Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/5ba53c38-6e6c-48d0-9f29-5428a4f3744a/0/326131323a363263303a3a2f32392d3239203d3e203531373431.roa
File: 326131323a363263303a3a2f32392d3239203d3e203531373431.roa (raw, json)
Hash identifier: dyqGcb2nSCOn4UIPZ4EKvS8CKY3q7g8KhlEwYJNO6jQ=
Subject key identifier: 48:53:A7:7E:2D:FD:EC:72:6C:5B:43:A5:F9:19:44:4E:4E:A2:39:2C
Certificate issuer: /CN=4055d133e6c4e342a1e28e5f6c47ca49aebd35f1
Certificate serial: 6B61CE7FF2E8701C0F30343E06F602F42EDDADFC
Authority key identifier: 40:55:D1:33:E6:C4:E3:42:A1:E2:8E:5F:6C:47:CA:49:AE:BD:35:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QFXRM-bE40Kh4o5fbEfKSa69NfE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/5ba53c38-6e6c-48d0-9f29-5428a4f3744a/0/326131323a363263303a3a2f32392d3239203d3e203531373431.roa
Signing time: Fri 29 Mar 2024 19:52:33 +0000
ROA not before: Fri 29 Mar 2024 19:47:33 +0000
ROA not after: Fri 28 Mar 2025 19:52:33 +0000
asID: 51741
IP address blocks: 2a12:62c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:61:ce:7f:f2:e8:70:1c:0f:30:34:3e:06:f6:02:f4:2e:dd:ad:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4055d133e6c4e342a1e28e5f6c47ca49aebd35f1
Validity
Not Before: Mar 29 19:47:33 2024 GMT
Not After : Mar 28 19:52:33 2025 GMT
Subject: CN=4853A77E2DFDEC726C5B43A5F919444E4EA2392C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:0c:aa:ea:ae:b3:ac:23:84:4f:37:75:46:46:
db:ea:6a:95:ab:1f:d7:e5:1a:3d:1e:d8:e5:1f:a1:
ab:b2:37:44:5a:f9:ea:4b:d5:b8:85:8e:0e:a5:b2:
9f:eb:e5:ad:e0:08:22:b6:27:32:9c:dc:86:45:50:
19:5b:c3:b2:40:71:88:36:e3:74:a1:37:02:66:ff:
49:80:47:0a:4e:ca:00:d8:39:2d:0f:1c:5d:06:cd:
0b:b8:2a:67:a3:73:6e:b0:c4:ae:f8:ae:28:d8:4a:
7b:80:93:b8:f4:10:64:2e:9d:ea:65:bb:30:da:ee:
3e:95:c5:50:33:81:25:af:01:97:9e:99:68:46:53:
d2:9e:85:a1:87:1e:48:99:11:fc:4f:49:f9:6c:f0:
d5:7b:46:47:3f:ff:85:a4:2f:f8:9b:6d:68:eb:b8:
7f:6f:46:f2:ed:07:02:6a:ba:d7:06:77:77:fa:7c:
9c:b9:73:e0:13:8e:63:6d:19:b8:5a:97:bb:0e:b5:
5d:21:f6:53:8d:18:ed:2f:61:bf:a8:6f:7b:f9:1e:
f0:c1:04:45:6f:20:a2:8c:a3:42:c7:0f:76:da:67:
fd:64:5b:6a:ec:3e:26:c1:4d:de:3a:e0:e6:c9:ba:
f6:67:97:3b:30:b6:5d:5e:95:79:8c:90:fe:1e:53:
f3:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:53:A7:7E:2D:FD:EC:72:6C:5B:43:A5:F9:19:44:4E:4E:A2:39:2C
X509v3 Authority Key Identifier:
keyid:40:55:D1:33:E6:C4:E3:42:A1:E2:8E:5F:6C:47:CA:49:AE:BD:35:F1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/5ba53c38-6e6c-48d0-9f29-5428a4f3744a/0/4055D133E6C4E342A1E28E5F6C47CA49AEBD35F1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QFXRM-bE40Kh4o5fbEfKSa69NfE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/5ba53c38-6e6c-48d0-9f29-5428a4f3744a/0/326131323a363263303a3a2f32392d3239203d3e203531373431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:62c0::/29
Signature Algorithm: sha256WithRSAEncryption
73:d4:2a:df:d4:86:58:43:70:d8:63:a9:11:84:4a:6c:a1:ff:
5a:6c:a3:5e:42:83:c3:de:7b:c9:b8:3d:55:22:c9:df:34:23:
3a:82:6a:30:6b:bb:d9:42:91:40:46:06:ef:82:09:b0:19:9e:
7b:f5:08:3a:4b:93:05:30:d1:df:d1:9e:a4:25:6e:6d:cb:4c:
74:7b:ae:dd:af:d5:10:b4:56:86:0d:d0:ca:e6:e7:8a:46:48:
50:6d:06:dd:bd:ad:ab:b3:a6:c0:98:2d:d0:8c:52:18:09:40:
4a:f2:39:b6:64:ab:fc:28:4f:ed:1d:0d:e8:ab:1e:b5:de:12:
17:a5:6c:d3:fd:fa:ef:91:18:d7:52:92:43:2a:70:c5:03:80:
ea:c0:be:f3:c6:2a:bf:19:97:8d:b7:ef:a9:87:aa:42:ba:1f:
b1:dd:cf:ca:93:41:0f:fa:34:3f:8e:3d:99:b0:96:13:a5:ca:
d8:1a:ca:c0:0b:19:8c:66:c7:e2:d1:86:58:2a:fe:6a:11:39:
1d:a9:ca:50:a8:fa:a0:cc:c3:36:cf:cf:b9:3e:fa:eb:71:a7:
b2:d8:a6:2c:b1:c5:a4:56:2c:3b:b6:5a:9b:c4:24:a0:45:58:
b6:54:2d:23:e9:0d:13:0b:ff:db:0b:b5:5e:1a:e7:fb:ad:4f:
fc:2c:1d:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:05:15 2025 by rpki-client