Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/2/326130353a646663313a633432303a3a2f34382d3438203d3e203437343936.roa
File: 326130353a646663313a633432303a3a2f34382d3438203d3e203437343936.roa (raw, json)
Hash identifier: lWYjZQ5Ld8qxedFHjd1SYJ3EjXIlTQ1TnJV4koI7Bc0=
Subject key identifier: D8:68:9A:21:9B:5B:00:96:0D:55:47:94:E5:F6:44:48:D1:BE:5B:D1
Certificate issuer: /CN=8A89E0DB89531F723E42C7509282CC5496FEA4F0
Certificate serial: 0DAB043B217B2D568CE17115851403F035BC8010
Authority key identifier: 8A:89:E0:DB:89:53:1F:72:3E:42:C7:50:92:82:CC:54:96:FE:A4:F0
Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/8A89E0DB89531F723E42C7509282CC5496FEA4F0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/2/326130353a646663313a633432303a3a2f34382d3438203d3e203437343936.roa
Signing time: Wed 18 Dec 2024 10:58:12 +0000
ROA not before: Wed 18 Dec 2024 10:53:12 +0000
ROA not after: Wed 17 Dec 2025 10:58:12 +0000
asID: 47496
IP address blocks: 2a05:dfc1:c420::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:ab:04:3b:21:7b:2d:56:8c:e1:71:15:85:14:03:f0:35:bc:80:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8A89E0DB89531F723E42C7509282CC5496FEA4F0
Validity
Not Before: Dec 18 10:53:12 2024 GMT
Not After : Dec 17 10:58:12 2025 GMT
Subject: CN=D8689A219B5B00960D554794E5F64448D1BE5BD1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:5b:55:e9:d9:2e:a7:ab:a8:2f:8c:96:cd:cb:
e2:2f:cf:f5:0c:5d:df:2d:b0:9b:68:0a:51:f5:3f:
9d:8f:ac:a2:aa:63:3e:b1:29:cd:19:82:6d:35:43:
62:ac:ad:67:af:81:2a:79:b0:82:04:42:72:5b:e3:
99:b7:77:c8:22:13:5e:e8:52:7b:bb:3f:1c:ac:6e:
0d:4e:b8:75:5d:e8:4c:80:7c:c7:c8:96:95:49:88:
50:14:3b:31:be:35:74:a2:07:77:58:4b:35:7e:49:
fc:d2:89:3e:93:77:cc:8d:cd:9b:7c:b5:3a:64:07:
48:72:d4:2c:7d:d6:c7:fb:c5:ad:83:f5:43:f3:ff:
25:18:50:37:e9:83:38:d6:91:1f:f0:13:41:d5:1a:
25:8a:34:bf:26:ff:62:72:c7:97:b2:e9:3e:77:fb:
e3:4f:8e:93:75:1b:55:a8:48:46:1b:cd:fa:65:03:
20:00:a5:0e:82:df:cc:16:33:c0:cd:21:63:96:be:
d6:f8:ad:7f:52:56:a7:d3:a1:fa:e6:95:f5:da:b9:
48:6d:3d:98:35:51:2c:ba:5a:f4:df:c6:54:ba:fc:
ef:b2:6f:f4:7e:0d:47:b0:6c:c7:14:fb:eb:07:24:
6c:93:26:fd:c1:d5:57:0c:83:b0:c7:39:d3:f4:6f:
42:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:68:9A:21:9B:5B:00:96:0D:55:47:94:E5:F6:44:48:D1:BE:5B:D1
X509v3 Authority Key Identifier:
keyid:8A:89:E0:DB:89:53:1F:72:3E:42:C7:50:92:82:CC:54:96:FE:A4:F0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/2/8A89E0DB89531F723E42C7509282CC5496FEA4F0.crl
Authority Information Access:
CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/8A89E0DB89531F723E42C7509282CC5496FEA4F0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/2/326130353a646663313a633432303a3a2f34382d3438203d3e203437343936.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:c420::/48
Signature Algorithm: sha256WithRSAEncryption
1b:5f:e7:ab:62:80:40:bd:fa:e4:6f:64:0f:ad:3c:c5:70:f7:
82:20:c8:e9:e9:8b:2b:35:8f:5b:26:6d:11:db:e3:06:8e:65:
2e:13:80:27:3d:78:59:b9:f3:99:f0:4d:68:c0:c9:f3:b8:2f:
70:98:7d:26:3d:ff:25:db:86:9f:a3:e7:f7:c4:86:a1:c3:1c:
3f:c7:34:ed:ee:0c:61:33:90:b5:98:56:74:aa:aa:4c:6b:32:
eb:32:26:f9:14:5e:59:5b:71:93:4e:c6:af:76:fe:7b:fd:24:
02:e1:d4:32:d3:2a:01:22:e1:3e:2a:f3:26:ea:73:9c:9a:04:
49:ce:5c:51:b2:db:6a:23:67:81:c5:04:12:82:f7:6e:de:d6:
cb:1c:fd:e7:66:7d:8e:8d:e0:5f:58:f1:50:b8:cd:0a:52:73:
8a:e8:6f:cd:93:f3:34:aa:2b:8d:84:31:00:6c:19:64:7d:fd:
08:27:d6:0c:bf:10:a0:d0:0a:81:c1:ed:13:ba:72:2d:69:5f:
86:de:f2:a2:ee:06:d2:77:d7:e9:aa:2d:87:38:4e:a6:15:af:
82:30:3b:81:61:89:3a:00:f9:8b:af:49:ca:9e:6f:87:17:a7:
e9:d7:da:99:b8:27:b5:69:e4:c6:fd:38:41:ee:0b:fa:f6:e3:
0e:a5:af:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 04:37:48 2025 by rpki-client