Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393162333a3a2f34382d3438203d3e20323131353632.roa
File: 326130353a646663313a393162333a3a2f34382d3438203d3e20323131353632.roa (raw, json)
Hash identifier: vOsz8VjPSOi8Tq0nN6KPmr337MkAh53ZHFM0TOhC9Ik=
Subject key identifier: 4C:52:8B:6F:9E:08:16:F9:AC:F5:FF:09:44:E6:86:B6:B7:EE:77:8C
Certificate issuer: /CN=F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76
Certificate serial: 3182AC801CBA8E210D9BCB4F8D0B12F5F91DAFAC
Authority key identifier: F7:37:D8:1B:FB:EF:FD:EE:C9:EC:32:B7:B8:64:11:2D:E0:5E:7B:76
Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393162333a3a2f34382d3438203d3e20323131353632.roa
Signing time: Tue 06 Feb 2024 19:14:38 +0000
ROA not before: Tue 06 Feb 2024 19:09:38 +0000
ROA not after: Tue 04 Feb 2025 19:14:38 +0000
asID: 211562
IP address blocks: 2a05:dfc1:91b3::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:82:ac:80:1c:ba:8e:21:0d:9b:cb:4f:8d:0b:12:f5:f9:1d:af:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76
Validity
Not Before: Feb 6 19:09:38 2024 GMT
Not After : Feb 4 19:14:38 2025 GMT
Subject: CN=4C528B6F9E0816F9ACF5FF0944E686B6B7EE778C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:b3:b6:e1:9c:e7:94:3e:60:1b:21:78:0b:6e:
e2:8f:05:63:4d:dc:e5:de:44:80:39:9f:de:c1:5f:
41:1d:8e:e9:bc:52:b1:2b:22:64:fe:a8:72:aa:af:
8d:91:07:fe:8e:23:bb:2a:77:45:4e:8a:9a:0c:40:
d0:c3:5a:16:d5:93:4f:96:1f:c0:f7:b6:8d:a9:0c:
3a:12:c9:2d:fc:dd:92:f6:03:c9:0c:94:4a:8c:a5:
70:50:1a:17:25:e2:64:1a:4b:68:89:77:a8:21:41:
c7:25:6a:5e:50:8f:ad:4d:18:56:82:5c:64:0d:2c:
82:fd:c0:12:b1:4c:d1:88:c4:85:51:25:8e:cc:b2:
d5:60:89:9e:7b:b1:72:bd:06:8e:ec:f5:92:29:80:
99:4c:5a:1e:68:4e:fe:72:2f:6b:20:ac:88:13:d8:
5a:f9:30:8b:02:9c:dc:4a:86:3f:26:af:eb:a8:91:
e9:77:f5:d2:42:75:24:a8:6b:17:83:cc:90:2e:2f:
e6:11:70:4f:f4:4c:5e:dc:ea:d2:58:51:81:bb:9f:
f9:c4:68:ef:ae:3f:a8:55:14:2e:86:a7:02:76:07:
86:2c:8f:2b:b8:6b:97:e7:23:56:ae:3b:15:74:53:
49:d1:15:e5:34:bb:05:a0:35:7d:81:5e:51:29:31:
8b:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:52:8B:6F:9E:08:16:F9:AC:F5:FF:09:44:E6:86:B6:B7:EE:77:8C
X509v3 Authority Key Identifier:
keyid:F7:37:D8:1B:FB:EF:FD:EE:C9:EC:32:B7:B8:64:11:2D:E0:5E:7B:76
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.crl
Authority Information Access:
CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393162333a3a2f34382d3438203d3e20323131353632.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:91b3::/48
Signature Algorithm: sha256WithRSAEncryption
62:03:cb:83:4c:8f:a2:b0:c7:80:91:0f:94:d2:0e:12:26:36:
df:5e:ce:59:70:f6:92:6d:29:30:2b:c8:b4:29:0a:0f:a0:45:
81:f3:a9:f3:64:0b:4e:93:73:34:c3:fe:03:2b:6c:5e:ac:61:
29:b4:dd:1f:8b:f0:99:6e:3d:df:0b:a5:ba:c5:4c:73:41:f1:
0f:0f:48:78:e7:31:c9:75:37:a2:53:c0:b5:15:06:47:9b:5d:
71:e6:6d:21:87:d3:1c:b5:bf:43:04:b8:25:0f:26:37:02:b5:
db:94:c8:e9:0f:91:6a:23:ff:54:ec:96:42:7f:df:58:bd:98:
78:1b:fa:d5:54:7c:96:49:bb:19:58:9d:40:a6:ab:dd:eb:9c:
80:6b:ec:42:12:17:e2:21:db:9e:6b:11:79:fd:76:cc:2d:55:
66:de:7e:5e:d8:61:fc:91:a0:ea:90:a3:62:e7:99:56:38:0a:
ca:74:58:6c:03:5d:76:71:d8:d2:8b:e3:4a:83:74:9e:2f:7c:
ad:a9:ed:cd:32:38:be:bb:d5:c2:e6:2c:db:86:6c:b3:a4:60:
f6:af:ca:d0:41:8b:9b:d0:99:15:1f:ee:e2:7e:bf:e1:d6:94:
ab:d0:73:9d:88:c7:7d:54:98:4b:65:30:8e:26:db:b5:fc:00:
f7:f3:0a:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:45:32 2025 by rpki-client