Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/4344ff29-7184-47bd-9172-3609f59ce6df/2/326130373a353463303a646561643a3a2f34382d3438203d3e203534363831.roa
File: 326130373a353463303a646561643a3a2f34382d3438203d3e203534363831.roa (raw, json)
Hash identifier: R+EHp+7oDMOUFSmzqdi3mmsF7O1yuorGLzaG9GYZg6c=
Subject key identifier: 9B:01:FE:15:8C:6B:D8:60:1D:D1:7B:DD:7E:6B:AC:7F:D3:53:E7:32
Certificate issuer: /CN=A6EAAC4901429B15740ABF1D9A54BFB181C6F538
Certificate serial: 3AF74A3BBAA2844EAE202064068643DED4E95898
Authority key identifier: A6:EA:AC:49:01:42:9B:15:74:0A:BF:1D:9A:54:BF:B1:81:C6:F5:38
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/A6EAAC4901429B15740ABF1D9A54BFB181C6F538.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/4344ff29-7184-47bd-9172-3609f59ce6df/2/326130373a353463303a646561643a3a2f34382d3438203d3e203534363831.roa
Signing time: Sat 20 Jan 2024 19:50:40 +0000
ROA not before: Sat 20 Jan 2024 19:45:40 +0000
ROA not after: Sat 18 Jan 2025 19:50:40 +0000
asID: 54681
IP address blocks: 2a07:54c0:dead::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:f7:4a:3b:ba:a2:84:4e:ae:20:20:64:06:86:43:de:d4:e9:58:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A6EAAC4901429B15740ABF1D9A54BFB181C6F538
Validity
Not Before: Jan 20 19:45:40 2024 GMT
Not After : Jan 18 19:50:40 2025 GMT
Subject: CN=9B01FE158C6BD8601DD17BDD7E6BAC7FD353E732
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:4a:ea:76:aa:6f:16:db:25:9e:ee:a2:3b:5b:
76:a9:6f:f3:c1:81:74:4b:0a:ba:0d:93:ad:f0:03:
72:58:6f:09:9f:7d:72:3f:10:a2:a0:ad:c4:cb:46:
00:14:54:92:d9:ca:62:1b:a1:84:37:ab:39:4c:58:
56:f5:26:06:0e:7e:8a:48:25:52:17:a6:57:a5:3a:
b8:24:c0:2b:b8:89:4e:1c:5a:0a:3b:75:b7:81:1e:
17:9b:b4:66:3b:62:91:27:fc:09:c4:7f:1f:15:82:
ab:b0:7a:29:20:48:55:ed:78:88:ed:c2:6c:f1:52:
58:6c:a4:95:7d:85:3a:b9:73:f7:3a:ad:d7:46:95:
68:2e:d3:29:f5:9f:6e:c3:0e:23:a3:aa:9a:c7:dc:
83:81:2d:8e:ce:0c:a7:57:70:a0:7b:37:31:d8:d0:
ab:2f:eb:57:6c:8b:76:10:ff:7d:2b:00:4c:9b:e1:
31:15:89:6c:6e:ae:da:ef:b1:e9:ca:19:fc:33:2c:
d2:63:97:a6:9f:11:a7:34:9d:45:a2:42:ce:8e:66:
e0:cf:7d:d7:39:f7:41:3c:cf:f8:f2:c9:5c:45:58:
6a:fb:ed:a6:83:78:b1:99:26:1f:1b:5b:0a:9c:de:
8f:f9:b0:e6:49:24:75:e9:4f:9b:c3:5a:52:92:35:
0d:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:01:FE:15:8C:6B:D8:60:1D:D1:7B:DD:7E:6B:AC:7F:D3:53:E7:32
X509v3 Authority Key Identifier:
keyid:A6:EA:AC:49:01:42:9B:15:74:0A:BF:1D:9A:54:BF:B1:81:C6:F5:38
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/4344ff29-7184-47bd-9172-3609f59ce6df/2/A6EAAC4901429B15740ABF1D9A54BFB181C6F538.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/A6EAAC4901429B15740ABF1D9A54BFB181C6F538.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/4344ff29-7184-47bd-9172-3609f59ce6df/2/326130373a353463303a646561643a3a2f34382d3438203d3e203534363831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:54c0:dead::/48
Signature Algorithm: sha256WithRSAEncryption
06:3e:da:a6:3b:20:b8:2e:33:18:14:d9:98:70:de:a8:94:7d:
29:25:4a:52:c0:82:47:54:2a:0b:f6:8a:dd:b2:08:62:e8:c6:
6d:91:8d:a2:51:6b:c7:95:52:1d:49:29:1c:dd:47:88:00:fe:
67:c0:89:47:92:01:aa:04:fd:0a:7c:f9:6f:6a:69:b3:c9:73:
f0:e7:ac:ef:db:a4:3d:e9:1a:7f:5a:81:4f:7e:14:15:eb:60:
c8:da:42:44:c1:91:da:e4:db:2d:88:9a:dd:5f:6a:f0:ed:8a:
0d:3f:3d:6b:89:a9:6f:d7:69:12:78:13:fd:f9:76:83:c4:fc:
65:c0:16:08:73:72:98:b3:e6:74:d0:ee:af:94:b6:42:79:c9:
9e:62:43:d2:13:6b:93:67:67:10:ea:b5:33:cc:bd:18:87:8a:
a6:2b:e9:25:aa:26:1d:25:c7:cc:91:87:a4:6e:d6:b4:c6:b9:
ad:b2:7a:53:f9:b7:cb:ce:37:0a:2b:82:f3:02:11:f9:90:a5:
81:4c:9e:54:63:cc:a2:68:83:d4:13:81:6e:3a:af:80:b8:27:
e9:ca:88:24:2b:87:46:f6:2a:4f:a4:19:6e:e6:06:d1:c9:61:
f9:01:f9:bc:35:88:ac:7e:58:88:1a:ca:66:ab:12:5c:1b:f4:
b2:ca:b8:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 29 15:00:46 2024 by rpki-client on console-fra.rpki-client.org