Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a383030303a3a2f33362d3336203d3e20323135313437.roa
File: 326130363a313238333a383030303a3a2f33362d3336203d3e20323135313437.roa (raw, json)
Hash identifier: UUQ62Nm4tU6Vy64AoaMOi4r52rIweMS4Z3Z/edGxhOE=
Subject key identifier: A6:C3:74:39:A9:3F:7A:7D:78:D1:3F:53:84:6E:42:DC:C4:81:0C:D9
Certificate issuer: /CN=B6366F3DD14AC5399103961C30642E6779892C6C
Certificate serial: 27E094173FF2DF7697667B88E2A7FD0EF8830523
Authority key identifier: B6:36:6F:3D:D1:4A:C5:39:91:03:96:1C:30:64:2E:67:79:89:2C:6C
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a383030303a3a2f33362d3336203d3e20323135313437.roa
Signing time: Sun 01 Dec 2024 22:00:27 +0000
ROA not before: Sun 01 Dec 2024 21:55:27 +0000
ROA not after: Sun 30 Nov 2025 22:00:27 +0000
asID: 215147
IP address blocks: 2a06:1283:8000::/36 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:e0:94:17:3f:f2:df:76:97:66:7b:88:e2:a7:fd:0e:f8:83:05:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B6366F3DD14AC5399103961C30642E6779892C6C
Validity
Not Before: Dec 1 21:55:27 2024 GMT
Not After : Nov 30 22:00:27 2025 GMT
Subject: CN=A6C37439A93F7A7D78D13F53846E42DCC4810CD9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:3a:ec:20:aa:13:80:e3:44:a4:3c:1c:11:d9:
2f:21:23:09:cb:7a:f4:0f:d7:d1:5e:58:b8:9b:21:
3b:4d:ad:9d:1e:d7:df:d9:18:10:98:8e:72:15:50:
31:8d:78:6f:ea:11:44:0f:a7:bb:22:a4:3e:d4:1e:
4e:65:10:0a:ea:df:f6:e3:7e:10:62:00:1d:8a:20:
92:52:cc:f6:85:70:3f:c7:06:59:58:9b:4f:e5:af:
21:58:d2:89:f7:00:9c:e8:a9:7c:96:75:93:de:58:
3b:e4:08:09:10:37:7f:48:fc:f0:7b:98:9c:16:c0:
49:d0:9f:d8:ee:2c:87:e8:48:28:cb:74:ed:d9:e4:
4e:39:00:62:bf:0d:79:d3:2a:3c:46:75:16:7c:1b:
96:ee:9f:46:f8:db:bd:c1:c9:49:dd:80:e3:b9:16:
09:91:dd:c9:10:04:f5:33:10:6f:c2:39:a7:c2:4f:
d1:c3:a8:b4:b7:88:58:50:54:63:cd:82:a1:96:e8:
2b:d7:a6:d5:55:cc:53:9a:32:94:bf:5e:c5:c0:d9:
87:11:17:7c:8f:0d:37:60:d8:22:48:24:b8:ed:ed:
ba:48:94:98:e4:98:28:f5:d1:71:3b:db:7d:ff:7b:
72:7a:63:a6:17:2c:a8:aa:fb:8d:50:5e:77:c7:eb:
6c:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:C3:74:39:A9:3F:7A:7D:78:D1:3F:53:84:6E:42:DC:C4:81:0C:D9
X509v3 Authority Key Identifier:
keyid:B6:36:6F:3D:D1:4A:C5:39:91:03:96:1C:30:64:2E:67:79:89:2C:6C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a383030303a3a2f33362d3336203d3e20323135313437.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1283:8000::/36
Signature Algorithm: sha256WithRSAEncryption
a0:97:8f:70:c8:05:fe:b2:c0:f7:00:ee:a7:0b:6b:90:52:2d:
06:41:e4:32:8e:f6:a2:0b:33:12:64:56:5f:fa:ee:d7:7e:9c:
b3:a0:e7:b6:d6:72:41:23:9d:14:b6:4b:54:3a:a5:0f:51:25:
a1:35:b0:bd:e4:5c:5b:af:9d:e3:dd:ce:50:36:49:b8:6d:e7:
8f:88:eb:50:bb:e3:b0:87:b1:be:e2:a1:a6:7e:21:6c:55:ae:
37:c9:01:7e:cd:6a:45:70:de:8f:bf:c4:84:0e:1d:8b:19:49:
2d:da:03:9a:d4:dd:33:bc:72:b2:67:8f:8f:29:10:05:8b:ef:
b0:3f:36:9b:e5:71:ee:71:6d:f2:97:8f:95:a7:98:30:5f:dc:
1b:bf:6b:19:4a:bd:63:dd:61:69:2c:e1:6f:2f:2d:c3:ec:c3:
3e:62:4e:4a:1d:9c:e2:7e:c6:f8:73:ec:05:3b:17:b4:99:31:
ce:c1:3b:b6:1a:25:9d:bf:b2:63:0f:8d:57:01:2d:eb:7a:ea:
9c:a6:10:17:55:cd:26:6f:88:64:46:68:e4:0f:3d:68:1b:d2:
d7:49:58:04:fd:7e:de:e0:64:c4:c3:cf:8b:a0:3a:4b:4c:df:
bd:d9:2a:b8:10:6d:45:29:23:18:93:87:04:85:fc:1d:a0:c0:
2d:02:57:0b
-----BEGIN CERTIFICATE-----
MIIFejCCBGKgAwIBAgIUJ+CUFz/y33aXZnuI4qf9DviDBSMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjYzNjZGM0REMTRBQzUzOTkxMDM5NjFDMzA2NDJFNjc3
OTg5MkM2QzAeFw0yNDEyMDEyMTU1MjdaFw0yNTExMzAyMjAwMjdaMDMxMTAvBgNV
BAMTKEE2QzM3NDM5QTkzRjdBN0Q3OEQxM0Y1Mzg0NkU0MkRDQzQ4MTBDRDkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZOuwgqhOA40SkPBwR2S8hIwnL
evQP19FeWLibITtNrZ0e19/ZGBCYjnIVUDGNeG/qEUQPp7sipD7UHk5lEArq3/bj
fhBiAB2KIJJSzPaFcD/HBllYm0/lryFY0on3AJzoqXyWdZPeWDvkCAkQN39I/PB7
mJwWwEnQn9juLIfoSCjLdO3Z5E45AGK/DXnTKjxGdRZ8G5bun0b4273ByUndgOO5
FgmR3ckQBPUzEG/COafCT9HDqLS3iFhQVGPNgqGW6CvXptVVzFOaMpS/XsXA2YcR
F3yPDTdg2CJIJLjt7bpIlJjkmCj10XE7233/e3J6Y6YXLKiq+41QXnfH62yHAgMB
AAGjggKEMIICgDAdBgNVHQ4EFgQUpsN0Oak/en140T9ThG5C3MSBDNkwHwYDVR0j
BBgwFoAUtjZvPdFKxTmRA5YcMGQuZ3mJLGwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4
MDhiLzIvQjYzNjZGM0REMTRBQzUzOTkxMDM5NjFDMzA2NDJFNjc3OTg5MkM2Qy5j
cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu
Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yYWY3M2E5Yy0yMDU4LTQz
YmItOWFjNi01YWI0MmRmYmY0MDkvMS9CNjM2NkYzREQxNEFDNTM5OTEwMzk2MUMz
MDY0MkU2Nzc5ODkyQzZDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF
BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS82OGFiYWJiYi1mMDQ4LTRkZTEtOTIwNi04ZDQwZjA3MTgwOGIvMi8zMjYxMzAz
NjNhMzEzMjM4MzMzYTM4MzAzMDMwM2EzYTJmMzMzNjJkMzMzNjIwM2QzZTIwMzIz
MTM1MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF
BwEHAQH/BBIwEDAOBAIAAjAIAwYEKgYSg4AwDQYJKoZIhvcNAQELBQADggEBAKCX
j3DIBf6ywPcA7qcLa5BSLQZB5DKO9qILMxJkVl/67td+nLOg57bWckEjnRS2S1Q6
pQ9RJaE1sL3kXFuvnePdzlA2Sbht54+I61C747CHsb7ioaZ+IWxVrjfJAX7NakVw
3o+/xIQOHYsZSS3aA5rU3TO8crJnj48pEAWL77A/Npvlce5xbfKXj5WnmDBf3Bu/
axlKvWPdYWks4W8vLcPswz5iTkodnOJ+xvhz7AU7F7SZMc7BO7YaJZ2/smMPjVcB
Let66pymEBdVzSZviGRGaOQPPWgb0tdJWAT9ft7gZMTDz4ugOktM373ZKrgQbUUp
IxiThwSF/B2gwC0CVws=
-----END CERTIFICATE-----
Generated at Sat Apr 5 08:47:36 2025 by rpki-client