Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/4344ff29-7184-47bd-9172-3609f59ce6df/2/326130373a353463303a3a2f33322d3438203d3e20323030323432.roa
File: 326130373a353463303a3a2f33322d3438203d3e20323030323432.roa (raw, json)
Hash identifier: elyV+gotNYS912dJ/n2ncW1oCmy2nzh8pEd4xFpws8g=
Subject key identifier: 8C:D5:41:1E:A6:90:A8:35:3C:DF:BC:98:A0:A6:35:BF:71:59:FE:1A
Certificate issuer: /CN=A6EAAC4901429B15740ABF1D9A54BFB181C6F538
Certificate serial: 7AE2C4F6B77F0F094A29876B69E13CFF5ECC4D84
Authority key identifier: A6:EA:AC:49:01:42:9B:15:74:0A:BF:1D:9A:54:BF:B1:81:C6:F5:38
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/A6EAAC4901429B15740ABF1D9A54BFB181C6F538.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/4344ff29-7184-47bd-9172-3609f59ce6df/2/326130373a353463303a3a2f33322d3438203d3e20323030323432.roa
Signing time: Sat 20 Jan 2024 21:50:11 +0000
ROA not before: Sat 20 Jan 2024 21:45:11 +0000
ROA not after: Sat 18 Jan 2025 21:50:11 +0000
asID: 200242
IP address blocks: 2a07:54c0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:e2:c4:f6:b7:7f:0f:09:4a:29:87:6b:69:e1:3c:ff:5e:cc:4d:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A6EAAC4901429B15740ABF1D9A54BFB181C6F538
Validity
Not Before: Jan 20 21:45:11 2024 GMT
Not After : Jan 18 21:50:11 2025 GMT
Subject: CN=8CD5411EA690A8353CDFBC98A0A635BF7159FE1A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:5f:14:4d:95:4c:50:43:1f:e8:cf:8a:13:3b:
21:4b:d5:97:6a:0b:c0:c7:f6:05:5a:6e:50:e3:a0:
7f:97:ae:b4:d0:6f:c7:77:eb:bd:3b:94:55:89:ff:
70:3c:fc:75:d8:bc:89:39:e0:c6:b1:8e:76:05:a6:
33:56:b0:cc:8d:7a:00:6a:b4:f9:3c:dc:86:23:06:
df:9b:c9:49:e3:67:bf:19:d3:9a:0b:15:ae:d6:95:
4c:ed:d1:05:a5:4c:5c:52:b8:95:d9:be:5b:87:0e:
8a:e9:6d:45:44:75:39:bb:d5:4f:b5:a5:7e:63:04:
d0:70:4d:10:9d:82:59:f9:51:ff:77:90:8f:2d:6e:
98:aa:5c:c5:77:66:3e:c1:1a:ae:80:03:3e:ee:f8:
6d:ec:80:38:a2:d0:a5:7b:30:53:c3:41:49:a3:23:
41:b6:c8:91:63:23:08:75:2d:a5:6c:08:7e:6f:7c:
f6:d7:6f:4f:dd:83:3c:2c:44:0e:5e:9c:e2:9f:0d:
50:82:2a:3e:cd:26:84:12:77:c5:a4:b7:f5:65:64:
f8:74:db:9e:28:4b:e8:79:ec:d5:9c:d7:ee:fc:a0:
7a:61:33:d2:62:51:cb:4f:69:6c:88:2c:b2:cc:58:
78:df:b3:d1:81:4d:e7:7e:4c:b1:7d:c8:ee:04:44:
45:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:D5:41:1E:A6:90:A8:35:3C:DF:BC:98:A0:A6:35:BF:71:59:FE:1A
X509v3 Authority Key Identifier:
keyid:A6:EA:AC:49:01:42:9B:15:74:0A:BF:1D:9A:54:BF:B1:81:C6:F5:38
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/4344ff29-7184-47bd-9172-3609f59ce6df/2/A6EAAC4901429B15740ABF1D9A54BFB181C6F538.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/A6EAAC4901429B15740ABF1D9A54BFB181C6F538.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/4344ff29-7184-47bd-9172-3609f59ce6df/2/326130373a353463303a3a2f33322d3438203d3e20323030323432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:54c0::/32
Signature Algorithm: sha256WithRSAEncryption
24:52:87:b4:e3:d0:49:8c:52:c0:bb:b1:8f:a7:95:2b:33:f6:
bf:30:df:12:04:5a:4a:99:42:e1:04:ff:90:97:f2:a7:16:43:
25:db:27:24:e2:48:40:8e:7e:5b:c9:d8:24:4b:3e:f4:fe:c0:
34:38:ac:50:be:c1:06:e8:23:7a:cb:c3:6f:7d:2d:67:1e:dd:
c7:20:02:e7:7c:ca:72:74:df:21:c6:41:b5:39:f3:a2:34:e4:
9b:e4:0c:e6:66:0e:73:00:b0:37:33:a8:1a:89:87:af:80:ee:
df:73:14:ac:94:b5:f1:0a:0f:3a:a1:45:6a:94:82:00:77:c3:
e6:78:4b:7d:fa:66:34:ba:e4:6a:f7:ca:33:73:f4:aa:f0:0d:
a4:14:d1:e0:0e:88:83:a3:c5:18:f8:92:a6:7e:11:c7:d1:04:
b1:9f:0f:e3:24:0e:5d:6d:c0:0a:b0:fd:19:1c:c0:bb:24:31:
ae:ed:98:c0:ef:10:75:b8:28:e8:5d:30:06:06:69:56:32:8a:
aa:70:5a:4e:36:ce:ef:6b:d7:41:06:91:ef:c3:b8:f0:9a:31:
d3:81:4f:cc:18:bc:72:fe:0f:9c:a5:01:c3:3e:b5:5e:a8:d4:
56:8f:f1:ad:a4:e1:2c:53:c7:1e:cc:80:7e:1a:11:03:b7:3d:
95:9c:c9:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 29 14:32:47 2024 by rpki-client on console-ams.rpki-client.org