Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/4/323630323a663936643a6230303a3a2f34302d3430203d3e2030.roa
File: 323630323a663936643a6230303a3a2f34302d3430203d3e2030.roa (raw, json)
Hash identifier: zCwcny/Oj9NoaENmznbpY4PpxIU8L6hE++Ms1jnIU5U=
Subject key identifier: 7B:01:D5:B5:18:9D:F7:9D:6B:D2:CF:16:E3:A3:18:02:5F:1F:1F:43
Certificate issuer: /CN=f44c82daba68b40f65cfc17445f89b2192a57379d7f13be8fa
Certificate serial: 580778C02764DEC493337F51F1B925A1415DDC00
Authority key identifier: 6D:7A:26:67:30:92:8D:9D:FD:FD:AC:E3:6F:73:AC:89:E4:24:E2:28
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/02c7706b-3baf-42cb-bdf7-782b036252b3/f44c82daba68b40f65cfc17445f89b2192a57379d7f13be8fa.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/4/323630323a663936643a6230303a3a2f34302d3430203d3e2030.roa
Signing time: Mon 02 Dec 2024 22:45:17 +0000
ROA not before: Mon 02 Dec 2024 22:40:17 +0000
ROA not after: Mon 01 Dec 2025 22:45:17 +0000
asID: 0
IP address blocks: 2602:f96d:b00::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:07:78:c0:27:64:de:c4:93:33:7f:51:f1:b9:25:a1:41:5d:dc:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f44c82daba68b40f65cfc17445f89b2192a57379d7f13be8fa
Validity
Not Before: Dec 2 22:40:17 2024 GMT
Not After : Dec 1 22:45:17 2025 GMT
Subject: CN=7B01D5B5189DF79D6BD2CF16E3A318025F1F1F43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:00:77:3d:4a:83:e5:9f:58:f5:14:0d:1c:12:
b8:2d:24:7a:7a:4a:63:5f:68:97:c4:9d:69:c4:02:
df:b3:01:f8:c2:dd:1e:62:b8:46:89:a6:68:f6:e7:
bf:c7:e3:0a:e2:2f:d3:0a:e8:45:c3:bf:1d:03:d8:
bd:cd:c0:49:10:52:37:a3:77:f6:89:94:cf:d7:29:
0f:c4:60:4e:85:b0:2a:dc:45:a3:cc:1c:db:b7:f1:
c5:3c:7a:ae:12:7f:aa:26:46:79:84:ce:e5:d9:1f:
88:12:8c:ca:29:35:96:ee:1a:5d:de:93:2b:fb:ec:
73:9f:0c:a7:95:ea:c0:c8:79:a0:1a:e8:35:6f:c0:
1a:37:e2:d6:f0:a5:28:21:a4:f0:7e:d1:a1:cd:85:
aa:3a:b2:9f:ea:ca:cd:c0:bf:79:0b:46:95:26:60:
3c:53:26:13:5d:d5:f7:30:a8:cb:ed:bc:38:d4:9f:
8a:7f:f3:2b:06:13:17:7e:3a:64:05:11:c4:9b:e7:
4c:ce:b7:df:88:5a:3b:be:9c:25:98:0a:25:85:7c:
c0:75:5f:9f:84:7b:b1:23:aa:f7:cd:3d:89:8e:4a:
24:13:65:5a:07:3b:a6:5b:6c:91:8a:78:c1:ba:d8:
9f:5c:8b:9b:29:28:0a:cc:0a:6f:b8:6e:1c:3d:40:
f3:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:01:D5:B5:18:9D:F7:9D:6B:D2:CF:16:E3:A3:18:02:5F:1F:1F:43
X509v3 Authority Key Identifier:
keyid:6D:7A:26:67:30:92:8D:9D:FD:FD:AC:E3:6F:73:AC:89:E4:24:E2:28
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/4/6D7A266730928D9DFDFDACE36F73AC89E424E228.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/02c7706b-3baf-42cb-bdf7-782b036252b3/f44c82daba68b40f65cfc17445f89b2192a57379d7f13be8fa.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/4/323630323a663936643a6230303a3a2f34302d3430203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2602:f96d:b00::/40
Signature Algorithm: sha256WithRSAEncryption
19:d4:ca:c1:b5:e0:f7:2e:69:78:0e:b5:2d:5e:7d:8e:51:c2:
06:20:df:f9:54:64:ee:14:8d:ba:7d:1f:1a:71:f1:a2:3a:ac:
88:b1:56:18:6c:4b:55:f5:75:1a:bc:1c:22:99:e2:e9:fe:85:
1e:fd:de:c1:28:90:34:e5:73:2b:ed:20:46:46:9a:51:76:d8:
c6:da:8e:df:8c:92:78:2d:ea:f5:14:ea:d4:7b:24:60:61:b3:
af:6b:53:94:e5:65:ac:89:4e:a4:94:4d:23:c8:7e:9d:1d:66:
1b:2f:ba:8a:aa:5e:ef:b4:8c:79:40:30:c6:70:8f:5e:f5:98:
f0:42:20:a1:ea:02:c6:19:c4:99:85:aa:05:99:3c:d3:8b:0b:
0e:80:f1:80:bb:b8:1d:ee:48:40:ba:3b:94:f8:4c:b1:4a:4a:
a3:23:ba:25:d2:85:86:e6:3f:fc:d1:70:fe:14:d1:ab:8a:d4:
7f:20:22:89:97:45:0b:e9:ce:ba:38:cb:b8:6c:ab:f3:d4:1e:
10:48:40:9c:e7:b5:b4:26:f5:c6:92:68:71:ea:31:b8:7b:d9:
59:8d:74:6f:86:12:80:aa:d8:01:b2:aa:97:94:3f:0e:e0:26:
0b:ba:9b:5f:1c:9f:a8:dd:3e:c6:ab:cc:bd:90:9f:bc:77:ab:
42:84:6a:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:27:11 2025 by rpki-client