Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/553623c4-33bd-438a-a93e-018d65c4e837/1/326130363a313238373a613030303a3a2f33362d3336203d3e2030.roa
File: 326130363a313238373a613030303a3a2f33362d3336203d3e2030.roa (raw, json)
Hash identifier: FjsYrEo0wEgNS89VaZKiwt5EudZo4T5v9dS11TtDpgA=
Subject key identifier: FB:15:E9:03:B4:77:FF:70:0F:E5:46:47:DD:16:10:33:FD:28:D5:48
Certificate issuer: /CN=D585C965DEAED8ED3ECAAFE189BBA5883899D4DB
Certificate serial: 0BA2EF9DBF0A7FFFAD3FA17DD3A3C8DB56DE6325
Authority key identifier: D5:85:C9:65:DE:AE:D8:ED:3E:CA:AF:E1:89:BB:A5:88:38:99:D4:DB
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/D585C965DEAED8ED3ECAAFE189BBA5883899D4DB.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/553623c4-33bd-438a-a93e-018d65c4e837/1/326130363a313238373a613030303a3a2f33362d3336203d3e2030.roa
Signing time: Tue 21 Jan 2025 18:05:44 +0000
ROA not before: Tue 21 Jan 2025 18:00:44 +0000
ROA not after: Tue 20 Jan 2026 18:05:44 +0000
asID: 0
IP address blocks: 2a06:1287:a000::/36 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:a2:ef:9d:bf:0a:7f:ff:ad:3f:a1:7d:d3:a3:c8:db:56:de:63:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D585C965DEAED8ED3ECAAFE189BBA5883899D4DB
Validity
Not Before: Jan 21 18:00:44 2025 GMT
Not After : Jan 20 18:05:44 2026 GMT
Subject: CN=FB15E903B477FF700FE54647DD161033FD28D548
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b3:4f:96:27:b6:16:8a:b3:99:d4:22:50:63:
9b:f4:b7:8e:94:70:6c:1a:fc:4f:cf:0d:1b:b0:b6:
b1:4b:40:75:a0:3c:2b:85:0f:d6:19:af:2f:7e:d3:
39:e3:02:ac:11:ee:b8:86:17:f5:62:ef:3d:fe:c2:
5d:e1:67:b6:01:90:59:60:f4:07:86:9d:b8:2c:b4:
13:3b:72:3a:e2:c6:a7:b1:f7:65:0d:7d:e1:05:a5:
b4:32:39:ad:4f:3f:06:5d:d7:24:93:83:97:b2:0b:
d3:72:b2:19:f0:3a:ac:87:ea:7b:9d:e0:e5:96:4c:
c6:f4:60:b2:85:01:42:b6:ad:39:05:97:54:90:c5:
a2:a9:af:c7:55:d8:b8:cd:3d:88:0a:17:cb:4f:8d:
f4:78:5d:2a:24:01:a6:29:b9:f2:37:33:c9:b0:81:
0f:54:de:7c:52:1d:4d:c8:b2:b6:6d:2f:e3:76:09:
9f:3c:d1:04:60:37:b4:2b:dd:19:4f:90:5e:64:bf:
1e:e2:5a:ad:eb:25:71:52:bf:dc:e5:84:a9:9c:40:
c2:8b:cb:c7:5f:8d:de:8c:52:5c:0c:73:c6:1d:7b:
a1:e8:7d:3d:63:b5:a9:b8:c9:a5:40:15:d8:32:60:
db:53:57:41:1f:dc:75:43:a3:cb:5b:ef:9c:27:01:
6b:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:15:E9:03:B4:77:FF:70:0F:E5:46:47:DD:16:10:33:FD:28:D5:48
X509v3 Authority Key Identifier:
keyid:D5:85:C9:65:DE:AE:D8:ED:3E:CA:AF:E1:89:BB:A5:88:38:99:D4:DB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/553623c4-33bd-438a-a93e-018d65c4e837/1/D585C965DEAED8ED3ECAAFE189BBA5883899D4DB.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/D585C965DEAED8ED3ECAAFE189BBA5883899D4DB.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/553623c4-33bd-438a-a93e-018d65c4e837/1/326130363a313238373a613030303a3a2f33362d3336203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1287:a000::/36
Signature Algorithm: sha256WithRSAEncryption
22:5c:47:fd:29:8d:d4:5c:3b:2c:2c:77:f2:b6:a2:e4:a1:21:
96:22:88:6c:57:29:11:2a:a0:dc:aa:19:64:31:ef:0a:42:9c:
1e:af:57:ca:9f:bd:e7:2d:8c:d9:9a:4c:40:36:a6:10:e6:1f:
ae:b2:ea:a2:82:db:30:1a:2b:ab:91:ad:f2:12:0d:26:19:4c:
f4:31:95:e9:9e:62:3d:02:3c:d3:cc:9a:95:13:c4:ab:b5:c0:
75:7b:73:cf:45:8b:99:a9:f4:f3:ee:17:46:94:27:b8:fe:62:
6c:51:78:6c:3d:09:3c:1d:25:ed:33:c6:63:a8:9b:9f:65:69:
0d:e3:55:5c:c7:ee:02:4a:dd:ef:20:06:e4:5d:8c:db:02:67:
58:a0:66:62:bd:09:95:9d:bc:8c:0a:be:f4:ba:54:fc:c8:4d:
b0:fc:d2:4b:e7:38:92:ff:3b:b9:c3:68:f9:7a:a9:83:70:0a:
35:4d:bd:32:bd:0b:4f:e5:a0:ec:07:30:75:0c:de:3c:0c:d7:
94:8e:6a:16:35:65:0b:5e:3e:56:51:46:3a:f0:5b:90:db:82:
af:04:db:b5:5a:dc:4e:5c:8d:41:ad:c5:19:77:54:1f:c0:fb:
c2:bf:b1:04:d3:f6:26:db:e4:59:dc:2a:e5:a3:24:8f:4e:77:
bf:0c:7f:bf
-----BEGIN CERTIFICATE-----
MIIFZTCCBE2gAwIBAgIUC6Lvnb8Kf/+tP6F906PI21beYyUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRDU4NUM5NjVERUFFRDhFRDNFQ0FBRkUxODlCQkE1ODgz
ODk5RDREQjAeFw0yNTAxMjExODAwNDRaFw0yNjAxMjAxODA1NDRaMDMxMTAvBgNV
BAMTKEZCMTVFOTAzQjQ3N0ZGNzAwRkU1NDY0N0REMTYxMDMzRkQyOEQ1NDgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8s0+WJ7YWirOZ1CJQY5v0t46U
cGwa/E/PDRuwtrFLQHWgPCuFD9YZry9+0znjAqwR7riGF/Vi7z3+wl3hZ7YBkFlg
9AeGnbgstBM7cjrixqex92UNfeEFpbQyOa1PPwZd1ySTg5eyC9NyshnwOqyH6nud
4OWWTMb0YLKFAUK2rTkFl1SQxaKpr8dV2LjNPYgKF8tPjfR4XSokAaYpufI3M8mw
gQ9U3nxSHU3IsrZtL+N2CZ880QRgN7Qr3RlPkF5kvx7iWq3rJXFSv9zlhKmcQMKL
y8dfjd6MUlwMc8Yde6HofT1jtam4yaVAFdgyYNtTV0Ef3HVDo8tb75wnAWshAgMB
AAGjggJvMIICazAdBgNVHQ4EFgQU+xXpA7R3/3AP5UZH3RYQM/0o1UgwHwYDVR0j
BBgwFoAU1YXJZd6u2O0+yq/hibuliDiZ1NswDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNTUzNjIzYzQtMzNiZC00MzhhLWE5M2UtMDE4ZDY1YzRl
ODM3LzEvRDU4NUM5NjVERUFFRDhFRDNFQ0FBRkUxODlCQkE1ODgzODk5RDREQi5j
cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp
LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1
YzkxYmUzZjlkLzIvRDU4NUM5NjVERUFFRDhFRDNFQ0FBRkUxODlCQkE1ODgzODk5
RDREQi5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNTUzNjIzYzQt
MzNiZC00MzhhLWE5M2UtMDE4ZDY1YzRlODM3LzEvMzI2MTMwMzYzYTMxMzIzODM3
M2E2MTMwMzAzMDNhM2EyZjMzMzYyZDMzMzYyMDNkM2UyMDMwLnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYE
KgYSh6AwDQYJKoZIhvcNAQELBQADggEBACJcR/0pjdRcOywsd/K2ouShIZYiiGxX
KREqoNyqGWQx7wpCnB6vV8qfvectjNmaTEA2phDmH66y6qKC2zAaK6uRrfISDSYZ
TPQxlemeYj0CPNPMmpUTxKu1wHV7c89Fi5mp9PPuF0aUJ7j+YmxReGw9CTwdJe0z
xmOom59laQ3jVVzH7gJK3e8gBuRdjNsCZ1igZmK9CZWdvIwKvvS6VPzITbD80kvn
OJL/O7nDaPl6qYNwCjVNvTK9C0/loOwHMHUM3jwM15SOahY1ZQtePlZRRjrwW5Db
gq8E27Va3E5cjUGtxRl3VB/A+8K/sQTT9ibb5FncKuWjJI9Od78Mf78=
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:07:47 2025 by rpki-client