0b:
7d:29:d9:cb:07:4b:4e:04:1f:26:98:ff:ce:23:98:c8:c9:6f:
e7:5e:44:b8:12:97:bc:0f:43:51:54:1e:4f:26:f0:05:9e:59:
5b:c6:00:21:db:61:df:2c:2a:ee:fa:74:a8:a5:da:80:51:e8:
83:cf:7d:c8:c8:54:f9:cb:6a:61:a0:aa:79:a7:40:c9:76:07:
6b:5d:4f:77:6c:7d:27:36:bc:4e:15:2f:5c:e2:53:72:fb:42:
ff:df:ed:5c:a3:83:8c:34:f7:3f:71:72:ca:6b:98:00:d4:83:
d7:57:4a:d0:41:20:5d:ae:35:54:f9:5f:33:c8:20:fb:d5:5e:
5b:e5:79:a7:c6:1a:0a:4c:ca:17:ba:68:d5:72:23:96:28:7f:
a4:ed:c7:ae:1d:da:27:39:a7:9e:64:62:10:c4:80:26:e7:3e:
6a:0b:5c:a9
-----BEGIN CERTIFICATE-----
MIIFcDCCBFigAwIBAgIUJRjb8uSfZ6LXvlEM/wLy//D5TXgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0
RjE5MDk1OTAeFw0yNDA5MTUxNDMxMzdaFw0yNTA5MTQxNDM2MzdaMDMxMTAvBgNV
BAMTKEU2QkRFNkY2NDI1MEEyQTRBQTc3NTBDN0Y5NzNERTNFNDI5MDM2MTcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC92zwOWPj0RXk1IUL4KbZp4W+p
kL9d0rBIMQtII6xnIXvIrjBHHLakMc9DNbV5GVFeaJobEN+HFkoiGcw+NBqhUPGT
DQd23k3ZdZzReWVRpYNnjLwJkv3frLh/wI4SvU7n0W3oLeN+TogIWKGyg/L7lsz5
FqJhcnaMNB4XLQpyCVtNL4VLYUh3ONeetQJRO1Sxj6NQPQXuytMEW/Mz9ZLuL8hO
WjsyBWhiBuCwSlIcpJDgxFO4Hlo2fh+FIrH1O4G5R4JlqmTQOxPrMe6n+31yj/aF
53Vi6iEjSzyLMUQGDw5u9VeylUYfQ/pCy5LBfanVq6of3BMHSGHxoX6N7zRlAgMB
AAGjggJ6MIICdjAdBgNVHQ4EFgQU5r3m9kJQoqSqd1DH+XPePkKQNhcwHwYDVR0j
BBgwFoAUIFlb260Jx9YEICMFhU0d8U8ZCVkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm
NDA5LzEvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5MDk1OS5j
cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp
LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1
YzkxYmUzZjlkLzIvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5
MDk1OS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt
MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzEvMzI2MTMwMzYzYTMxMzIzODMz
M2E2MjMzMzMzNTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzMjMwMzQzOS5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw
DwQCAAIwCQMHACoGEoOzNTANBgkqhkiG9w0BAQsFAAOCAQEAKhseHwe0k3HEzenK
VmInbmEvh9HJ/hPo8uyAj25QTaexDylw/TFcyed+fEXtQCaC9xslQF3CgurD04GO
ibYfaU/WdvtpYynFzF++uuBcSnoTUZVIxzQ0paILfSnZywdLTgQfJpj/ziOYyMlv
515EuBKXvA9DUVQeTybwBZ5ZW8YAIdth3ywq7vp0qKXagFHog899yMhU+ctqYaCq
eadAyXYHa11Pd2x9Jza8ThUvXOJTcvtC/9/tXKODjDT3P3FyymuYANSD11dK0EEg
Xa41VPlfM8gg+9VeW+V5p8YaCkzKF7po1XIjlih/pO3Hrh3aJzmnnmRiEMSAJuc+
agtcqQ==
-----END CERTIFICATE-----
Generated at Sat Apr 5 09:57:29 2025 by rpki-client