Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/4344ff29-7184-47bd-9172-3609f59ce6df/2/326130373a353463303a623030623a3a2f34382d3438203d3e20323135343733.roa
File: 326130373a353463303a623030623a3a2f34382d3438203d3e20323135343733.roa (raw, json)
Hash identifier: 5AF7Ya2mXlQ3FkeA0+Jli5+6yLkC1cJzKSA17MbTR8c=
Subject key identifier: 82:2F:5E:D3:60:D7:AD:13:E5:39:A5:45:F0:6C:B0:16:E2:F5:86:D0
Certificate issuer: /CN=A6EAAC4901429B15740ABF1D9A54BFB181C6F538
Certificate serial: 1A888E332EE292F8E1B29C8BF62CCD9C2E9FFFB6
Authority key identifier: A6:EA:AC:49:01:42:9B:15:74:0A:BF:1D:9A:54:BF:B1:81:C6:F5:38
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/A6EAAC4901429B15740ABF1D9A54BFB181C6F538.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/4344ff29-7184-47bd-9172-3609f59ce6df/2/326130373a353463303a623030623a3a2f34382d3438203d3e20323135343733.roa
Signing time: Mon 19 Feb 2024 13:25:51 +0000
ROA not before: Mon 19 Feb 2024 13:20:51 +0000
ROA not after: Mon 17 Feb 2025 13:25:51 +0000
asID: 215473
IP address blocks: 2a07:54c0:b00b::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:88:8e:33:2e:e2:92:f8:e1:b2:9c:8b:f6:2c:cd:9c:2e:9f:ff:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A6EAAC4901429B15740ABF1D9A54BFB181C6F538
Validity
Not Before: Feb 19 13:20:51 2024 GMT
Not After : Feb 17 13:25:51 2025 GMT
Subject: CN=822F5ED360D7AD13E539A545F06CB016E2F586D0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:e4:23:68:70:2f:71:3d:87:09:2c:a0:92:8c:
aa:fa:23:77:b6:8d:4e:d5:0e:39:ec:22:48:53:c5:
7a:2f:60:89:5c:c6:73:4d:91:c4:11:45:8d:74:59:
f0:50:86:7d:1f:4e:a7:ec:b5:7c:7a:f9:62:1b:47:
45:0e:68:9f:94:48:4a:7f:93:76:93:7f:3e:bd:cd:
4c:16:b5:12:7c:e8:06:1c:80:ff:96:6d:e3:b4:56:
43:e6:29:d4:de:3c:69:54:cb:e4:81:0d:23:0c:bf:
2f:cd:0c:fc:30:9c:36:d5:ff:41:d1:fd:74:9d:8b:
e8:f4:58:53:e5:34:9d:d0:19:68:85:8a:22:c4:4d:
ad:cf:38:45:3c:19:85:95:32:25:b1:71:88:bf:e1:
87:e1:5a:a0:f3:48:5a:e0:48:73:05:da:39:b6:71:
fe:94:3f:5b:59:84:63:1c:fc:ae:c6:8e:6d:f7:94:
44:b4:94:bd:4c:c2:07:81:c5:51:ee:3a:6d:e9:22:
ee:45:0d:ec:bd:2e:05:43:03:f9:83:ef:ca:2c:20:
a5:a2:9d:7b:af:a6:d7:97:f8:8d:fd:08:c4:3b:65:
5f:e8:51:cc:8c:30:1d:e7:9d:60:07:46:2e:35:6a:
e5:07:a6:7e:4b:e8:b7:69:4f:93:be:af:12:32:49:
38:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:2F:5E:D3:60:D7:AD:13:E5:39:A5:45:F0:6C:B0:16:E2:F5:86:D0
X509v3 Authority Key Identifier:
keyid:A6:EA:AC:49:01:42:9B:15:74:0A:BF:1D:9A:54:BF:B1:81:C6:F5:38
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/4344ff29-7184-47bd-9172-3609f59ce6df/2/A6EAAC4901429B15740ABF1D9A54BFB181C6F538.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/A6EAAC4901429B15740ABF1D9A54BFB181C6F538.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/4344ff29-7184-47bd-9172-3609f59ce6df/2/326130373a353463303a623030623a3a2f34382d3438203d3e20323135343733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:54c0:b00b::/48
Signature Algorithm: sha256WithRSAEncryption
2a:8c:5e:24:84:84:de:6a:90:fe:03:63:44:61:1c:1d:71:66:
4a:2f:5e:93:19:01:1e:79:dd:df:00:3c:14:66:51:c8:17:7b:
1c:81:fe:95:4b:f5:6a:dd:da:85:fd:eb:0d:0e:f9:8c:e4:01:
27:b8:b8:94:11:dc:4c:fa:9e:de:47:b3:67:13:7b:1e:c8:fc:
8c:c9:c5:8f:18:c1:b1:4e:42:a4:b8:da:48:48:85:a7:bc:69:
33:c1:44:b2:1f:b5:b2:af:b5:5a:ea:43:e3:00:05:36:c8:84:
99:1c:ae:d6:4e:d6:60:a1:52:be:98:b6:f4:0e:0b:8e:79:57:
b7:8b:a9:6c:0a:05:22:7f:b9:b1:5d:bb:1e:7b:d6:dc:99:f7:
16:fd:ae:f5:73:ac:57:9e:ef:36:47:81:5c:96:61:fc:4f:6f:
66:1e:50:20:c3:8b:28:4e:fb:60:18:38:03:e7:ad:1e:d9:8f:
20:eb:4a:f3:89:b8:3b:d5:fb:5a:ab:8b:f9:91:88:aa:a8:50:
b3:92:7b:08:ee:bd:82:97:97:d4:22:a3:c5:87:d9:9b:a0:07:
20:71:56:57:5d:68:8b:9d:d1:6a:2d:42:7e:33:74:11:a8:df:
0d:0f:f5:8f:a7:49:11:98:d4:03:82:6e:17:77:fe:51:86:4e:
46:ed:66:04
-----BEGIN CERTIFICATE-----
MIIFezCCBGOgAwIBAgIUGoiOMy7ikvjhspyL9izNnC6f/7YwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQTZFQUFDNDkwMTQyOUIxNTc0MEFCRjFEOUE1NEJGQjE4
MUM2RjUzODAeFw0yNDAyMTkxMzIwNTFaFw0yNTAyMTcxMzI1NTFaMDMxMTAvBgNV
BAMTKDgyMkY1RUQzNjBEN0FEMTNFNTM5QTU0NUYwNkNCMDE2RTJGNTg2RDAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD35CNocC9xPYcJLKCSjKr6I3e2
jU7VDjnsIkhTxXovYIlcxnNNkcQRRY10WfBQhn0fTqfstXx6+WIbR0UOaJ+USEp/
k3aTfz69zUwWtRJ86AYcgP+WbeO0VkPmKdTePGlUy+SBDSMMvy/NDPwwnDbV/0HR
/XSdi+j0WFPlNJ3QGWiFiiLETa3POEU8GYWVMiWxcYi/4YfhWqDzSFrgSHMF2jm2
cf6UP1tZhGMc/K7Gjm33lES0lL1MwgeBxVHuOm3pIu5FDey9LgVDA/mD78osIKWi
nXuvpteX+I39CMQ7ZV/oUcyMMB3nnWAHRi41auUHpn5L6LdpT5O+rxIySTj5AgMB
AAGjggKFMIICgTAdBgNVHQ4EFgQUgi9e02DXrRPlOaVF8GywFuL1htAwHwYDVR0j
BBgwFoAUpuqsSQFCmxV0Cr8dmlS/sYHG9TgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNDM0NGZmMjktNzE4NC00N2JkLTkxNzItMzYwOWY1OWNl
NmRmLzIvQTZFQUFDNDkwMTQyOUIxNTc0MEFCRjFEOUE1NEJGQjE4MUM2RjUzOC5j
cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu
Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9hYTAwNGJhMS00MTliLTRk
YjUtYmJkMy01Y2NhNjMzY2FlM2YvMC9BNkVBQUM0OTAxNDI5QjE1NzQwQUJGMUQ5
QTU0QkZCMTgxQzZGNTM4LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF
BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS80MzQ0ZmYyOS03MTg0LTQ3YmQtOTE3Mi0zNjA5ZjU5Y2U2ZGYvMi8zMjYxMzAz
NzNhMzUzNDYzMzAzYTYyMzAzMDYyM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz
MTM1MzQzNzMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF
BwEHAQH/BBMwETAPBAIAAjAJAwcAKgdUwLALMA0GCSqGSIb3DQEBCwUAA4IBAQAq
jF4khITeapD+A2NEYRwdcWZKL16TGQEeed3fADwUZlHIF3scgf6VS/Vq3dqF/esN
DvmM5AEnuLiUEdxM+p7eR7NnE3seyPyMycWPGMGxTkKkuNpISIWnvGkzwUSyH7Wy
r7Va6kPjAAU2yISZHK7WTtZgoVK+mLb0DguOeVe3i6lsCgUif7mxXbsee9bcmfcW
/a71c6xXnu82R4FclmH8T29mHlAgw4soTvtgGDgD560e2Y8g60rzibg71ftaq4v5
kYiqqFCzknsI7r2Cl5fUIqPFh9mboAcgcVZXXWiLndFqLUJ+M3QRqN8ND/WPp0kR
mNQDgm4Xd/5Rhk5G7WYE
-----END CERTIFICATE-----
Generated at Sat Jun 29 14:32:47 2024 by rpki-client on console-ams.rpki-client.org