Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6be43d9e-e440-47ae-a7bc-19b7993ccf14/1/326130393a353463363a646561643a3a2f34382d3438203d3e20323134373537.roa
File: 326130393a353463363a646561643a3a2f34382d3438203d3e20323134373537.roa (raw, json)
Hash identifier: yLoPNgxXsGZOGeGwXoeF29sQWCPopI46FmunhhorBcg=
Subject key identifier: 5D:F8:19:BC:59:2F:0C:5D:97:D5:75:FB:AF:C5:C5:2A:C6:0E:A8:2E
Certificate issuer: /CN=F163E1EE74384430F7A75E7448A376D89DBBE730
Certificate serial: 6740CFAD49383EB05B43A3C50C177E337360C9DB
Authority key identifier: F1:63:E1:EE:74:38:44:30:F7:A7:5E:74:48:A3:76:D8:9D:BB:E7:30
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/F163E1EE74384430F7A75E7448A376D89DBBE730.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6be43d9e-e440-47ae-a7bc-19b7993ccf14/1/326130393a353463363a646561643a3a2f34382d3438203d3e20323134373537.roa
Signing time: Mon 30 Sep 2024 16:57:53 +0000
ROA not before: Mon 30 Sep 2024 16:52:53 +0000
ROA not after: Mon 29 Sep 2025 16:57:53 +0000
asID: 214757
IP address blocks: 2a09:54c6:dead::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:40:cf:ad:49:38:3e:b0:5b:43:a3:c5:0c:17:7e:33:73:60:c9:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F163E1EE74384430F7A75E7448A376D89DBBE730
Validity
Not Before: Sep 30 16:52:53 2024 GMT
Not After : Sep 29 16:57:53 2025 GMT
Subject: CN=5DF819BC592F0C5D97D575FBAFC5C52AC60EA82E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:39:cb:ae:99:ec:ff:98:bf:49:fe:c1:e9:09:
3d:7d:e4:88:25:9f:1c:c3:18:9b:1e:e8:af:2b:f9:
02:ba:83:38:23:c1:3a:57:a2:1c:c0:95:7e:b9:b2:
25:3e:d2:55:74:b6:41:d9:48:e5:00:7e:c6:aa:59:
ef:a1:f6:73:a9:b8:1c:fe:1a:17:90:77:8a:77:0c:
6b:eb:b3:c8:6e:7d:10:60:fa:f4:7f:4e:fd:9a:d8:
95:63:5f:51:d1:1b:b5:72:35:e5:ff:6f:63:fe:28:
bc:53:72:e1:99:6f:90:96:37:ff:fc:94:48:58:97:
12:e3:d0:9a:9f:90:1d:cc:5a:c2:db:87:3d:08:38:
ab:6a:03:50:55:82:ce:0f:3a:1d:fb:86:2e:ba:7d:
90:be:cb:9e:90:30:aa:dd:e0:f8:2e:41:a7:18:3e:
bc:eb:ef:86:bb:ae:41:01:fa:ff:e0:43:9d:84:69:
4a:db:20:30:bf:8d:1a:c8:72:8e:3a:1e:3d:73:53:
c7:04:13:96:2f:16:59:8b:56:38:5c:88:d8:be:e0:
3b:88:6b:e0:25:ab:b7:f2:ae:2c:f5:4d:ce:e1:75:
12:e0:9f:94:79:b3:c4:15:b0:7d:d9:b8:e9:46:79:
9d:5b:99:a9:7e:01:99:6e:18:2d:af:be:9b:5c:7c:
5c:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:F8:19:BC:59:2F:0C:5D:97:D5:75:FB:AF:C5:C5:2A:C6:0E:A8:2E
X509v3 Authority Key Identifier:
keyid:F1:63:E1:EE:74:38:44:30:F7:A7:5E:74:48:A3:76:D8:9D:BB:E7:30
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6be43d9e-e440-47ae-a7bc-19b7993ccf14/1/F163E1EE74384430F7A75E7448A376D89DBBE730.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/F163E1EE74384430F7A75E7448A376D89DBBE730.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6be43d9e-e440-47ae-a7bc-19b7993ccf14/1/326130393a353463363a646561643a3a2f34382d3438203d3e20323134373537.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:54c6:dead::/48
Signature Algorithm: sha256WithRSAEncryption
38:8b:26:c7:db:6b:f2:a3:bd:0f:fb:37:2b:fd:5d:4a:dc:70:
41:b1:48:e3:cb:c8:c4:3a:c5:8a:42:4e:d0:80:89:88:b7:9b:
23:6b:36:10:c7:3b:ae:b0:91:30:93:ce:18:67:c8:0a:04:c4:
09:73:7f:58:dc:c8:f4:88:ec:73:2e:61:d4:cf:01:12:f5:56:
56:83:e8:f1:9d:88:6f:65:b1:09:5b:19:64:96:56:dc:c4:4f:
40:b2:69:7f:b0:13:76:c1:40:48:bb:73:3d:37:e4:99:69:c0:
06:0d:1d:72:d6:c7:02:4b:16:be:f9:cb:67:bc:30:b0:43:9b:
c4:a7:85:f3:0f:12:f2:17:7b:21:4b:7a:99:9c:6f:6e:c7:1f:
77:27:06:ee:43:59:36:a6:d7:0b:b6:75:de:66:85:8a:92:40:
81:8c:cf:99:e4:aa:9f:35:e8:64:f6:43:3b:02:c4:63:aa:89:
5c:6c:76:8c:99:b3:9f:f7:0f:49:7f:12:dc:ee:ee:b9:5c:18:
9d:e8:52:b2:59:55:de:fc:31:61:5e:d4:43:a3:04:75:29:0b:
dc:e0:5c:62:fd:09:dd:e9:68:d0:c6:3e:8d:80:ef:5b:ef:f0:
9a:aa:f7:7e:d3:33:ea:f1:8f:ca:9e:73:b9:bd:8a:13:76:3e:
d6:92:92:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:49:32 2025 by rpki-client