Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a633131303a3a2f34342d3438203d3e20323135313437.roa
File: 326130363a313238333a633131303a3a2f34342d3438203d3e20323135313437.roa (raw, json)
Hash identifier: Bbj3dkfLCLvHSBOV2mo0X/dvVWVRNeC0CCNXaIH1NSU=
Subject key identifier: D3:40:15:88:CE:89:7B:70:D0:B7:DB:7C:F3:C3:8D:83:0C:B4:C4:E6
Certificate issuer: /CN=B6366F3DD14AC5399103961C30642E6779892C6C
Certificate serial: 1343FA6947D0B98B9177020679EDB8785F0BC23C
Authority key identifier: B6:36:6F:3D:D1:4A:C5:39:91:03:96:1C:30:64:2E:67:79:89:2C:6C
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a633131303a3a2f34342d3438203d3e20323135313437.roa
Signing time: Tue 10 Dec 2024 23:20:35 +0000
ROA not before: Tue 10 Dec 2024 23:15:35 +0000
ROA not after: Tue 09 Dec 2025 23:20:35 +0000
asID: 215147
IP address blocks: 2a06:1283:c110::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:43:fa:69:47:d0:b9:8b:91:77:02:06:79:ed:b8:78:5f:0b:c2:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B6366F3DD14AC5399103961C30642E6779892C6C
Validity
Not Before: Dec 10 23:15:35 2024 GMT
Not After : Dec 9 23:20:35 2025 GMT
Subject: CN=D3401588CE897B70D0B7DB7CF3C38D830CB4C4E6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:15:3e:e7:11:b4:b7:3f:f4:b8:d3:1a:6a:6c:
17:91:8c:40:76:7d:db:4d:c5:1c:3e:68:ac:ee:0d:
7a:f0:c0:48:5b:31:0f:82:d6:85:8b:fb:26:4f:1c:
87:1f:2b:32:b8:f9:c0:35:59:24:d8:71:b3:ce:c4:
7b:b3:67:1b:e1:37:b2:d3:64:2c:5e:7b:8a:6a:ca:
d2:19:e1:85:82:e8:0a:e2:9e:c7:dc:1c:20:35:42:
59:f9:43:9c:ed:b0:7a:a5:cf:d0:33:03:9f:62:52:
27:12:40:a6:da:88:f5:07:e1:6b:ad:ba:49:93:42:
41:05:7b:41:ac:5c:d9:12:08:b8:17:29:1e:83:40:
28:af:64:7e:27:bb:04:d8:ce:5b:f0:04:26:dc:91:
a1:aa:f2:0f:3b:4a:45:f7:54:61:45:19:14:4f:eb:
62:b9:b1:49:15:72:6b:4c:1d:13:2d:90:9c:da:ab:
fe:d0:de:5a:13:b2:57:1a:2f:16:8d:3c:76:41:4c:
de:a6:58:19:86:3a:4e:3a:f3:6c:f9:f5:ac:42:5c:
d6:82:48:4c:69:9e:05:3e:ea:dc:4d:30:08:fc:c2:
54:c6:9a:73:22:4d:e5:1e:e4:47:86:99:76:0c:52:
e7:49:67:f1:b1:0d:08:5c:6f:72:f9:b3:99:6d:36:
42:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:40:15:88:CE:89:7B:70:D0:B7:DB:7C:F3:C3:8D:83:0C:B4:C4:E6
X509v3 Authority Key Identifier:
keyid:B6:36:6F:3D:D1:4A:C5:39:91:03:96:1C:30:64:2E:67:79:89:2C:6C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a633131303a3a2f34342d3438203d3e20323135313437.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1283:c110::/44
Signature Algorithm: sha256WithRSAEncryption
88:0d:fc:b5:02:5f:aa:5d:af:16:7b:4b:52:9d:6f:94:b1:f8:
40:61:a1:98:67:82:c7:ff:ae:a0:d3:26:0a:a0:0b:1d:a4:6d:
ef:58:fe:8a:b9:6f:88:e4:97:3f:59:b5:28:54:39:c4:44:8c:
2a:bc:e9:75:f3:2f:a0:d3:43:7a:18:85:11:1e:4b:c0:e8:28:
76:d5:ec:d8:cd:cf:dd:b4:22:80:e6:b0:c1:aa:1a:75:3f:a8:
b7:f4:5e:29:41:16:66:5c:07:4e:e0:55:0a:be:6e:f0:58:79:
56:e5:05:42:5e:a6:e3:ce:7d:53:d9:9a:b3:24:3d:fc:42:51:
7c:c4:5b:84:f7:2a:53:63:45:e7:a7:f3:40:f6:8b:67:a7:0e:
73:f7:d3:5c:52:ec:78:3d:28:cd:52:85:41:e8:c1:21:37:a8:
f9:0a:34:fc:79:59:4c:67:66:66:86:32:bf:89:a5:4f:ef:3e:
b3:84:6b:60:da:84:92:58:d4:8b:ad:05:25:8f:63:1e:27:f7:
9a:87:4b:e0:ce:ea:e1:64:36:de:34:c2:06:c9:c9:7f:f5:6a:
10:1d:8b:c7:94:ce:f2:59:50:2f:7c:28:cf:de:0d:ee:b6:6c:
0a:85:cb:b0:b8:e9:66:b4:b6:b3:84:3f:0a:f1:c6:c9:ba:44:
62:9a:c4:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 3 07:09:26 2025 by rpki-client