Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/326130613a363034343a363030303a3a2f33362d3438203d3e20323136333131.roa
File: 326130613a363034343a363030303a3a2f33362d3438203d3e20323136333131.roa (raw, json)
Hash identifier: ibbIvsQqUp/8G+qjDkA3i24WPcpBnZMfcYkoN75sytk=
Subject key identifier: D4:2F:B1:CD:EC:C6:4E:4C:71:5E:DF:16:DA:F5:B4:46:C1:E8:CD:BC
Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Certificate serial: 62ECD46E92174831524CE87F9B28BF8539F0413D
Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/326130613a363034343a363030303a3a2f33362d3438203d3e20323136333131.roa
Signing time: Sat 01 Jun 2024 20:24:53 +0000
ROA not before: Sat 01 Jun 2024 20:19:53 +0000
ROA not after: Sat 31 May 2025 20:24:53 +0000
asID: 216311
IP address blocks: 2a0a:6044:6000::/36 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:ec:d4:6e:92:17:48:31:52:4c:e8:7f:9b:28:bf:85:39:f0:41:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Validity
Not Before: Jun 1 20:19:53 2024 GMT
Not After : May 31 20:24:53 2025 GMT
Subject: CN=D42FB1CDECC64E4C715EDF16DAF5B446C1E8CDBC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:cb:b6:bd:46:cd:b8:e1:4a:62:eb:31:ef:c0:
4c:8d:5c:32:a9:e9:e1:2a:98:58:d2:96:99:0d:89:
96:25:bf:9a:af:60:9f:db:70:70:1d:f0:05:c0:b7:
25:2c:91:fd:5d:b6:4f:14:b1:87:a2:65:f7:f3:f7:
71:aa:b1:cd:d6:10:59:cd:5f:c5:c1:b6:17:28:f2:
2f:c4:6c:7f:51:ed:a6:0c:0a:5f:d8:5a:76:e5:da:
4a:94:5e:6c:10:95:7c:1d:d4:e5:e2:e1:ba:d6:e9:
91:50:e1:03:91:c6:2f:a6:a6:aa:f3:89:39:18:a6:
94:17:2b:b7:34:5b:cf:4d:49:a2:95:3e:41:f5:69:
3c:a6:43:33:85:40:a6:4a:24:cb:66:7c:b6:27:cd:
25:ec:16:a4:8f:3b:02:50:99:70:61:c8:ab:77:5d:
b3:3e:64:9d:eb:30:a5:97:4a:39:05:81:a4:de:4a:
a9:fb:01:d0:b2:99:29:c7:fb:33:a8:21:c0:86:68:
00:f3:bd:9d:f5:e1:9c:4c:8c:75:64:05:06:ce:09:
9f:63:a3:47:cc:40:1d:9e:2a:b1:68:c0:46:df:59:
8b:39:81:44:1c:0f:b8:77:29:d6:a7:cd:92:84:80:
25:36:b7:ed:ae:db:bb:52:17:51:e4:0d:51:ae:3c:
27:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:2F:B1:CD:EC:C6:4E:4C:71:5E:DF:16:DA:F5:B4:46:C1:E8:CD:BC
X509v3 Authority Key Identifier:
keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/326130613a363034343a363030303a3a2f33362d3438203d3e20323136333131.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6044:6000::/36
Signature Algorithm: sha256WithRSAEncryption
93:5b:05:8e:25:99:5a:54:49:db:9f:27:b0:50:d2:50:e5:2e:
a5:71:31:df:73:f2:0b:a8:73:1c:86:a9:fa:56:1d:14:e0:e7:
3e:63:1f:09:94:43:9c:16:fb:16:5e:e4:34:5f:1e:d3:4c:6a:
fe:1c:1d:d5:d8:7e:63:2e:4b:4b:19:04:1d:aa:88:e7:5b:7a:
b5:2d:8c:92:4b:07:52:9b:17:df:c4:59:9d:97:49:7e:0f:f5:
e2:49:2c:aa:00:0e:28:32:77:67:d0:7d:9c:bf:a8:9a:95:ef:
13:a2:e0:f8:cd:74:72:ab:57:76:01:a3:9b:dd:f0:0f:a6:30:
7c:cf:8b:98:08:8a:07:be:66:dc:97:d8:92:53:c9:74:7c:21:
ca:23:dc:b9:39:0d:96:26:68:e0:c6:12:bb:55:a3:ba:77:1d:
e1:4b:85:04:04:d0:e1:bf:87:36:85:c9:18:19:63:29:02:39:
54:b9:05:81:ea:cc:19:04:81:75:d3:bc:0b:ff:fc:85:67:a6:
e3:76:17:e3:09:6d:31:d3:5d:d4:ed:9c:b8:2c:a7:b1:22:5b:
ce:9d:9d:7a:06:80:1e:8d:f1:51:99:86:51:05:38:1c:bd:a7:
93:b4:19:3b:77:e7:04:5d:40:8d:ce:36:f2:37:df:c7:48:14:
b1:13:3f:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:46:55 2025 by rpki-client