Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/1/326130663a383563313a3332353a3a2f34382d3438203d3e203434383137.roa
File: 326130663a383563313a3332353a3a2f34382d3438203d3e203434383137.roa (raw, json)
Hash identifier: rNjQIWRnF4df4J1QTj36tl/sgDNCZan5yXxdTYvD4cQ=
Subject key identifier: A0:39:76:3A:30:9D:61:F5:E3:53:8E:E2:60:4D:66:2B:A0:CD:AD:12
Certificate issuer: /CN=EEB9FB9A329DDB5B94FC5E2424E572ECB9EEDE52
Certificate serial: 5F8BA96DB08799184CAC807CCFD969B1942DB069
Authority key identifier: EE:B9:FB:9A:32:9D:DB:5B:94:FC:5E:24:24:E5:72:EC:B9:EE:DE:52
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/EEB9FB9A329DDB5B94FC5E2424E572ECB9EEDE52.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/1/326130663a383563313a3332353a3a2f34382d3438203d3e203434383137.roa
Signing time: Wed 08 Nov 2023 14:53:59 +0000
ROA not before: Wed 08 Nov 2023 14:48:59 +0000
ROA not after: Wed 06 Nov 2024 14:53:59 +0000
asID: 44817
IP address blocks: 2a0f:85c1:325::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:8b:a9:6d:b0:87:99:18:4c:ac:80:7c:cf:d9:69:b1:94:2d:b0:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EEB9FB9A329DDB5B94FC5E2424E572ECB9EEDE52
Validity
Not Before: Nov 8 14:48:59 2023 GMT
Not After : Nov 6 14:53:59 2024 GMT
Subject: CN=A039763A309D61F5E3538EE2604D662BA0CDAD12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:96:23:f8:28:e2:2b:ff:33:b3:69:d6:87:5d:
91:ae:ed:c2:27:4b:26:67:56:3f:ae:30:d3:93:7a:
b3:a6:d6:6a:bd:cf:9e:48:b7:1a:e7:b9:34:8b:2b:
96:a1:3f:00:c4:53:ef:c6:bb:60:0f:90:cc:9d:7c:
81:f3:58:81:c2:8d:5e:c4:88:a3:e9:c2:f1:4a:b8:
a6:68:2c:3d:b2:18:92:b9:fc:3f:af:c7:93:cd:70:
d1:c8:fc:f5:d1:48:05:cc:51:3e:7d:8c:bd:45:29:
7a:da:1a:0e:90:7e:b1:2e:c6:91:fd:b0:e7:bc:24:
a6:cf:05:16:b0:fc:6e:0d:ca:46:01:b2:0d:fa:5d:
a7:be:97:61:91:77:c0:dc:6a:fb:69:6e:62:77:ea:
48:ac:9b:d9:b0:14:c1:c8:3a:b7:40:b0:84:06:93:
35:52:b7:a9:2e:a7:0f:12:60:32:4a:e8:d9:09:22:
e4:cc:f1:d7:7e:f5:43:37:e7:5b:d5:a8:cc:c7:f1:
f1:08:af:3e:67:89:23:82:cf:b6:b3:84:21:d0:46:
cb:0c:49:43:50:81:8a:9c:6f:5b:c2:8c:7b:2e:09:
b8:b1:9e:37:8d:85:39:35:a2:1c:62:08:1d:35:20:
61:21:41:c9:67:23:e0:2f:b4:7c:66:52:e8:a1:7e:
43:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:39:76:3A:30:9D:61:F5:E3:53:8E:E2:60:4D:66:2B:A0:CD:AD:12
X509v3 Authority Key Identifier:
keyid:EE:B9:FB:9A:32:9D:DB:5B:94:FC:5E:24:24:E5:72:EC:B9:EE:DE:52
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/1/EEB9FB9A329DDB5B94FC5E2424E572ECB9EEDE52.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/EEB9FB9A329DDB5B94FC5E2424E572ECB9EEDE52.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/1/326130663a383563313a3332353a3a2f34382d3438203d3e203434383137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:325::/48
Signature Algorithm: sha256WithRSAEncryption
d3:7e:ec:2a:05:52:0a:85:3a:cd:e9:de:66:7d:ec:eb:2a:1e:
6e:35:ed:6c:86:0e:70:a3:f0:eb:a8:2f:a4:4f:03:99:5a:08:
73:ff:de:6f:76:ff:da:86:9d:2a:42:93:45:0d:7e:67:28:27:
02:86:34:4c:3c:ff:b1:b5:37:81:15:27:e1:f3:c8:4d:00:c4:
bb:5e:7d:55:4a:47:2a:90:54:6b:c4:9e:2e:9b:88:01:31:da:
2a:1e:e8:89:d9:c2:4a:b7:a2:15:28:bc:db:83:e2:23:91:89:
80:d4:c8:0e:b7:9a:06:ef:a6:fd:24:6b:df:cb:8a:c2:23:01:
70:03:5b:c6:7d:79:f6:0f:50:14:8f:a6:12:b8:cd:a7:12:dd:
24:40:04:e8:79:01:07:07:0b:9e:28:49:ec:a9:bc:7b:b8:d0:
53:4c:73:15:02:e0:87:35:da:8c:5d:9e:cb:89:d7:7d:70:20:
c7:8f:f2:4c:4e:4b:b8:19:be:a0:9b:55:f2:db:54:44:bc:3c:
94:5f:32:a0:f7:80:2b:1a:3e:5b:f2:81:5d:7c:7c:0e:ae:73:
21:f1:2a:84:b1:c7:09:0f:c1:b2:21:76:85:fe:e1:87:d7:48:
93:bf:25:f2:74:51:e7:a6:6b:b4:30:b6:23:3f:c3:e8:77:77:
14:f6:94:55
-----BEGIN CERTIFICATE-----
MIIFdzCCBF+gAwIBAgIUX4upbbCHmRhMrIB8z9lpsZQtsGkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRUVCOUZCOUEzMjlEREI1Qjk0RkM1RTI0MjRFNTcyRUNC
OUVFREU1MjAeFw0yMzExMDgxNDQ4NTlaFw0yNDExMDYxNDUzNTlaMDMxMTAvBgNV
BAMTKEEwMzk3NjNBMzA5RDYxRjVFMzUzOEVFMjYwNEQ2NjJCQTBDREFEMTIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFliP4KOIr/zOzadaHXZGu7cIn
SyZnVj+uMNOTerOm1mq9z55ItxrnuTSLK5ahPwDEU+/Gu2APkMydfIHzWIHCjV7E
iKPpwvFKuKZoLD2yGJK5/D+vx5PNcNHI/PXRSAXMUT59jL1FKXraGg6QfrEuxpH9
sOe8JKbPBRaw/G4NykYBsg36Xae+l2GRd8DcavtpbmJ36kism9mwFMHIOrdAsIQG
kzVSt6kupw8SYDJK6NkJIuTM8dd+9UM351vVqMzH8fEIrz5niSOCz7azhCHQRssM
SUNQgYqcb1vCjHsuCbixnjeNhTk1ohxiCB01IGEhQclnI+AvtHxmUuihfkO7AgMB
AAGjggKBMIICfTAdBgNVHQ4EFgQUoDl2OjCdYfXjU47iYE1mK6DNrRIwHwYDVR0j
BBgwFoAU7rn7mjKd21uU/F4kJOVy7Lnu3lIwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMzExZTQ3YzQtMDJmMC00NjU3LTkwMjItZDJiODNjZmY4
NzU1LzEvRUVCOUZCOUEzMjlEREI1Qjk0RkM1RTI0MjRFNTcyRUNCOUVFREU1Mi5j
cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu
Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9mYzIwYWRkMy1hODhlLTRi
YjItYTg0ZC01NWRhMjEyOGYxOTYvMC9FRUI5RkI5QTMyOUREQjVCOTRGQzVFMjQy
NEU1NzJFQ0I5RUVERTUyLmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUF
BzALhoGTcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS8zMTFlNDdjNC0wMmYwLTQ2NTctOTAyMi1kMmI4M2NmZjg3NTUvMS8zMjYxMzA2
NjNhMzgzNTYzMzEzYTMzMzIzNTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDM0MzQz
ODMxMzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcB
Af8EEzARMA8EAgACMAkDBwAqD4XBAyUwDQYJKoZIhvcNAQELBQADggEBANN+7CoF
UgqFOs3p3mZ97OsqHm417WyGDnCj8OuoL6RPA5laCHP/3m92/9qGnSpCk0UNfmco
JwKGNEw8/7G1N4EVJ+HzyE0AxLtefVVKRyqQVGvEni6biAEx2ioe6InZwkq3ohUo
vNuD4iORiYDUyA63mgbvpv0ka9/LisIjAXADW8Z9efYPUBSPphK4zacS3SRABOh5
AQcHC54oSeypvHu40FNMcxUC4Ic12oxdnsuJ131wIMeP8kxOS7gZvqCbVfLbVES8
PJRfMqD3gCsaPlvygV18fA6ucyHxKoSxxwkPwbIhdoX+4YfXSJO/JfJ0Ueema7Qw
tiM/w+h3dxT2lFU=
-----END CERTIFICATE-----
Generated at Fri Sep 20 00:00:19 2024 by rpki-client on console-ams.rpki-client.org