Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/4344ff29-7184-47bd-9172-3609f59ce6df/2/326130373a353463303a636166653a3a2f34382d3438203d3e20323035373839.roa
File: 326130373a353463303a636166653a3a2f34382d3438203d3e20323035373839.roa (raw, json)
Hash identifier: QaVbTPixSxoLKIBCBc6TBXReUO7Tfdq1bhXVMryMBOI=
Subject key identifier: 95:1D:5D:98:33:2D:68:B7:C7:FE:F4:1D:6B:47:19:5B:C2:7B:C4:42
Certificate issuer: /CN=A6EAAC4901429B15740ABF1D9A54BFB181C6F538
Certificate serial: 08B428BCA4254338FD87962DAC6B5ABD27D8FB49
Authority key identifier: A6:EA:AC:49:01:42:9B:15:74:0A:BF:1D:9A:54:BF:B1:81:C6:F5:38
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/A6EAAC4901429B15740ABF1D9A54BFB181C6F538.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/4344ff29-7184-47bd-9172-3609f59ce6df/2/326130373a353463303a636166653a3a2f34382d3438203d3e20323035373839.roa
Signing time: Sat 20 Jan 2024 19:50:40 +0000
ROA not before: Sat 20 Jan 2024 19:45:40 +0000
ROA not after: Sat 18 Jan 2025 19:50:40 +0000
asID: 205789
IP address blocks: 2a07:54c0:cafe::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:b4:28:bc:a4:25:43:38:fd:87:96:2d:ac:6b:5a:bd:27:d8:fb:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A6EAAC4901429B15740ABF1D9A54BFB181C6F538
Validity
Not Before: Jan 20 19:45:40 2024 GMT
Not After : Jan 18 19:50:40 2025 GMT
Subject: CN=951D5D98332D68B7C7FEF41D6B47195BC27BC442
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c6:84:d0:e4:d9:18:41:a6:e0:06:6e:3f:84:
33:84:cb:ae:fd:a4:cd:d8:fa:e4:31:7e:6d:f4:de:
a7:34:43:61:c9:cd:67:df:e7:58:9d:c3:b9:1e:bc:
d0:42:1a:61:84:ac:8c:2d:cc:4b:cd:77:01:29:99:
a5:0c:84:0b:2b:e7:0a:6c:f2:53:57:e4:cd:e5:c0:
e8:e3:bc:d9:d4:76:15:5c:3a:40:1f:c7:df:0e:1a:
07:2a:43:82:35:c7:73:bf:73:8c:43:48:f3:8c:1c:
c7:9c:00:c1:64:9d:26:c7:3a:2f:0b:37:34:10:cd:
fb:6a:64:a4:f2:9d:f7:ff:ab:16:31:ae:97:39:a2:
1b:0a:b5:be:24:1b:7a:ef:20:6a:0e:2a:f9:0f:76:
a0:3d:7a:3a:89:2e:8c:3c:7f:f8:99:81:ad:70:9b:
99:f6:1a:49:5a:71:6e:ff:62:2d:ca:54:ca:b0:2d:
43:fc:18:f2:3b:3a:c1:2d:00:9d:46:e9:63:33:ff:
25:b1:3e:e1:c2:68:2f:e4:63:af:e6:f4:a1:37:74:
26:09:a7:a6:9e:e0:98:58:55:a5:35:3b:17:40:7d:
83:5f:fe:cd:06:c3:4d:19:c7:1b:c1:e4:c0:5a:71:
5f:eb:68:21:18:52:90:f9:51:f8:b2:bd:42:04:3a:
6f:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:1D:5D:98:33:2D:68:B7:C7:FE:F4:1D:6B:47:19:5B:C2:7B:C4:42
X509v3 Authority Key Identifier:
keyid:A6:EA:AC:49:01:42:9B:15:74:0A:BF:1D:9A:54:BF:B1:81:C6:F5:38
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/4344ff29-7184-47bd-9172-3609f59ce6df/2/A6EAAC4901429B15740ABF1D9A54BFB181C6F538.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/A6EAAC4901429B15740ABF1D9A54BFB181C6F538.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/4344ff29-7184-47bd-9172-3609f59ce6df/2/326130373a353463303a636166653a3a2f34382d3438203d3e20323035373839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:54c0:cafe::/48
Signature Algorithm: sha256WithRSAEncryption
08:19:63:3c:c6:96:f5:a0:be:01:03:d0:e2:dd:89:56:d1:75:
8d:9c:a9:e8:2b:fe:ea:02:00:88:10:14:58:24:55:7b:a3:35:
5c:15:b6:64:2d:c0:e2:39:08:d6:ec:ec:1c:43:a5:f8:7f:b3:
79:d2:b3:50:42:a9:a7:72:79:8b:f5:51:5c:dc:2c:ae:74:39:
f0:47:6e:bb:cd:32:cb:81:fc:ca:ac:fc:25:cd:0f:49:f0:7a:
98:75:0f:07:43:46:72:fd:4a:18:b8:31:ae:f6:d9:56:59:d3:
a9:b6:10:d3:73:22:03:a2:e0:33:be:99:a3:19:2d:bb:ca:e4:
5f:c9:7c:64:98:c2:e4:eb:ea:65:ba:56:82:7d:81:84:9b:a2:
4a:96:a0:95:3a:c4:e2:87:f3:97:3a:31:5b:37:de:79:c8:44:
d3:a4:74:0a:24:06:77:3e:00:a0:b3:c8:6f:e6:91:5b:3f:ef:
d5:4f:b0:f2:d6:1c:9d:37:8d:7b:d5:c3:98:69:e8:f3:99:4e:
99:59:d3:0a:ee:67:c4:a3:71:6c:57:c8:8c:3a:3b:07:d2:84:
2d:17:0a:9e:ab:d7:8e:32:31:b7:7b:e0:fa:5f:14:af:31:ae:
c7:a9:70:1f:1e:d3:13:fd:db:03:be:fc:01:b9:91:8d:ba:0d:
05:fa:12:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 29 14:32:47 2024 by rpki-client on console-ams.rpki-client.org