Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343535303a3a2f34342d3438203d3e20323136333735.roa
File: 326131343a373538313a343535303a3a2f34342d3438203d3e20323136333735.roa (raw, json)
Hash identifier: j3Yxep+MI4lCkRyN6TayldqjXbBq5gnnYN1fkBIgW/k=
Subject key identifier: 7A:17:89:88:A5:FD:08:55:B5:AD:E6:D0:27:66:B8:9F:53:81:69:41
Certificate issuer: /CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C
Certificate serial: 3B4DCF040EDADC872EB58EE079D63B80128DA533
Authority key identifier: 8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343535303a3a2f34342d3438203d3e20323136333735.roa
Signing time: Fri 14 Jun 2024 16:26:46 +0000
ROA not before: Fri 14 Jun 2024 16:21:46 +0000
ROA not after: Fri 13 Jun 2025 16:26:46 +0000
asID: 216375
IP address blocks: 2a14:7581:4550::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:4d:cf:04:0e:da:dc:87:2e:b5:8e:e0:79:d6:3b:80:12:8d:a5:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C
Validity
Not Before: Jun 14 16:21:46 2024 GMT
Not After : Jun 13 16:26:46 2025 GMT
Subject: CN=7A178988A5FD0855B5ADE6D02766B89F53816941
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ca:e0:cf:69:cf:c9:29:2b:0a:15:56:8b:b2:
e6:09:05:58:85:49:81:fb:da:e9:73:15:10:7a:2e:
c4:26:6b:e8:18:9b:82:1e:af:e9:65:3b:6d:bf:1c:
27:af:9c:9c:bf:dd:18:e5:33:7b:e4:2c:bd:a0:8f:
76:c0:3c:6a:e5:06:76:64:9e:71:13:ac:05:38:55:
8e:77:88:29:5d:f9:47:d6:b5:e0:2a:cc:72:29:2b:
f3:c4:ae:bb:ef:86:d4:1b:62:59:f8:0a:f9:50:7f:
72:b9:dd:81:5a:e6:47:89:3a:2b:19:8a:fd:61:c7:
51:0c:b6:0e:50:fd:9e:d5:f9:5b:4c:5c:f6:60:43:
b2:31:4b:08:df:8a:82:5f:f9:b7:15:95:41:e4:b7:
7a:43:ab:de:54:c2:6f:99:63:9c:ca:56:d8:24:f3:
ff:c3:98:43:8e:d2:29:c6:3a:fb:29:e4:4c:45:3f:
a3:ee:76:21:3f:7d:c1:dd:13:2f:18:bb:62:2a:88:
23:9f:fc:fa:c0:27:76:5a:1a:af:b6:91:2e:74:0e:
52:24:94:ea:5c:12:f7:76:7a:ac:6e:8e:81:3d:d7:
7e:89:42:b6:ae:e8:ad:06:58:b7:3a:25:4e:a9:09:
ff:9c:a6:2c:d3:e6:61:da:a4:f1:0c:01:0d:f8:95:
81:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:17:89:88:A5:FD:08:55:B5:AD:E6:D0:27:66:B8:9F:53:81:69:41
X509v3 Authority Key Identifier:
keyid:8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343535303a3a2f34342d3438203d3e20323136333735.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:4550::/44
Signature Algorithm: sha256WithRSAEncryption
8b:d0:f7:5f:61:b7:df:23:21:4f:41:c2:25:21:14:c7:41:6b:
65:0c:e8:c5:33:d7:9d:89:d4:85:ec:ed:d6:c6:21:cc:75:1f:
0a:61:20:3a:d8:97:b0:e2:62:27:e0:46:ba:02:cb:ed:60:e6:
bf:ae:d6:47:c0:e5:cf:ef:fe:a7:e2:21:dc:33:7d:16:ce:e4:
4f:96:1a:6f:38:b7:51:37:8f:af:71:29:c8:69:f8:70:2f:b1:
29:db:1a:1f:78:32:6b:2e:73:78:ae:e6:65:fa:be:08:0c:ca:
85:e0:00:a1:d5:79:6b:6e:bc:e4:99:c7:a6:da:1c:c8:1c:2a:
a5:69:db:4e:53:54:7f:5e:8c:f6:e5:68:2f:0a:82:28:04:8e:
4c:05:ae:71:8d:9a:c3:ab:a5:7f:0f:c3:a2:1b:45:b1:4c:f0:
50:30:04:1f:b0:6c:94:a9:90:ca:89:f4:99:90:25:a9:15:13:
14:87:95:2e:72:61:ae:c8:96:62:25:bb:58:1d:99:e9:7c:aa:
2a:21:6f:a0:0f:6d:7c:b4:ca:83:b3:e7:83:20:36:82:33:93:
84:99:ef:74:25:2e:c6:b6:13:11:89:02:e3:8d:5e:42:9b:01:
cf:29:22:cb:a5:17:d4:8d:5a:6b:3b:90:60:a9:52:65:66:a6:
79:ad:b4:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:35:02 2025 by rpki-client