Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393135303a3a2f34382d3438203d3e20323135383034.roa
File: 326130353a646663313a393135303a3a2f34382d3438203d3e20323135383034.roa (raw, json)
Hash identifier: qmmzsY8RCY8ts8I1cK9wMC1WemEayYW6g8GyfJ2fbuk=
Subject key identifier: 8F:C9:03:6B:37:47:4B:BC:0D:32:1B:D1:74:17:DB:DA:39:93:A8:4E
Certificate issuer: /CN=F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76
Certificate serial: 2D8239BF67FBE3C27B5AF19530BB578E16E21925
Authority key identifier: F7:37:D8:1B:FB:EF:FD:EE:C9:EC:32:B7:B8:64:11:2D:E0:5E:7B:76
Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393135303a3a2f34382d3438203d3e20323135383034.roa
Signing time: Fri 29 Dec 2023 15:16:05 +0000
ROA not before: Fri 29 Dec 2023 15:11:05 +0000
ROA not after: Fri 27 Dec 2024 15:16:05 +0000
asID: 215804
IP address blocks: 2a05:dfc1:9150::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:82:39:bf:67:fb:e3:c2:7b:5a:f1:95:30:bb:57:8e:16:e2:19:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76
Validity
Not Before: Dec 29 15:11:05 2023 GMT
Not After : Dec 27 15:16:05 2024 GMT
Subject: CN=8FC9036B37474BBC0D321BD17417DBDA3993A84E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:17:80:09:72:ce:1f:08:48:27:42:f2:57:90:
24:e5:9f:cd:d9:be:83:3b:3f:17:cd:c9:44:2b:6c:
d5:55:40:d6:27:df:36:2d:95:9b:d2:29:80:fa:d0:
a9:02:5e:b1:d2:b8:4c:9d:c5:b5:7c:c3:a6:ad:51:
e4:85:92:d2:2e:8e:38:5c:bc:b0:ce:83:0a:2f:97:
71:07:11:bc:7e:b0:cb:40:c6:7a:c4:39:4b:5d:14:
75:f1:b3:9c:f2:05:92:d7:bc:a8:83:91:d5:68:08:
5c:a4:24:cf:02:79:28:3b:c7:7e:31:f1:3f:3c:4f:
b0:69:2d:d3:7b:fe:b1:ef:08:3e:86:70:8b:25:4f:
01:3e:cc:cb:6c:25:94:a1:2d:88:8b:77:6c:ff:0d:
e6:34:5a:51:09:33:db:58:6d:58:d4:c1:61:8a:d7:
4e:cc:a4:6f:0b:0d:5e:c6:79:1a:f3:7f:cd:1a:e9:
07:50:43:2a:f7:5d:ab:2e:82:10:97:f7:a8:c1:3c:
97:2e:72:af:c7:9f:b6:f2:36:f0:e3:11:64:fe:50:
af:82:e8:25:bd:31:e6:f9:e1:28:1d:be:04:cc:51:
ab:24:7f:7c:74:f7:15:ec:af:ca:78:ff:d3:00:44:
70:62:57:43:29:b0:7d:c4:76:9e:49:e0:b2:18:ac:
22:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:C9:03:6B:37:47:4B:BC:0D:32:1B:D1:74:17:DB:DA:39:93:A8:4E
X509v3 Authority Key Identifier:
keyid:F7:37:D8:1B:FB:EF:FD:EE:C9:EC:32:B7:B8:64:11:2D:E0:5E:7B:76
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.crl
Authority Information Access:
CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393135303a3a2f34382d3438203d3e20323135383034.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:9150::/48
Signature Algorithm: sha256WithRSAEncryption
02:3b:c3:bc:22:57:46:6d:95:1b:da:4d:8e:f1:c9:0f:f8:49:
ac:4a:25:96:0e:81:bd:05:cd:0a:18:4b:a8:f9:06:23:0e:f9:
91:83:a3:24:f3:a3:4c:af:14:e6:14:39:1e:22:8e:90:66:8b:
45:3f:a5:ed:12:2d:88:70:ae:e1:aa:2d:0e:7f:e7:ea:b5:fc:
9f:9b:45:53:31:24:56:4b:95:99:76:1b:f8:b0:6f:d4:74:8c:
7f:af:ae:0f:1a:0c:69:a9:a8:7b:47:30:c2:60:5e:e9:a9:2a:
aa:8b:2f:e9:54:f7:2c:4a:f3:c5:f7:56:68:55:77:35:7b:e6:
10:82:83:59:c5:71:60:59:b8:81:ba:5e:68:9c:4b:f9:a0:e0:
db:6f:19:98:31:7d:6d:5b:b2:5a:30:c3:40:c1:35:66:2d:68:
a7:07:30:67:21:3b:1b:75:6b:7a:6f:fb:13:c0:da:3c:f8:22:
41:11:c2:7f:a4:03:cb:0e:14:cd:12:b3:04:58:a3:70:c1:a9:
a1:6e:e2:8c:a6:fb:ca:b9:99:bf:27:99:2d:d1:29:39:25:ec:
0b:b6:42:33:d4:cb:37:f1:a3:01:f9:41:9c:b4:ae:7e:97:1b:
c3:2b:ef:31:39:16:1f:2c:57:08:fb:77:f4:28:1f:3d:34:e3:
f4:66:a3:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:44:39 2025 by rpki-client