Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a633131353a3a2f34382d3438203d3e20323135313437.roa
File: 326130363a313238333a633131353a3a2f34382d3438203d3e20323135313437.roa (raw, json)
Hash identifier: Orgc9gFuMUKLGOJ80DWaUCtnWUjeFoUhSLoVG5BGvcs=
Subject key identifier: 98:7E:B5:39:CD:99:E7:4F:93:BF:D9:B5:D1:6B:5F:E8:AF:1B:09:03
Certificate issuer: /CN=B6366F3DD14AC5399103961C30642E6779892C6C
Certificate serial: 03B0C15FF3A8048B0D8C6511C796FD46B63465A2
Authority key identifier: B6:36:6F:3D:D1:4A:C5:39:91:03:96:1C:30:64:2E:67:79:89:2C:6C
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a633131353a3a2f34382d3438203d3e20323135313437.roa
Signing time: Mon 14 Oct 2024 08:59:55 +0000
ROA not before: Mon 14 Oct 2024 08:54:55 +0000
ROA not after: Mon 13 Oct 2025 08:59:55 +0000
asID: 215147
IP address blocks: 2a06:1283:c115::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:b0:c1:5f:f3:a8:04:8b:0d:8c:65:11:c7:96:fd:46:b6:34:65:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B6366F3DD14AC5399103961C30642E6779892C6C
Validity
Not Before: Oct 14 08:54:55 2024 GMT
Not After : Oct 13 08:59:55 2025 GMT
Subject: CN=987EB539CD99E74F93BFD9B5D16B5FE8AF1B0903
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:56:d0:51:27:b9:42:7d:8b:fa:e7:92:9b:e2:
03:31:6a:dc:ea:ac:7f:55:e5:de:af:1e:d4:8f:3f:
56:e6:f5:56:40:ed:ed:78:56:3c:6b:cb:57:d4:5f:
c0:88:c3:a5:65:97:fc:f6:f2:cb:10:e1:8c:1d:9a:
69:b7:0b:16:5d:0a:0c:87:99:67:1c:03:fd:d0:58:
54:e1:c2:92:9a:5e:b2:7c:08:08:e2:7d:5c:8d:bc:
9c:75:5f:1e:54:fa:6e:12:63:05:46:58:c0:02:d8:
d0:56:f6:09:1a:b1:fd:b8:25:1e:23:a2:91:65:0e:
42:48:9f:44:52:46:25:22:2f:57:c3:79:d1:3f:ca:
a4:1b:5f:28:99:e8:61:ec:88:74:40:cf:b3:91:c0:
59:75:3a:e0:89:50:de:e5:b8:52:38:61:25:64:29:
ac:b9:34:27:55:02:49:aa:8c:a5:35:ed:7b:e4:a3:
2a:ed:2d:a5:77:4c:6e:58:f1:79:26:0d:a3:03:bd:
e0:a4:f7:e1:cb:50:1a:1e:23:a6:04:6a:bc:66:1d:
13:b2:f8:6e:bc:b3:c1:22:04:40:5d:a3:0c:72:7c:
9b:5a:ac:82:53:ef:ba:00:9c:23:06:bf:b4:fd:dc:
af:d4:56:e1:17:11:2a:1c:ae:85:65:88:3c:c0:fb:
7e:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:7E:B5:39:CD:99:E7:4F:93:BF:D9:B5:D1:6B:5F:E8:AF:1B:09:03
X509v3 Authority Key Identifier:
keyid:B6:36:6F:3D:D1:4A:C5:39:91:03:96:1C:30:64:2E:67:79:89:2C:6C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a633131353a3a2f34382d3438203d3e20323135313437.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1283:c115::/48
Signature Algorithm: sha256WithRSAEncryption
52:c7:9d:8b:43:15:1c:08:19:c5:35:75:fe:72:97:5c:b7:e4:
42:91:af:d2:bb:6c:20:ee:71:61:fa:5c:07:c3:97:27:13:44:
ba:15:56:f5:d2:45:e5:e4:f8:f4:2e:7a:34:41:2a:25:90:20:
b0:48:a6:57:c6:16:ed:06:0a:67:4b:cb:cc:58:de:59:97:2b:
89:34:af:eb:2c:f4:46:b2:3c:a5:dc:e2:b1:90:e1:86:a9:b8:
38:3c:2b:8b:35:eb:d9:a5:f7:d5:f3:61:90:4b:52:b4:22:f3:
b3:0c:ab:83:6a:2c:5f:46:66:30:9b:4d:25:25:36:17:ba:ff:
9b:17:fc:77:23:8c:6d:d0:38:20:0b:60:e6:f5:8f:be:ff:d8:
86:de:8f:f9:26:b3:d8:44:52:88:16:a8:db:ec:59:5b:0e:8e:
01:22:f4:db:51:fc:82:63:eb:80:2c:5d:34:ea:9e:8a:c6:d1:
17:b4:e6:a7:af:a5:21:6e:5c:0a:8a:c5:95:50:82:67:06:e9:
9c:a6:59:fd:52:db:29:7b:be:1b:e1:74:a5:57:5e:15:0d:b4:
d5:17:89:38:a8:a6:bb:3c:05:4d:cb:70:21:17:b4:53:14:a8:
10:23:dd:e1:b3:09:88:46:c0:9c:44:4f:32:14:26:01:66:1d:
9b:9b:15:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:35:12 2025 by rpki-client