Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393166633a3a2f34382d3438203d3e20323134393939.roa
File: 326130353a646663313a393166633a3a2f34382d3438203d3e20323134393939.roa (raw, json)
Hash identifier: rTTmSl8W4AxlVmbZdSdXMd8a3rmudcqumJTtvmGPU9c=
Subject key identifier: AC:2F:E8:65:17:D7:62:66:1F:D9:F2:B7:72:04:C5:53:62:13:9F:0A
Certificate issuer: /CN=F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76
Certificate serial: 029AC1638661549E66F20FDEE0C79893C4279133
Authority key identifier: F7:37:D8:1B:FB:EF:FD:EE:C9:EC:32:B7:B8:64:11:2D:E0:5E:7B:76
Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393166633a3a2f34382d3438203d3e20323134393939.roa
Signing time: Sun 05 May 2024 14:02:15 +0000
ROA not before: Sun 05 May 2024 13:57:15 +0000
ROA not after: Sun 04 May 2025 14:02:15 +0000
asID: 214999
IP address blocks: 2a05:dfc1:91fc::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:9a:c1:63:86:61:54:9e:66:f2:0f:de:e0:c7:98:93:c4:27:91:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76
Validity
Not Before: May 5 13:57:15 2024 GMT
Not After : May 4 14:02:15 2025 GMT
Subject: CN=AC2FE86517D762661FD9F2B77204C55362139F0A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:03:00:14:8f:af:8b:59:dc:e5:cd:07:27:04:
d7:c3:20:8f:2e:e8:44:00:f3:e6:22:cd:24:35:76:
f3:18:4b:b1:4d:ff:b3:03:2c:44:7f:55:88:e6:2a:
c9:3f:01:cc:a2:65:82:b2:74:e1:bc:fe:65:6e:df:
cd:60:ed:a0:5a:d0:84:ba:50:f9:d3:cf:6f:f2:81:
37:76:20:7e:13:3f:09:3a:86:b4:33:38:c1:22:bb:
8d:8a:37:db:6a:aa:17:3b:a4:d6:4b:de:ba:8a:21:
f0:a3:9e:a6:e9:c1:62:90:15:a6:4f:de:ad:ef:91:
a3:ad:64:df:57:46:fa:66:a1:5e:3a:c7:00:5e:4b:
64:e7:b3:ad:ad:98:da:63:86:6e:f7:13:ee:5c:bc:
87:b9:9a:3f:c2:59:e6:13:eb:38:91:66:47:99:ca:
e1:dd:9a:0d:1e:0a:21:52:e8:08:ac:eb:d9:71:5c:
cc:b2:98:10:74:7e:8b:6f:c1:63:36:ec:75:da:ee:
55:88:04:5d:52:83:ec:eb:5e:d7:aa:86:76:d9:07:
0b:8b:a9:81:ab:04:77:71:47:27:70:0e:f8:c2:fe:
62:07:9f:78:7f:84:68:da:ad:73:8a:41:b5:a2:01:
cd:0e:32:30:eb:6e:17:7a:48:f6:ea:54:30:7f:51:
19:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:2F:E8:65:17:D7:62:66:1F:D9:F2:B7:72:04:C5:53:62:13:9F:0A
X509v3 Authority Key Identifier:
keyid:F7:37:D8:1B:FB:EF:FD:EE:C9:EC:32:B7:B8:64:11:2D:E0:5E:7B:76
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.crl
Authority Information Access:
CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393166633a3a2f34382d3438203d3e20323134393939.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:91fc::/48
Signature Algorithm: sha256WithRSAEncryption
31:21:b2:cb:b4:7a:0d:be:84:e2:d6:dd:2a:6c:9e:be:ff:cb:
19:fb:81:e0:6d:37:42:93:3a:dc:0d:2c:26:1b:cd:32:d2:e2:
4f:be:fd:4d:45:3e:0c:01:5a:50:ef:08:0a:43:c7:82:44:eb:
ca:39:9f:9b:4a:ad:58:4e:b3:7d:fc:5e:a2:c4:15:eb:6c:75:
7b:fa:78:ed:e6:dd:95:02:f6:ae:95:e6:aa:67:f7:9f:56:1e:
4e:1c:54:05:ce:47:59:30:82:c4:26:18:26:c1:57:0e:b7:e9:
01:88:a9:12:c2:5b:4d:4c:b2:fd:29:2c:da:ca:06:99:90:59:
96:3c:9b:3b:f9:20:7b:d8:4f:6e:a8:2e:c1:15:6e:b9:67:7d:
f8:f9:8f:9b:7d:29:3c:b2:88:33:a2:70:32:b5:71:0e:1c:4e:
92:44:d9:5b:a8:6c:7a:18:8f:a3:3a:6d:07:9b:8c:ab:0d:8e:
a8:2f:21:b5:8b:28:68:a1:1f:71:56:09:d5:15:b3:75:35:14:
69:4d:4a:5b:74:60:34:cc:ff:ef:fb:22:ea:31:e7:2a:48:51:
8b:16:ed:61:15:a8:a1:29:02:c0:85:c6:fd:79:8c:6b:19:97:
bb:4f:e6:ce:e8:78:26:a8:59:a9:66:a7:b6:d2:88:f2:2b:b4:
b5:d2:56:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:40:42 2025 by rpki-client