Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393163333a3a2f34382d3438203d3e20323131333538.roa
File: 326130353a646663313a393163333a3a2f34382d3438203d3e20323131333538.roa (raw, json)
Hash identifier: xgxzbdxoqT1d7QD46k2tO2ncrTzOEBCF8RuMuOjQ2KA=
Subject key identifier: 2D:9D:7B:68:42:D9:BA:25:23:47:BA:4E:5D:C9:AE:BB:58:6D:3C:B0
Certificate issuer: /CN=F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76
Certificate serial: 4FD113D974A6C9E44DA66EDFA1D16D8C5A286D99
Authority key identifier: F7:37:D8:1B:FB:EF:FD:EE:C9:EC:32:B7:B8:64:11:2D:E0:5E:7B:76
Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393163333a3a2f34382d3438203d3e20323131333538.roa
Signing time: Thu 30 Nov 2023 15:48:21 +0000
ROA not before: Thu 30 Nov 2023 15:43:21 +0000
ROA not after: Thu 28 Nov 2024 15:48:21 +0000
asID: 211358
IP address blocks: 2a05:dfc1:91c3::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:d1:13:d9:74:a6:c9:e4:4d:a6:6e:df:a1:d1:6d:8c:5a:28:6d:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76
Validity
Not Before: Nov 30 15:43:21 2023 GMT
Not After : Nov 28 15:48:21 2024 GMT
Subject: CN=2D9D7B6842D9BA252347BA4E5DC9AEBB586D3CB0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:db:41:8c:d6:9c:03:01:29:2c:36:65:b6:54:
f8:9b:f2:7f:ac:5d:97:4d:4a:45:85:cf:12:5f:07:
72:b0:2f:45:ff:cf:84:6b:34:de:ad:c5:66:db:5f:
d1:77:75:e7:d5:73:33:a7:8d:bc:2e:b2:c4:be:67:
e3:93:40:6c:40:e6:b0:62:48:ca:d5:58:ee:bd:66:
36:a7:15:cf:bd:9f:a4:2b:99:cf:d3:37:41:5e:d0:
d8:77:83:8b:a3:02:19:29:34:cb:bc:45:fc:99:64:
c7:f8:ee:19:d1:4c:c6:5a:d0:78:91:b5:36:8b:6f:
5b:0d:c6:38:f9:07:cf:90:9f:57:fb:f6:fc:df:4a:
ae:7a:60:39:5e:48:7b:68:5c:00:7f:ec:d5:8d:93:
78:fc:76:b4:65:a7:c7:3a:34:3b:51:f0:d4:69:bf:
7f:3a:2c:10:54:30:79:a2:50:61:ae:0b:33:67:2a:
3a:ba:f1:9b:b2:46:12:d5:da:63:ad:51:44:c7:aa:
9d:09:b6:34:48:67:22:61:c5:7c:1a:f5:0e:44:dd:
89:e3:5e:da:1d:11:47:5f:d7:16:88:41:c7:d8:bc:
1d:c2:00:0c:5e:72:69:8a:1c:1a:81:b1:d2:80:ca:
3d:f9:60:0a:73:73:c0:cb:60:8d:32:54:82:bb:5c:
bb:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:9D:7B:68:42:D9:BA:25:23:47:BA:4E:5D:C9:AE:BB:58:6D:3C:B0
X509v3 Authority Key Identifier:
keyid:F7:37:D8:1B:FB:EF:FD:EE:C9:EC:32:B7:B8:64:11:2D:E0:5E:7B:76
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.crl
Authority Information Access:
CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393163333a3a2f34382d3438203d3e20323131333538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:91c3::/48
Signature Algorithm: sha256WithRSAEncryption
ad:3f:fa:b8:9c:5c:83:b2:8d:e0:8e:11:a8:cd:cc:64:11:4f:
33:6b:2b:2b:fc:42:12:ab:ff:02:73:c2:45:12:81:9b:5e:99:
72:49:11:43:04:0f:c3:c7:38:95:3b:aa:13:58:c2:2d:f4:f6:
0a:72:6c:05:0f:4e:45:26:29:5e:a2:a8:b8:3f:c6:40:79:29:
e7:ea:ce:70:8f:a9:06:48:6b:78:48:b9:a5:8b:5e:6b:4d:0a:
80:a1:6c:c1:a8:a6:88:7b:39:e4:6e:17:8d:05:7c:1c:69:16:
2e:34:d0:52:f9:65:70:ee:31:a0:82:da:3f:4f:6d:f9:89:a8:
56:76:92:66:d5:5a:d8:15:db:bd:4d:26:c1:cb:3f:87:56:1a:
c0:b3:3d:be:b4:f5:db:15:70:d9:c8:56:e9:f7:d1:98:bf:8f:
14:8a:8c:62:69:71:03:4a:61:97:5e:27:04:c9:15:a9:6e:cb:
73:65:c7:0f:42:9e:32:bf:2a:3d:40:4e:c3:a3:bb:5b:3b:f7:
9a:7c:00:d6:83:a1:a4:d5:f5:57:8f:04:d9:0b:9e:64:49:0d:
06:36:40:0b:3b:19:5d:e0:27:96:6a:00:2e:8b:68:47:eb:14:
44:6f:6f:ad:61:ef:4b:ac:5f:8d:11:71:d9:29:50:a8:9a:a2:
8b:cc:60:8c
-----BEGIN CERTIFICATE-----
MIIFVjCCBD6gAwIBAgIUT9ET2XSmyeRNpm7fodFtjFoobZkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRjczN0Q4MUJGQkVGRkRFRUM5RUMzMkI3Qjg2NDExMkRF
MDVFN0I3NjAeFw0yMzExMzAxNTQzMjFaFw0yNDExMjgxNTQ4MjFaMDMxMTAvBgNV
BAMTKDJEOUQ3QjY4NDJEOUJBMjUyMzQ3QkE0RTVEQzlBRUJCNTg2RDNDQjAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO20GM1pwDASksNmW2VPib8n+s
XZdNSkWFzxJfB3KwL0X/z4RrNN6txWbbX9F3defVczOnjbwussS+Z+OTQGxA5rBi
SMrVWO69ZjanFc+9n6Qrmc/TN0Fe0Nh3g4ujAhkpNMu8RfyZZMf47hnRTMZa0HiR
tTaLb1sNxjj5B8+Qn1f79vzfSq56YDleSHtoXAB/7NWNk3j8drRlp8c6NDtR8NRp
v386LBBUMHmiUGGuCzNnKjq68ZuyRhLV2mOtUUTHqp0JtjRIZyJhxXwa9Q5E3Ynj
XtodEUdf1xaIQcfYvB3CAAxecmmKHBqBsdKAyj35YApzc8DLYI0yVIK7XLubAgMB
AAGjggJgMIICXDAdBgNVHQ4EFgQULZ17aELZuiUjR7pOXcmuu1htPLAwHwYDVR0j
BBgwFoAU9zfYG/vv/e7J7DK3uGQRLeBee3YwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1
YzdkLzEvRjczN0Q4MUJGQkVGRkRFRUM5RUMzMkI3Qjg2NDExMkRFMDVFN0I3Ni5j
cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt
cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wL0Y3MzdEODFCRkJFRkZE
RUVDOUVDMzJCN0I4NjQxMTJERTA1RTdCNzYuY2VyMIG3BggrBgEFBQcBCwSBqjCB
pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l
dC9yZXBvc2l0b3J5LzMyNTNkOTczLWQ1YmYtNDU0MS1iY2MxLTI3NjU0M2EyNWM3
ZC8xLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzkzMTYzMzMzYTNhMmYzNDM4MmQzNDM4
MjAzZDNlMjAzMjMxMzEzMzM1Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH
DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqBd/BkcMwDQYJKoZIhvcN
AQELBQADggEBAK0/+ricXIOyjeCOEajNzGQRTzNrKyv8QhKr/wJzwkUSgZtemXJJ
EUMED8PHOJU7qhNYwi309gpybAUPTkUmKV6iqLg/xkB5KefqznCPqQZIa3hIuaWL
XmtNCoChbMGopoh7OeRuF40FfBxpFi400FL5ZXDuMaCC2j9PbfmJqFZ2kmbVWtgV
271NJsHLP4dWGsCzPb609dsVcNnIVun30Zi/jxSKjGJpcQNKYZdeJwTJFaluy3Nl
xw9CnjK/Kj1ATsOju1s795p8ANaDoaTV9VePBNkLnmRJDQY2QAs7GV3gJ5ZqAC6L
aEfrFERvb61h70usX40RcdkpUKiaoovMYIw=
-----END CERTIFICATE-----
Generated at Wed Feb 19 20:39:13 2025 by rpki-client