Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/326130363a313238333a633031613a3a2f34382d3438203d3e20323136303433.roa
File: 326130363a313238333a633031613a3a2f34382d3438203d3e20323136303433.roa (raw, json)
Hash identifier: gbwKNy2iOobn+QWiY89Vd2G7mJVdhzllbGzle5bNRRk=
Subject key identifier: 50:38:E0:CB:D0:35:BF:9B:F9:99:A2:42:95:F1:8B:4E:ED:36:03:D2
Certificate issuer: /CN=729896CB421DE8ED6A598D27F2F6491BCABB9F24
Certificate serial: 3C9F6947710A296F3A499525A81112DC9624A711
Authority key identifier: 72:98:96:CB:42:1D:E8:ED:6A:59:8D:27:F2:F6:49:1B:CA:BB:9F:24
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/729896CB421DE8ED6A598D27F2F6491BCABB9F24.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/326130363a313238333a633031613a3a2f34382d3438203d3e20323136303433.roa
Signing time: Sun 28 Apr 2024 20:16:58 +0000
ROA not before: Sun 28 Apr 2024 20:11:58 +0000
ROA not after: Sun 27 Apr 2025 20:16:58 +0000
asID: 216043
IP address blocks: 2a06:1283:c01a::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:9f:69:47:71:0a:29:6f:3a:49:95:25:a8:11:12:dc:96:24:a7:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=729896CB421DE8ED6A598D27F2F6491BCABB9F24
Validity
Not Before: Apr 28 20:11:58 2024 GMT
Not After : Apr 27 20:16:58 2025 GMT
Subject: CN=5038E0CBD035BF9BF999A24295F18B4EED3603D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:fe:64:a1:76:44:d8:ee:b4:9a:35:20:f6:38:
7a:69:ba:a9:a8:aa:76:c0:1c:a7:56:36:61:1d:6c:
b9:91:6a:cd:a2:c0:d4:74:ac:e2:2c:47:a4:06:eb:
0f:df:80:06:db:e0:b4:01:7d:db:8c:2c:0c:1d:3b:
57:07:df:fe:ba:0c:d8:4c:a1:31:19:73:7e:73:fc:
c8:53:f2:c3:88:91:14:ff:12:43:9f:a5:c9:43:42:
4a:a5:43:67:66:de:cd:58:3b:fe:9c:98:0f:a9:f3:
4f:97:3d:e9:6f:b7:1c:ea:4e:21:7d:0d:20:7d:c3:
fe:c8:b3:e5:52:82:4a:0b:09:19:dd:10:6e:12:4d:
8d:3a:27:65:fd:58:e6:b6:b7:ea:4d:75:ec:aa:ff:
bd:25:b9:cd:0a:bc:af:8a:ba:6f:c5:11:e1:5e:0b:
31:45:4f:98:b4:fe:cb:33:78:64:27:7b:7a:d1:4f:
79:51:61:5a:34:12:a8:a3:06:9e:1f:e4:b7:3e:7c:
c7:6d:5f:e8:c7:4a:a7:94:d5:7f:70:9a:5c:42:d7:
a9:2a:21:40:85:f1:83:d7:34:04:71:61:2f:03:7c:
6f:ae:c7:67:dc:68:b7:73:ef:26:10:05:73:f2:4a:
ba:54:bf:a3:4d:b4:4b:8d:33:1c:d9:08:10:d6:10:
79:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:38:E0:CB:D0:35:BF:9B:F9:99:A2:42:95:F1:8B:4E:ED:36:03:D2
X509v3 Authority Key Identifier:
keyid:72:98:96:CB:42:1D:E8:ED:6A:59:8D:27:F2:F6:49:1B:CA:BB:9F:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/729896CB421DE8ED6A598D27F2F6491BCABB9F24.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/729896CB421DE8ED6A598D27F2F6491BCABB9F24.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/326130363a313238333a633031613a3a2f34382d3438203d3e20323136303433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1283:c01a::/48
Signature Algorithm: sha256WithRSAEncryption
6d:a7:4e:8d:18:2b:d1:9e:5e:57:b9:fe:91:5e:56:59:18:26:
5b:64:03:e3:b4:e7:70:a4:65:f5:8b:62:2b:71:b4:eb:85:da:
0b:57:bf:34:d9:28:a1:08:64:a2:fd:35:23:f3:7b:dc:a7:bc:
2f:d4:50:30:6a:4c:48:ad:f0:fc:dc:0e:65:93:27:25:af:ae:
1f:89:41:ca:5a:e7:40:93:4e:ba:8b:6e:28:eb:ae:83:70:0b:
29:e5:62:b8:73:19:e9:2c:d4:7b:2c:e1:58:56:be:c9:11:0d:
17:3d:83:db:50:b6:df:37:0e:1c:94:a5:50:34:88:e1:1a:69:
64:44:d0:cc:f1:cb:8c:f8:c3:a7:9f:99:fa:ec:b4:ff:83:b7:
a6:20:e4:20:3d:e9:00:11:c9:ac:ab:2a:8c:97:93:e5:16:97:
ba:22:4c:40:4c:2c:21:08:7b:0d:2d:50:43:29:77:5d:0d:8b:
fa:52:d7:6e:5e:3a:72:06:67:2d:2f:fa:b0:46:40:ca:42:6a:
b7:28:62:0a:ad:eb:c2:60:98:e0:d6:98:ea:9b:20:de:11:01:
8b:25:73:0d:df:1e:ba:e1:da:ce:29:57:75:1e:f2:ca:ab:5f:
3d:96:b8:a7:1b:ae:94:e9:9f:b3:c0:11:14:7a:bb:93:ca:59:
52:12:f0:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 15 17:22:44 2024 by rpki-client on console-fra.rpki-client.org