Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/3/323030313a3637633a6438343a3a2f34382d313238203d3e203437323732.roa
File: 323030313a3637633a6438343a3a2f34382d313238203d3e203437323732.roa (raw, json)
Hash identifier: zAIz/6PrKY+PT044DrbJcMj6yEBb5+L5X0JVIU/xOe0=
Subject key identifier: EA:C1:9A:95:CF:8D:F0:A0:21:08:4C:E3:CA:A1:AA:7E:5C:84:3C:E6
Certificate issuer: /CN=1ec805e37c5b53351c6a182763530a50d9308c7e
Certificate serial: 0F550D9F612853D699FE043D3D7D389F903AE673
Authority key identifier: 1E:C8:05:E3:7C:5B:53:35:1C:6A:18:27:63:53:0A:50:D9:30:8C:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HsgF43xbUzUcahgnY1MKUNkwjH4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/3/323030313a3637633a6438343a3a2f34382d313238203d3e203437323732.roa
Signing time: Wed 25 Dec 2024 11:19:57 +0000
ROA not before: Wed 25 Dec 2024 11:14:57 +0000
ROA not after: Wed 24 Dec 2025 11:19:57 +0000
asID: 47272
IP address blocks: 2001:67c:d84::/48 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:55:0d:9f:61:28:53:d6:99:fe:04:3d:3d:7d:38:9f:90:3a:e6:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ec805e37c5b53351c6a182763530a50d9308c7e
Validity
Not Before: Dec 25 11:14:57 2024 GMT
Not After : Dec 24 11:19:57 2025 GMT
Subject: CN=EAC19A95CF8DF0A021084CE3CAA1AA7E5C843CE6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:12:4c:2f:1f:68:ff:8f:93:65:76:4b:5c:60:
fe:d9:6c:44:5b:36:ae:67:89:ab:84:97:9e:bd:ba:
1a:40:e6:60:6d:d8:de:a1:63:8f:c3:49:8a:8c:17:
ad:5d:ea:11:09:80:a9:c6:3d:3a:6c:f3:54:16:28:
30:94:e6:a0:cb:d3:bf:4b:7c:ab:ea:ce:6f:13:7b:
25:be:c3:fd:e9:09:ce:40:49:a7:a3:c9:3f:7f:67:
b6:53:4c:ef:4c:b9:e2:ff:d2:39:89:37:75:f0:1a:
4e:41:a1:ba:32:bf:ae:d5:7e:da:90:43:6a:de:c3:
a4:18:32:e0:b6:ba:a5:fe:a8:38:ec:d4:40:51:25:
19:16:14:9a:bc:dd:5b:57:fb:0d:ac:52:20:bc:48:
e4:e0:ab:c9:9c:2f:4d:8f:47:2c:dd:4f:23:b6:bf:
45:21:44:68:ba:db:a9:cd:1e:78:55:ed:24:c4:77:
d0:4f:e1:89:8a:3f:02:54:04:63:15:2d:fc:2d:5a:
8b:7c:e1:0f:04:49:3d:a8:4d:dc:27:0e:1b:ce:b6:
2e:e5:52:35:e4:9f:a1:b2:d6:a4:6d:fa:5d:90:cd:
ed:fa:7d:d0:04:d2:a7:27:f1:1d:51:26:82:d2:aa:
87:4f:4d:38:09:88:30:29:d4:cb:43:09:32:54:e9:
a7:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:C1:9A:95:CF:8D:F0:A0:21:08:4C:E3:CA:A1:AA:7E:5C:84:3C:E6
X509v3 Authority Key Identifier:
keyid:1E:C8:05:E3:7C:5B:53:35:1C:6A:18:27:63:53:0A:50:D9:30:8C:7E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/3/1EC805E37C5B53351C6A182763530A50D9308C7E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HsgF43xbUzUcahgnY1MKUNkwjH4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/3/323030313a3637633a6438343a3a2f34382d313238203d3e203437323732.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:d84::/48
Signature Algorithm: sha256WithRSAEncryption
12:b6:b1:48:33:e4:47:d2:9b:85:04:51:b7:85:1a:ba:78:11:
f1:92:28:88:71:82:f7:70:f7:ac:fd:8b:b2:06:70:9b:5b:75:
89:ad:ad:5e:4f:41:4e:e6:ba:7f:b5:53:ba:32:fd:1d:12:e2:
8e:f3:4f:2e:12:43:dc:41:05:2a:01:ec:2c:62:b7:69:68:c0:
bd:ec:fa:7a:8c:ba:09:ac:20:6b:3b:e3:ec:94:ef:b8:91:a0:
a1:ba:d3:8b:d8:5a:cf:3a:a8:88:07:3d:62:a8:ec:cb:05:49:
33:73:8d:14:cc:65:c6:54:a1:5d:ca:9b:0d:b3:13:bf:70:5d:
2f:30:fb:51:22:d0:31:9c:a3:4b:dd:ab:42:25:91:85:b3:64:
03:5d:90:75:cc:41:66:14:87:a4:b4:b4:a1:a4:19:9d:2c:21:
d6:a3:1c:f8:8e:4a:d9:7b:c2:49:e9:e9:ef:0c:7f:86:91:c1:
ea:02:53:60:92:51:a6:da:07:cd:2a:6e:c3:ce:87:4e:92:b6:
c4:2d:a3:79:07:28:42:18:04:5d:95:ec:1f:f0:b4:71:d6:6d:
b6:6a:3c:9d:1f:ac:aa:07:90:00:5f:4e:fe:3c:89:9b:bd:f2:
b3:e4:24:c3:30:5c:38:8e:3a:d2:22:d6:ad:ac:68:18:d0:9e:
b7:f8:5e:5c
-----BEGIN CERTIFICATE-----
MIIFPDCCBCSgAwIBAgIUD1UNn2EoU9aZ/gQ9PX04n5A65nMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMWVjODA1ZTM3YzViNTMzNTFjNmExODI3NjM1MzBhNTBk
OTMwOGM3ZTAeFw0yNDEyMjUxMTE0NTdaFw0yNTEyMjQxMTE5NTdaMDMxMTAvBgNV
BAMTKEVBQzE5QTk1Q0Y4REYwQTAyMTA4NENFM0NBQTFBQTdFNUM4NDNDRTYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4EkwvH2j/j5NldktcYP7ZbERb
Nq5niauEl569uhpA5mBt2N6hY4/DSYqMF61d6hEJgKnGPTps81QWKDCU5qDL079L
fKvqzm8TeyW+w/3pCc5ASaejyT9/Z7ZTTO9MueL/0jmJN3XwGk5Boboyv67VftqQ
Q2rew6QYMuC2uqX+qDjs1EBRJRkWFJq83VtX+w2sUiC8SOTgq8mcL02PRyzdTyO2
v0UhRGi626nNHnhV7STEd9BP4YmKPwJUBGMVLfwtWot84Q8EST2oTdwnDhvOti7l
UjXkn6Gy1qRt+l2Qze36fdAE0qcn8R1RJoLSqodPTTgJiDAp1MtDCTJU6ac3AgMB
AAGjggJGMIICQjAdBgNVHQ4EFgQU6sGalc+N8KAhCEzjyqGqflyEPOYwHwYDVR0j
BBgwFoAUHsgF43xbUzUcahgnY1MKUNkwjH4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1
YzdkLzMvMUVDODA1RTM3QzVCNTMzNTFDNkExODI3NjM1MzBBNTBEOTMwOEM3RS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0hzZ0Y0M3hiVXpVY2FoZ25ZMU1LVU5r
d2pINC5jZXIwgbMGCCsGAQUFBwELBIGmMIGjMIGgBggrBgEFBQcwC4aBk3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMt
ZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1YzdkLzMvMzIzMDMwMzEzYTM2Mzc2MzNh
NjQzODM0M2EzYTJmMzQzODJkMzEzMjM4MjAzZDNlMjAzNDM3MzIzNzMyLnJvYTAY
BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA
AjAJAwcAIAEGfA2EMA0GCSqGSIb3DQEBCwUAA4IBAQAStrFIM+RH0puFBFG3hRq6
eBHxkiiIcYL3cPes/YuyBnCbW3WJra1eT0FO5rp/tVO6Mv0dEuKO808uEkPcQQUq
AewsYrdpaMC97Pp6jLoJrCBrO+PslO+4kaChutOL2FrPOqiIBz1iqOzLBUkzc40U
zGXGVKFdypsNsxO/cF0vMPtRItAxnKNL3atCJZGFs2QDXZB1zEFmFIektLShpBmd
LCHWoxz4jkrZe8JJ6envDH+GkcHqAlNgklGm2gfNKm7DzodOkrbELaN5ByhCGARd
lewf8LRx1m22ajydH6yqB5AAX07+PImbvfKz5CTDMFw4jjrSItatrGgY0J63+F5c
-----END CERTIFICATE-----
Generated at Sat Apr 5 03:45:41 2025 by rpki-client