Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/72c405f1-c32d-47ce-8943-0752ed13d8ef/2/326130353a646663313a383230303a3a2f34302d3438203d3e20323136343532.roa
File: 326130353a646663313a383230303a3a2f34302d3438203d3e20323136343532.roa (raw, json)
Hash identifier: RXK+W3w1YvQu9ahIRwMIryYcMgQG39a2/hB4IK34E74=
Subject key identifier: FD:80:EE:DE:76:68:8C:89:1D:0D:99:F9:58:02:6F:99:FF:71:47:74
Certificate issuer: /CN=04F7D8E671AC7D0A0FEEB74E4BE9C9C13EB2954C
Certificate serial: 731C091B1E49CFCB79BA9B4CBDF35811574C2C9F
Authority key identifier: 04:F7:D8:E6:71:AC:7D:0A:0F:EE:B7:4E:4B:E9:C9:C1:3E:B2:95:4C
Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/04F7D8E671AC7D0A0FEEB74E4BE9C9C13EB2954C.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/72c405f1-c32d-47ce-8943-0752ed13d8ef/2/326130353a646663313a383230303a3a2f34302d3438203d3e20323136343532.roa
Signing time: Tue 13 Aug 2024 02:11:42 +0000
ROA not before: Tue 13 Aug 2024 02:06:42 +0000
ROA not after: Tue 12 Aug 2025 02:11:42 +0000
asID: 216452
IP address blocks: 2a05:dfc1:8200::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:1c:09:1b:1e:49:cf:cb:79:ba:9b:4c:bd:f3:58:11:57:4c:2c:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04F7D8E671AC7D0A0FEEB74E4BE9C9C13EB2954C
Validity
Not Before: Aug 13 02:06:42 2024 GMT
Not After : Aug 12 02:11:42 2025 GMT
Subject: CN=FD80EEDE76688C891D0D99F958026F99FF714774
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:da:d7:a6:93:2c:e7:0d:29:02:f6:da:ca:86:
54:b7:3c:1e:31:22:67:98:b9:5c:9a:bb:ff:b5:d6:
13:71:7e:e2:3e:36:41:cc:89:28:6c:07:fe:68:f5:
12:13:a8:9e:99:d4:a1:7a:6d:d2:50:0f:01:e7:08:
a6:f2:c8:a1:3b:07:6f:93:34:be:ec:ae:c7:e9:f6:
c4:81:3f:d8:96:c0:36:84:8b:47:9c:77:7b:9a:86:
8d:44:44:d0:4f:db:21:66:76:9c:f2:43:7a:b6:0c:
4f:87:3a:82:df:0b:92:81:59:8b:ce:2a:d1:f3:67:
d4:cf:4e:cd:bc:02:63:3c:da:28:2f:97:e2:98:e8:
83:a1:39:0d:24:5a:80:76:24:35:c9:e6:65:8a:37:
a2:62:1d:31:e1:15:ce:5a:74:94:dd:d5:4f:78:83:
30:e8:3e:df:28:80:c6:09:35:49:17:47:ae:f5:22:
5a:54:af:39:d7:c1:48:f0:b8:28:77:41:90:29:91:
06:94:80:ee:4e:31:de:54:f4:2c:b2:66:f1:83:ba:
70:fd:5a:77:5a:28:5e:0c:44:4b:7a:13:ca:9b:dc:
92:e2:71:3f:f0:3c:9d:c2:f6:fd:54:bf:e9:41:f5:
e6:f5:12:08:c7:e9:a3:27:e2:d6:87:72:e5:e7:34:
04:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:80:EE:DE:76:68:8C:89:1D:0D:99:F9:58:02:6F:99:FF:71:47:74
X509v3 Authority Key Identifier:
keyid:04:F7:D8:E6:71:AC:7D:0A:0F:EE:B7:4E:4B:E9:C9:C1:3E:B2:95:4C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/72c405f1-c32d-47ce-8943-0752ed13d8ef/2/04F7D8E671AC7D0A0FEEB74E4BE9C9C13EB2954C.crl
Authority Information Access:
CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/04F7D8E671AC7D0A0FEEB74E4BE9C9C13EB2954C.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/72c405f1-c32d-47ce-8943-0752ed13d8ef/2/326130353a646663313a383230303a3a2f34302d3438203d3e20323136343532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:8200::/40
Signature Algorithm: sha256WithRSAEncryption
25:47:d6:f8:ad:89:25:05:44:7d:89:4b:ee:bd:83:8b:f6:c7:
6d:c0:27:27:e2:22:94:9c:da:76:e3:e7:a7:27:fc:2f:5a:cb:
4b:7e:9e:51:31:56:48:e1:9b:9a:74:46:8f:f6:d0:84:eb:9e:
ce:8d:17:c3:62:9a:61:bc:56:97:1e:be:ec:31:49:75:0c:9f:
06:3a:5e:a7:cc:e1:4c:ec:bb:af:1c:c1:5c:4b:45:29:38:ec:
4e:84:91:e6:12:d8:41:e4:2b:7e:c5:2c:eb:24:a4:3a:e6:c0:
bd:6f:4e:67:c1:82:c7:e2:48:56:8d:0d:c4:f1:9c:03:05:8a:
d8:c1:23:01:22:7d:2a:52:c4:e9:b8:c5:ae:1c:e3:92:cd:ac:
f5:0d:38:b2:18:67:b3:6f:09:97:bf:18:ec:08:91:ef:40:b2:
c5:9c:a5:d3:a6:0d:29:9d:39:fe:94:3a:20:b8:4d:3d:79:49:
5e:f9:f0:8f:e1:e2:38:6f:a3:e7:46:80:81:1b:99:2d:2c:e4:
91:a3:b7:87:14:fa:b1:1a:5f:86:da:a9:27:14:87:48:6c:8d:
4c:98:f0:be:67:44:49:40:04:5f:c5:64:3f:6e:54:c3:3a:fa:
c0:30:e6:b4:e8:df:51:2c:c9:06:e0:ba:68:3d:9e:a6:5b:db:
b5:38:d0:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:37:25 2025 by rpki-client