Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/326130363a313238333a633031633a3a2f34382d3438203d3e20323136303433.roa
File: 326130363a313238333a633031633a3a2f34382d3438203d3e20323136303433.roa (raw, json)
Hash identifier: x6VMrmBYfMYQHI8a8D/wmVtGAOHjD6Sb47A9OI5j+x0=
Subject key identifier: 24:F6:5C:E1:13:E4:0D:C3:A1:6D:EA:D0:1D:A7:8F:34:55:AF:76:20
Certificate issuer: /CN=729896CB421DE8ED6A598D27F2F6491BCABB9F24
Certificate serial: 69FC8C5D9DA3DB9FB4D53EC0A30204B598185078
Authority key identifier: 72:98:96:CB:42:1D:E8:ED:6A:59:8D:27:F2:F6:49:1B:CA:BB:9F:24
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/729896CB421DE8ED6A598D27F2F6491BCABB9F24.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/326130363a313238333a633031633a3a2f34382d3438203d3e20323136303433.roa
Signing time: Sun 28 Apr 2024 20:17:07 +0000
ROA not before: Sun 28 Apr 2024 20:12:07 +0000
ROA not after: Sun 27 Apr 2025 20:17:07 +0000
asID: 216043
IP address blocks: 2a06:1283:c01c::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:fc:8c:5d:9d:a3:db:9f:b4:d5:3e:c0:a3:02:04:b5:98:18:50:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=729896CB421DE8ED6A598D27F2F6491BCABB9F24
Validity
Not Before: Apr 28 20:12:07 2024 GMT
Not After : Apr 27 20:17:07 2025 GMT
Subject: CN=24F65CE113E40DC3A16DEAD01DA78F3455AF7620
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:60:92:7d:40:c4:f8:3f:a1:f2:9c:28:bf:fc:
eb:4a:16:0a:b6:6a:fa:e0:4a:85:91:af:b0:04:d4:
99:8b:56:15:87:07:df:0a:2f:6e:86:d8:97:83:dd:
34:35:d1:6a:be:3f:e7:1f:70:4d:62:6c:06:a3:eb:
ae:a4:e3:5e:db:c2:06:a1:e3:b7:d8:09:ed:cb:9b:
d3:28:dc:75:b6:14:44:e7:cb:a3:0a:e9:6b:2f:45:
9b:dc:f6:61:ef:87:6b:28:b7:e3:7e:35:92:f2:3d:
48:f3:16:b5:f4:9c:ff:ee:39:0d:74:e4:82:44:3e:
3d:0f:2f:9e:f1:c8:b1:6c:5c:2b:58:79:a7:b5:50:
37:c6:e0:26:91:b4:2a:02:26:16:3d:06:6f:55:9b:
10:b2:7e:a1:f4:ca:2b:06:e2:87:c0:e9:15:53:cf:
13:21:d4:d5:03:53:21:50:7d:5b:00:7c:05:9b:df:
e9:af:b3:3c:ae:a7:14:62:a8:56:1f:05:40:6b:22:
ae:20:31:10:67:76:c2:e5:82:31:f9:66:76:95:34:
77:09:59:7b:6d:cf:c5:18:d3:f4:4c:f4:8e:7c:8b:
90:65:c5:d2:6b:33:01:51:53:8e:a0:5e:4a:1c:af:
69:20:59:f1:7a:63:4e:4e:a2:ad:f9:84:2c:10:d5:
56:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:F6:5C:E1:13:E4:0D:C3:A1:6D:EA:D0:1D:A7:8F:34:55:AF:76:20
X509v3 Authority Key Identifier:
keyid:72:98:96:CB:42:1D:E8:ED:6A:59:8D:27:F2:F6:49:1B:CA:BB:9F:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/729896CB421DE8ED6A598D27F2F6491BCABB9F24.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/729896CB421DE8ED6A598D27F2F6491BCABB9F24.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/326130363a313238333a633031633a3a2f34382d3438203d3e20323136303433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1283:c01c::/48
Signature Algorithm: sha256WithRSAEncryption
44:07:45:75:29:08:a8:40:35:73:97:5f:54:1e:8e:c3:fd:b8:
75:fa:04:dc:22:a7:b9:58:b6:23:96:cb:b0:87:54:9b:43:fb:
83:03:11:ab:00:97:80:f7:44:dd:1a:74:4a:b0:57:4e:e0:23:
87:37:f1:be:af:50:f0:4d:1d:e8:a3:93:6e:ce:65:56:37:10:
0e:a9:a2:1d:d9:ad:a8:f0:be:5b:f4:ee:a6:79:89:81:9e:b6:
36:23:d2:8f:52:1e:ab:f9:b3:d0:21:ab:b5:82:1a:04:d3:32:
1c:53:8f:61:6d:39:3b:00:d4:d4:54:7f:12:ed:0d:6b:d9:10:
b4:b4:42:2b:eb:54:8e:8f:d8:de:7d:eb:3e:f7:76:07:ba:58:
f3:c9:20:7d:aa:35:25:0e:33:68:a3:cd:b8:14:62:ad:c6:eb:
e9:2f:e5:4c:51:69:59:24:46:50:8d:51:f4:bc:4a:77:f2:5e:
f1:4d:61:f1:e3:0d:6e:1b:21:fd:94:e3:87:60:6d:ac:54:3f:
ba:c5:56:b0:13:15:55:1e:1b:a7:d6:36:a7:3c:d4:a9:5f:a5:
3d:5a:b9:d3:30:51:31:53:8e:0f:c3:24:30:f4:00:c7:51:ae:
8f:17:45:a2:d0:63:01:65:74:b0:5b:e8:f8:86:84:a0:cd:3c:
a5:4d:e3:bb
-----BEGIN CERTIFICATE-----
MIIFcDCCBFigAwIBAgIUafyMXZ2j25+01T7AowIEtZgYUHgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzI5ODk2Q0I0MjFERThFRDZBNTk4RDI3RjJGNjQ5MUJD
QUJCOUYyNDAeFw0yNDA0MjgyMDEyMDdaFw0yNTA0MjcyMDE3MDdaMDMxMTAvBgNV
BAMTKDI0RjY1Q0UxMTNFNDBEQzNBMTZERUFEMDFEQTc4RjM0NTVBRjc2MjAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChYJJ9QMT4P6HynCi//OtKFgq2
avrgSoWRr7AE1JmLVhWHB98KL26G2JeD3TQ10Wq+P+cfcE1ibAaj666k417bwgah
47fYCe3Lm9Mo3HW2FETny6MK6WsvRZvc9mHvh2sot+N+NZLyPUjzFrX0nP/uOQ10
5IJEPj0PL57xyLFsXCtYeae1UDfG4CaRtCoCJhY9Bm9VmxCyfqH0yisG4ofA6RVT
zxMh1NUDUyFQfVsAfAWb3+mvszyupxRiqFYfBUBrIq4gMRBndsLlgjH5ZnaVNHcJ
WXttz8UY0/RM9I58i5BlxdJrMwFRU46gXkocr2kgWfF6Y05Ooq35hCwQ1Vb5AgMB
AAGjggJ6MIICdjAdBgNVHQ4EFgQUJPZc4RPkDcOhberQHaePNFWvdiAwHwYDVR0j
BBgwFoAUcpiWy0Id6O1qWY0n8vZJG8q7nyQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNTg4MzNlOTgtNmYyMS00ZDMwLThkODMtMTQwYWNhOTM4
ZDcxLzEvNzI5ODk2Q0I0MjFERThFRDZBNTk4RDI3RjJGNjQ5MUJDQUJCOUYyNC5j
cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp
LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1
YzkxYmUzZjlkLzIvNzI5ODk2Q0I0MjFERThFRDZBNTk4RDI3RjJGNjQ5MUJDQUJC
OUYyNC5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNTg4MzNlOTgt
NmYyMS00ZDMwLThkODMtMTQwYWNhOTM4ZDcxLzEvMzI2MTMwMzYzYTMxMzIzODMz
M2E2MzMwMzE2MzNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNjMwMzQzMy5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw
DwQCAAIwCQMHACoGEoPAHDANBgkqhkiG9w0BAQsFAAOCAQEARAdFdSkIqEA1c5df
VB6Ow/24dfoE3CKnuVi2I5bLsIdUm0P7gwMRqwCXgPdE3Rp0SrBXTuAjhzfxvq9Q
8E0d6KOTbs5lVjcQDqmiHdmtqPC+W/TupnmJgZ62NiPSj1Ieq/mz0CGrtYIaBNMy
HFOPYW05OwDU1FR/Eu0Na9kQtLRCK+tUjo/Y3n3rPvd2B7pY88kgfao1JQ4zaKPN
uBRircbr6S/lTFFpWSRGUI1R9LxKd/Je8U1h8eMNbhsh/ZTjh2BtrFQ/usVWsBMV
VR4bp9Y2pzzUqV+lPVq50zBRMVOOD8MkMPQAx1GujxdFotBjAWV0sFvo+IaEoM08
pU3juw==
-----END CERTIFICATE-----
Generated at Sun Sep 15 17:22:44 2024 by rpki-client on console-fra.rpki-client.org