Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343831303a3a2f34342d3438203d3e20323135363734.roa
File: 326131343a373538313a343831303a3a2f34342d3438203d3e20323135363734.roa (raw, json)
Hash identifier: HscFYsQcMtvjpDQJk86+k68Lr7MoMlx0VU02QHyOcGk=
Subject key identifier: F0:D5:9C:89:1D:00:28:3B:5B:14:35:7C:38:66:B4:79:D2:BA:F3:8E
Certificate issuer: /CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C
Certificate serial: 715F293BA9565016CB715E0B27104C25FD7F2FC1
Authority key identifier: 8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343831303a3a2f34342d3438203d3e20323135363734.roa
Signing time: Mon 24 Feb 2025 10:52:12 +0000
ROA not before: Mon 24 Feb 2025 10:47:12 +0000
ROA not after: Mon 23 Feb 2026 10:52:12 +0000
asID: 215674
IP address blocks: 2a14:7581:4810::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:5f:29:3b:a9:56:50:16:cb:71:5e:0b:27:10:4c:25:fd:7f:2f:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C
Validity
Not Before: Feb 24 10:47:12 2025 GMT
Not After : Feb 23 10:52:12 2026 GMT
Subject: CN=F0D59C891D00283B5B14357C3866B479D2BAF38E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:9f:f4:fa:37:ab:2a:30:76:27:0d:87:83:42:
77:b0:52:fa:ab:0a:90:31:d5:cd:fa:d8:2a:c2:cf:
5a:fd:b9:09:10:c8:4a:2e:63:31:f2:b9:b0:49:97:
78:53:79:8e:5d:e5:22:c3:4f:36:2c:66:d1:67:89:
5e:b7:58:8b:26:a6:02:7c:23:41:8b:bd:a8:76:79:
94:3b:55:71:ce:49:eb:a1:b7:45:9a:f6:9c:53:28:
28:de:6d:08:13:4e:56:29:ae:7e:d5:aa:95:34:db:
4b:94:00:a5:ce:c8:b9:b4:ca:a8:62:02:fc:2e:12:
0a:6c:cc:35:7c:f2:ce:d0:07:a4:6c:af:ac:b8:ba:
50:35:0e:68:a4:1a:a9:d5:2f:9c:66:55:a3:d0:21:
cd:88:f7:7a:1a:ee:79:a9:41:99:69:eb:11:63:cf:
89:dd:28:b9:b2:c7:25:0b:bd:b1:c9:99:c3:a7:cf:
ef:5d:94:f8:e4:e9:fc:2b:64:2c:f1:b3:77:40:98:
a7:16:62:83:4a:ec:6b:36:67:fe:3d:7e:63:36:0c:
45:72:ee:8e:a0:a1:0f:a2:e2:92:4c:c7:50:b1:99:
5a:d5:be:85:ee:db:e9:f8:e1:18:35:01:c1:57:9c:
35:6f:be:97:bd:61:21:41:d7:5e:79:4d:cd:2f:eb:
b4:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:D5:9C:89:1D:00:28:3B:5B:14:35:7C:38:66:B4:79:D2:BA:F3:8E
X509v3 Authority Key Identifier:
keyid:8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343831303a3a2f34342d3438203d3e20323135363734.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:4810::/44
Signature Algorithm: sha256WithRSAEncryption
5c:b7:07:6f:99:cd:8b:92:cf:21:9c:22:1a:fe:34:89:48:f6:
87:a7:21:c9:6e:f0:34:ff:5c:8e:78:eb:51:76:6d:b9:56:d2:
be:56:b7:d1:0b:0b:c1:0c:52:af:0c:21:08:78:72:ac:e1:8b:
4a:51:bd:69:e6:2d:8c:7f:ee:26:43:38:1b:c6:fe:1c:11:37:
2a:57:23:4a:57:40:3c:ec:13:92:ac:10:13:66:5a:8b:d8:53:
33:3f:b5:92:af:b7:f6:11:31:07:8f:b7:f4:e5:01:ba:97:2e:
e8:5d:ab:5c:5e:4c:02:d6:98:00:82:fe:99:87:5c:8b:9e:fc:
8f:78:09:20:02:30:8f:a3:eb:01:84:31:0d:48:6c:a7:f4:44:
12:c3:aa:92:7c:2a:22:0c:ed:b4:e1:ed:10:a5:3f:2d:17:55:
59:47:7d:fd:7f:dc:85:d8:e4:c9:c1:67:85:4f:7f:ea:d8:e1:
53:8b:3b:3a:2b:09:f7:38:92:f6:33:de:bd:34:94:35:2b:bb:
b2:83:6d:df:37:49:98:70:33:8f:8c:f2:99:65:d5:c2:e2:31:
d2:f5:62:40:70:7a:78:4b:b2:42:3b:4c:a3:8b:d2:8a:0e:f9:
17:60:45:77:85:60:02:82:83:3f:c7:2d:5f:95:2a:9f:a0:3d:
e9:15:01:ce
-----BEGIN CERTIFICATE-----
MIIFezCCBGOgAwIBAgIUcV8pO6lWUBbLcV4LJxBMJf1/L8EwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJF
MEFGQjM4QzAeFw0yNTAyMjQxMDQ3MTJaFw0yNjAyMjMxMDUyMTJaMDMxMTAvBgNV
BAMTKEYwRDU5Qzg5MUQwMDI4M0I1QjE0MzU3QzM4NjZCNDc5RDJCQUYzOEUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEn/T6N6sqMHYnDYeDQnewUvqr
CpAx1c362CrCz1r9uQkQyEouYzHyubBJl3hTeY5d5SLDTzYsZtFniV63WIsmpgJ8
I0GLvah2eZQ7VXHOSeuht0Wa9pxTKCjebQgTTlYprn7VqpU020uUAKXOyLm0yqhi
AvwuEgpszDV88s7QB6Rsr6y4ulA1DmikGqnVL5xmVaPQIc2I93oa7nmpQZlp6xFj
z4ndKLmyxyULvbHJmcOnz+9dlPjk6fwrZCzxs3dAmKcWYoNK7Gs2Z/49fmM2DEVy
7o6goQ+i4pJMx1CxmVrVvoXu2+n44Rg1AcFXnDVvvpe9YSFB1155Tc0v67SPAgMB
AAGjggKFMIICgTAdBgNVHQ4EFgQU8NWciR0AKDtbFDV8OGa0edK6844wHwYDVR0j
BBgwFoAUjgfTHGRS96ayTmPN3EkOEuCvs4wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMzExZTQ3YzQtMDJmMC00NjU3LTkwMjItZDJiODNjZmY4
NzU1LzQvOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJFMEFGQjM4Qy5j
cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu
Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy
OTktYjA3OS0zMDllZDk3ZjM4MjQvMC84RTA3RDMxQzY0NTJGN0E2QjI0RTYzQ0RE
QzQ5MEUxMkUwQUZCMzhDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF
BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS8zMTFlNDdjNC0wMmYwLTQ2NTctOTAyMi1kMmI4M2NmZjg3NTUvNC8zMjYxMzEz
NDNhMzczNTM4MzEzYTM0MzgzMTMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzIz
MTM1MzYzNzM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF
BwEHAQH/BBMwETAPBAIAAjAJAwcEKhR1gUgQMA0GCSqGSIb3DQEBCwUAA4IBAQBc
twdvmc2Lks8hnCIa/jSJSPaHpyHJbvA0/1yOeOtRdm25VtK+VrfRCwvBDFKvDCEI
eHKs4YtKUb1p5i2Mf+4mQzgbxv4cETcqVyNKV0A87BOSrBATZlqL2FMzP7WSr7f2
ETEHj7f05QG6ly7oXatcXkwC1pgAgv6Zh1yLnvyPeAkgAjCPo+sBhDENSGyn9EQS
w6qSfCoiDO204e0QpT8tF1VZR339f9yF2OTJwWeFT3/q2OFTizs6Kwn3OJL2M969
NJQ1K7uyg23fN0mYcDOPjPKZZdXC4jHS9WJAcHp4S7JCO0yji9KKDvkXYEV3hWAC
goM/xy1flSqfoD3pFQHO
-----END CERTIFICATE-----
Generated at Sat Apr 5 04:42:45 2025 by rpki-client