Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a383030313a3a2f34382d3438203d3e20323133393135.roa
File: 326130363a313238333a383030313a3a2f34382d3438203d3e20323133393135.roa (raw, json)
Hash identifier: qDkE6NXLusvUJZ2o6nsXnGQ7ightUW/Z5ufWzbd7sZI=
Subject key identifier: E7:62:D3:11:82:7B:E7:7F:59:47:E1:CA:D5:9F:DB:5F:A5:00:55:52
Certificate issuer: /CN=B6366F3DD14AC5399103961C30642E6779892C6C
Certificate serial: 31294C8E428158AC77CE47EEBB23E91FBD5017B9
Authority key identifier: B6:36:6F:3D:D1:4A:C5:39:91:03:96:1C:30:64:2E:67:79:89:2C:6C
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a383030313a3a2f34382d3438203d3e20323133393135.roa
Signing time: Sun 05 Jan 2025 11:24:37 +0000
ROA not before: Sun 05 Jan 2025 11:19:37 +0000
ROA not after: Sun 04 Jan 2026 11:24:37 +0000
asID: 213915
IP address blocks: 2a06:1283:8001::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:29:4c:8e:42:81:58:ac:77:ce:47:ee:bb:23:e9:1f:bd:50:17:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B6366F3DD14AC5399103961C30642E6779892C6C
Validity
Not Before: Jan 5 11:19:37 2025 GMT
Not After : Jan 4 11:24:37 2026 GMT
Subject: CN=E762D311827BE77F5947E1CAD59FDB5FA5005552
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:e7:da:cf:22:96:3e:60:d9:0f:e6:38:90:c2:
8d:26:87:ee:52:46:47:35:3e:45:30:92:a0:ba:9f:
f4:93:2c:67:c7:d0:c1:fb:bf:26:60:a5:4e:80:a8:
91:a1:be:67:93:37:38:32:14:76:a9:d2:05:db:c8:
00:25:1c:a0:e0:47:55:fd:fe:f1:1b:ae:93:55:bf:
1e:8d:42:2c:5a:11:2b:0d:56:b7:25:00:ea:4b:0f:
97:ae:23:a4:5a:a8:aa:67:78:2e:04:54:c8:a1:18:
4d:08:1d:78:ab:ad:b2:b2:09:17:e4:8a:6e:f8:89:
be:c0:69:2b:b8:f6:76:44:d4:7c:d4:31:e1:ab:29:
2f:7a:72:c2:e8:0f:e7:bb:3a:03:a2:89:26:9b:81:
e1:eb:e9:64:c1:f4:d4:64:2c:13:6d:ab:1b:df:01:
cf:a5:0b:a2:7d:3e:27:84:06:c3:de:d2:b7:6a:8a:
29:4f:ef:5f:38:d2:37:22:8f:4e:f1:4a:66:95:9a:
5e:18:54:8b:8c:64:3e:dd:2a:2b:2f:39:fc:31:cb:
76:89:fb:c0:96:35:56:f2:57:ac:0e:f3:7c:d2:4c:
85:79:5d:df:2b:73:65:bd:72:04:43:78:23:98:dc:
c8:d3:eb:6b:11:97:65:57:1a:c9:8a:6a:43:ff:68:
05:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:62:D3:11:82:7B:E7:7F:59:47:E1:CA:D5:9F:DB:5F:A5:00:55:52
X509v3 Authority Key Identifier:
keyid:B6:36:6F:3D:D1:4A:C5:39:91:03:96:1C:30:64:2E:67:79:89:2C:6C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a383030313a3a2f34382d3438203d3e20323133393135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1283:8001::/48
Signature Algorithm: sha256WithRSAEncryption
3d:78:d5:15:e2:85:21:55:7c:2c:0b:db:d1:8a:f4:38:d2:da:
c6:b1:68:e9:bc:38:6d:a2:41:cc:74:14:2f:fc:b2:28:7e:d7:
d4:91:cd:ba:a3:d2:8d:96:93:32:cb:0d:9f:42:a0:4b:1f:31:
7b:34:9a:84:15:6b:6c:9c:57:05:c3:b7:28:4d:b6:4f:1f:5d:
19:76:f4:bf:58:36:b7:2f:a1:32:be:ee:25:02:ac:93:b7:0f:
62:07:df:59:a3:79:f8:f2:40:19:3d:98:6e:37:9c:8a:f4:55:
66:66:5b:fd:2f:78:d5:2d:87:a6:be:1d:f1:47:0e:c7:4c:09:
cd:6b:f7:59:c9:cb:c1:53:3d:2b:e4:7d:e7:8c:58:9a:f4:ec:
a6:79:bc:06:8a:9c:6c:94:ca:72:a4:dd:5d:28:37:78:be:88:
6d:a6:e2:86:fb:0f:1c:ce:c6:5d:b5:aa:23:a4:36:29:6f:a0:
87:d4:4d:08:fe:79:9f:da:a4:85:e8:ad:c1:85:6d:33:70:e3:
17:d3:57:d5:6c:c8:15:b9:cc:91:8f:e9:e5:56:6f:c8:bb:9f:
e4:50:84:c4:0c:57:a0:91:60:d2:70:ab:91:a3:94:0b:41:b2:
dc:0a:0e:a7:c0:f6:6b:89:99:c6:78:8b:1c:f0:17:67:4d:76:
5a:90:82:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 14:04:43 2025 by rpki-client