Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/4/326130393a353463333a613034653a3a2f34382d313238203d3e20323135313437.roa
File: 326130393a353463333a613034653a3a2f34382d313238203d3e20323135313437.roa (raw, json)
Hash identifier: g2V7/Odqg6xTNp3Sf8351AC7nqStdO7EU3BP8XPdgtg=
Subject key identifier: E8:B8:75:FD:14:0D:01:22:97:58:E8:92:33:C2:4A:F9:CC:5E:D7:18
Certificate issuer: /CN=050C4BF608C9D558DB4A44BBED5A23D005379356
Certificate serial: 72D6CD4176012CD0032863B70CECBE18BE1E286C
Authority key identifier: 05:0C:4B:F6:08:C9:D5:58:DB:4A:44:BB:ED:5A:23:D0:05:37:93:56
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/050C4BF608C9D558DB4A44BBED5A23D005379356.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/4/326130393a353463333a613034653a3a2f34382d313238203d3e20323135313437.roa
Signing time: Mon 30 Jun 2025 00:40:01 +0000
ROA not before: Mon 30 Jun 2025 00:35:01 +0000
ROA not after: Mon 29 Jun 2026 00:40:01 +0000
asID: 215147
IP address blocks: 2a09:54c3:a04e::/48 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:d6:cd:41:76:01:2c:d0:03:28:63:b7:0c:ec:be:18:be:1e:28:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=050C4BF608C9D558DB4A44BBED5A23D005379356
Validity
Not Before: Jun 30 00:35:01 2025 GMT
Not After : Jun 29 00:40:01 2026 GMT
Subject: CN=E8B875FD140D01229758E89233C24AF9CC5ED718
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:6f:6c:99:fd:e7:e9:29:da:af:c0:50:03:fe:
fd:47:86:e6:20:f0:c6:78:dd:e1:49:da:33:ed:69:
ca:46:33:ab:31:20:ba:a4:f4:7e:64:ba:dc:3f:fc:
6e:49:c9:c7:0e:10:99:eb:0a:4b:bc:3b:9c:db:ae:
a9:dc:d1:69:04:4b:df:de:33:90:c9:33:d3:a9:79:
c7:42:92:28:62:c2:0f:7e:31:07:c1:7c:56:ac:90:
cc:fc:52:4a:f9:7a:24:7c:a4:75:33:65:46:8a:24:
6d:7a:c1:fa:74:fa:cc:a4:97:98:6f:6a:07:67:97:
39:11:34:97:98:ef:d0:49:bc:75:cf:f3:8a:7b:62:
0c:46:48:d6:e4:8e:34:6d:c9:0f:fb:4f:98:d7:00:
35:ae:e4:d5:a5:c5:39:ed:69:a2:8f:08:b6:4b:aa:
c7:49:5e:09:6e:5e:4b:d2:3a:2b:5d:c8:3a:84:5a:
d9:35:3c:d3:74:c8:d1:58:17:00:69:45:f9:fa:33:
00:dc:2e:42:e5:5c:a2:39:47:34:23:b0:1a:8b:d1:
9e:73:c8:e8:92:35:aa:8a:a4:84:8d:6c:76:93:f1:
fd:47:f0:b0:e1:d1:98:e6:63:cc:f9:a9:88:55:1b:
ed:d1:e0:49:bd:4d:67:7e:37:55:a3:40:a3:46:9d:
72:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:B8:75:FD:14:0D:01:22:97:58:E8:92:33:C2:4A:F9:CC:5E:D7:18
X509v3 Authority Key Identifier:
keyid:05:0C:4B:F6:08:C9:D5:58:DB:4A:44:BB:ED:5A:23:D0:05:37:93:56
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/4/050C4BF608C9D558DB4A44BBED5A23D005379356.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/050C4BF608C9D558DB4A44BBED5A23D005379356.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/4/326130393a353463333a613034653a3a2f34382d313238203d3e20323135313437.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:54c3:a04e::/48
Signature Algorithm: sha256WithRSAEncryption
87:7d:64:b5:24:89:df:4d:e5:56:eb:dc:70:02:4f:08:20:14:
fd:48:41:42:f6:1c:5c:48:db:fa:5a:de:e0:7b:7a:0d:41:62:
0b:10:e4:4e:cd:02:49:d0:5f:e4:a1:01:00:34:49:b6:01:f8:
40:8e:ef:6f:e6:fb:4d:b1:a6:5b:45:14:14:34:59:0a:f8:ea:
bc:68:a1:ab:0f:0f:58:9d:f8:0e:7d:73:4f:6e:ac:a8:80:53:
2b:58:78:96:1f:d0:b1:f2:34:45:30:50:46:2d:28:27:33:e3:
34:12:20:ef:53:91:63:4e:83:2e:e5:95:1c:19:50:d1:79:61:
c0:7d:74:35:93:7f:d1:de:2c:e4:09:eb:64:ec:86:6d:a0:ef:
61:9d:8c:cc:29:09:3c:48:57:f9:a1:48:c4:cf:37:2a:14:b2:
43:96:ff:c6:89:9c:63:e5:f1:c5:04:99:ae:32:a8:15:7f:ab:
68:df:08:06:6b:6c:a1:76:69:ed:e1:a1:16:59:a2:a7:a8:46:
c8:e8:eb:4d:ae:51:df:3b:0f:cd:22:ff:d8:fb:5f:80:44:68:
26:21:5b:24:d0:50:15:28:bc:5c:3c:b8:1b:5e:a1:fa:d7:8b:
3d:3c:00:79:03:b9:b2:34:ab:eb:66:c6:e7:14:cd:6d:d1:c4:
18:bc:89:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 13 19:23:00 2025 by rpki-client