Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/326130363a313238333a633031623a3a2f34382d3438203d3e20323136303433.roa
File: 326130363a313238333a633031623a3a2f34382d3438203d3e20323136303433.roa (raw, json)
Hash identifier: LZe4zDOYveqQ6zZRK/Qc98plyjuCEzeKDiImpGYf+yw=
Subject key identifier: 7B:57:70:37:18:4F:A2:8B:D6:7F:BF:7B:FD:BA:A9:DE:B0:37:9B:A9
Certificate issuer: /CN=729896CB421DE8ED6A598D27F2F6491BCABB9F24
Certificate serial: 4C683BB98732F442C2BF9C581B0C1E827E705DE0
Authority key identifier: 72:98:96:CB:42:1D:E8:ED:6A:59:8D:27:F2:F6:49:1B:CA:BB:9F:24
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/729896CB421DE8ED6A598D27F2F6491BCABB9F24.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/326130363a313238333a633031623a3a2f34382d3438203d3e20323136303433.roa
Signing time: Sun 28 Apr 2024 20:17:03 +0000
ROA not before: Sun 28 Apr 2024 20:12:03 +0000
ROA not after: Sun 27 Apr 2025 20:17:03 +0000
asID: 216043
IP address blocks: 2a06:1283:c01b::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:68:3b:b9:87:32:f4:42:c2:bf:9c:58:1b:0c:1e:82:7e:70:5d:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=729896CB421DE8ED6A598D27F2F6491BCABB9F24
Validity
Not Before: Apr 28 20:12:03 2024 GMT
Not After : Apr 27 20:17:03 2025 GMT
Subject: CN=7B577037184FA28BD67FBF7BFDBAA9DEB0379BA9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:bd:c9:8d:47:38:63:76:cd:84:a9:20:05:00:
3b:1d:98:62:e5:fe:2f:49:bd:d2:85:e2:f9:cd:bd:
04:c7:6d:73:54:4e:41:f3:2b:0c:e4:4d:d0:a8:c5:
5f:cf:ea:c9:75:61:a4:2b:52:c6:10:1d:7b:c3:8a:
9b:a7:cf:f9:14:d9:c7:f7:64:64:38:34:31:ae:ba:
ec:06:a4:bd:5b:5b:c1:4d:46:eb:32:40:e7:26:10:
66:ab:0d:47:63:b1:f3:16:0c:13:62:68:d9:e5:9f:
ee:65:6a:6c:78:53:43:c0:e2:5f:f4:25:29:bc:0b:
f0:7b:a4:31:03:be:7a:7e:e6:b9:4b:92:d6:e9:a8:
0f:1a:5c:3d:ce:ee:4d:ab:96:af:b9:95:e3:8a:27:
85:1e:cf:a3:a9:6d:e9:85:7f:70:91:06:56:66:88:
5f:4c:53:f7:a5:25:bb:45:8d:c4:b2:3f:5a:2a:3a:
23:f6:96:8d:d3:e5:e9:b8:b8:0c:a5:b5:8d:bd:30:
d2:4f:e6:df:89:9e:e7:3f:8f:16:28:18:be:a7:e6:
2a:27:27:00:03:a4:4e:3c:26:48:72:29:08:06:5f:
4e:a2:76:ed:a7:74:32:5c:23:58:64:5a:ea:58:d9:
60:1b:c8:0a:48:12:96:dd:7b:66:ce:f7:5b:a1:20:
18:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:57:70:37:18:4F:A2:8B:D6:7F:BF:7B:FD:BA:A9:DE:B0:37:9B:A9
X509v3 Authority Key Identifier:
keyid:72:98:96:CB:42:1D:E8:ED:6A:59:8D:27:F2:F6:49:1B:CA:BB:9F:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/729896CB421DE8ED6A598D27F2F6491BCABB9F24.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/729896CB421DE8ED6A598D27F2F6491BCABB9F24.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/326130363a313238333a633031623a3a2f34382d3438203d3e20323136303433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1283:c01b::/48
Signature Algorithm: sha256WithRSAEncryption
33:01:2c:64:6a:d3:1b:7d:a8:d2:12:be:54:34:56:23:f8:51:
35:fa:2d:29:f6:10:fe:43:f8:d3:d5:a5:95:b9:a4:33:9e:30:
12:fd:c4:7e:d6:ed:83:e0:af:97:92:59:c1:97:16:18:ab:92:
a8:8d:fe:b6:a8:b7:aa:ec:53:55:61:4d:7c:a6:98:f5:ee:55:
0a:8c:b6:04:ee:60:c5:d5:88:62:55:aa:25:79:6c:c1:14:54:
64:a0:d0:01:1b:7a:49:db:14:b6:3d:48:9f:ee:c7:4e:3f:20:
3a:5c:01:5c:e3:4d:a1:79:cd:1c:14:df:7d:06:80:1a:59:fb:
fb:0e:7b:6d:f9:b5:cb:71:82:f1:c2:da:b0:e1:83:15:03:73:
2c:14:fc:11:19:dd:4a:0a:9f:55:87:a5:57:a7:42:b9:ae:6d:
56:1f:c4:33:ea:76:13:01:0f:eb:5f:e1:1e:06:b1:5d:99:3f:
48:d1:ff:04:b2:71:33:af:48:5f:33:90:70:29:6f:98:3f:6d:
91:88:5c:44:8c:78:15:35:f2:55:99:d7:eb:ad:2f:ef:75:9b:
cd:5f:5a:fe:da:92:75:af:b2:57:51:33:81:38:27:a6:d3:24:
87:f9:52:8d:a5:fa:aa:ac:60:45:5c:25:7e:4e:09:0a:d4:ed:
95:eb:2d:af
-----BEGIN CERTIFICATE-----
MIIFcDCCBFigAwIBAgIUTGg7uYcy9ELCv5xYGwwegn5wXeAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzI5ODk2Q0I0MjFERThFRDZBNTk4RDI3RjJGNjQ5MUJD
QUJCOUYyNDAeFw0yNDA0MjgyMDEyMDNaFw0yNTA0MjcyMDE3MDNaMDMxMTAvBgNV
BAMTKDdCNTc3MDM3MTg0RkEyOEJENjdGQkY3QkZEQkFBOURFQjAzNzlCQTkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgvcmNRzhjds2EqSAFADsdmGLl
/i9JvdKF4vnNvQTHbXNUTkHzKwzkTdCoxV/P6sl1YaQrUsYQHXvDipunz/kU2cf3
ZGQ4NDGuuuwGpL1bW8FNRusyQOcmEGarDUdjsfMWDBNiaNnln+5lamx4U0PA4l/0
JSm8C/B7pDEDvnp+5rlLktbpqA8aXD3O7k2rlq+5leOKJ4Uez6OpbemFf3CRBlZm
iF9MU/elJbtFjcSyP1oqOiP2lo3T5em4uAyltY29MNJP5t+Jnuc/jxYoGL6n5ion
JwADpE48JkhyKQgGX06idu2ndDJcI1hkWupY2WAbyApIEpbde2bO91uhIBjBAgMB
AAGjggJ6MIICdjAdBgNVHQ4EFgQUe1dwNxhPoovWf797/bqp3rA3m6kwHwYDVR0j
BBgwFoAUcpiWy0Id6O1qWY0n8vZJG8q7nyQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNTg4MzNlOTgtNmYyMS00ZDMwLThkODMtMTQwYWNhOTM4
ZDcxLzEvNzI5ODk2Q0I0MjFERThFRDZBNTk4RDI3RjJGNjQ5MUJDQUJCOUYyNC5j
cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp
LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1
YzkxYmUzZjlkLzIvNzI5ODk2Q0I0MjFERThFRDZBNTk4RDI3RjJGNjQ5MUJDQUJC
OUYyNC5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNTg4MzNlOTgt
NmYyMS00ZDMwLThkODMtMTQwYWNhOTM4ZDcxLzEvMzI2MTMwMzYzYTMxMzIzODMz
M2E2MzMwMzE2MjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNjMwMzQzMy5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw
DwQCAAIwCQMHACoGEoPAGzANBgkqhkiG9w0BAQsFAAOCAQEAMwEsZGrTG32o0hK+
VDRWI/hRNfotKfYQ/kP409WllbmkM54wEv3Eftbtg+Cvl5JZwZcWGKuSqI3+tqi3
quxTVWFNfKaY9e5VCoy2BO5gxdWIYlWqJXlswRRUZKDQARt6SdsUtj1In+7HTj8g
OlwBXONNoXnNHBTffQaAGln7+w57bfm1y3GC8cLasOGDFQNzLBT8ERndSgqfVYel
V6dCua5tVh/EM+p2EwEP61/hHgaxXZk/SNH/BLJxM69IXzOQcClvmD9tkYhcRIx4
FTXyVZnX660v73WbzV9a/tqSda+yV1EzgTgnptMkh/lSjaX6qqxgRVwlfk4JCtTt
lestrw==
-----END CERTIFICATE-----
Generated at Sun Sep 15 17:46:40 2024 by rpki-client on console-ams.rpki-client.org