Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a32663a3a2f34382d3438203d3e20323135393533.roa
File: 326131313a323963303a32663a3a2f34382d3438203d3e20323135393533.roa (raw, json)
Hash identifier: dB1J99dnv7/M3E0OmDhIVi1fNrpIGMzzSMB5FiSgPqI=
Subject key identifier: 53:CA:00:80:03:1D:28:47:FD:A9:22:1F:20:75:56:3D:BE:A3:DB:94
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 2F8BC8CE562412D6A67370586521BDA5402B6A44
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a32663a3a2f34382d3438203d3e20323135393533.roa
Signing time: Tue 03 Dec 2024 11:01:35 +0000
ROA not before: Tue 03 Dec 2024 10:56:35 +0000
ROA not after: Tue 02 Dec 2025 11:01:35 +0000
asID: 215953
IP address blocks: 2a11:29c0:2f::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:8b:c8:ce:56:24:12:d6:a6:73:70:58:65:21:bd:a5:40:2b:6a:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Dec 3 10:56:35 2024 GMT
Not After : Dec 2 11:01:35 2025 GMT
Subject: CN=53CA0080031D2847FDA9221F2075563DBEA3DB94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:6a:64:5c:96:47:51:25:24:34:26:1b:c2:11:
48:9f:2f:3a:87:12:a3:6f:45:60:ee:ba:fc:32:c0:
8d:72:be:6c:ef:84:ce:1a:dc:a1:f8:1a:66:2f:d4:
f6:0c:46:d7:ed:90:84:f1:0c:6a:0b:78:bc:d1:07:
09:b8:ba:4c:7f:da:01:d2:e0:d1:1b:2e:24:f1:f2:
0f:c6:46:2d:58:87:a9:4a:db:52:32:a3:52:e4:6e:
14:ee:65:37:d7:d0:90:bd:65:f3:fb:0e:bc:c0:e1:
05:2d:97:29:77:a3:61:d5:5d:ed:37:7e:0d:6b:2c:
16:b4:24:fa:c6:97:ad:59:af:d9:02:57:4f:b2:7a:
07:bb:8d:4f:0a:ac:30:66:93:e2:e6:6f:c0:86:b0:
6a:48:40:0c:5e:df:f4:8e:f3:7b:dc:3e:1e:4e:26:
14:a4:b7:dc:b9:42:bf:a1:e7:67:83:a9:2b:b9:82:
a7:d8:cc:d6:7a:30:5b:70:b3:20:d9:84:e3:0a:aa:
df:70:75:9f:81:75:34:20:0c:bd:62:d7:6d:0a:98:
f3:88:3c:c8:a1:06:44:75:08:bb:a1:06:46:af:8c:
6a:58:44:fe:b1:a2:73:df:7d:4a:44:65:5e:aa:a0:
cb:7e:83:ea:eb:9b:08:ab:4c:8e:61:c8:43:af:9b:
4e:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:CA:00:80:03:1D:28:47:FD:A9:22:1F:20:75:56:3D:BE:A3:DB:94
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a32663a3a2f34382d3438203d3e20323135393533.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:2f::/48
Signature Algorithm: sha256WithRSAEncryption
98:f9:b3:74:46:7e:94:0b:f1:64:89:08:46:f2:2d:b2:b4:c2:
99:7f:bd:63:2a:e1:a5:38:b2:d2:02:ed:7d:ce:b5:1f:d9:99:
1e:d0:f9:5e:47:cc:5a:fb:6e:c4:ae:a6:bf:a4:2c:f5:44:9b:
91:42:75:03:04:a4:c7:5c:5d:c5:e6:53:38:00:5b:03:44:9f:
14:c1:93:74:82:03:2e:46:3c:b1:50:1b:34:f1:d5:17:f9:31:
54:37:cb:fb:2e:1c:48:81:9a:2f:a1:fd:65:90:49:b3:52:0f:
49:06:37:49:71:59:f7:b1:2a:47:cc:16:d2:14:e1:91:e5:5c:
fc:80:d6:33:6c:fe:08:14:1d:08:29:3c:96:6d:13:3c:96:e5:
85:7f:31:47:a8:c4:3d:1b:19:81:01:72:f4:f1:97:ab:9a:b6:
4d:27:a3:84:f7:76:a2:af:ae:75:d9:05:b1:b5:8e:83:67:1d:
5a:d3:f9:97:1c:ae:4b:1a:36:e8:4c:3d:86:fc:65:3b:06:a8:
e0:f3:d4:95:22:14:e8:2f:9b:d6:b0:75:73:d3:e4:72:c8:be:
b8:fb:11:7f:e4:e8:e2:5d:9a:59:dc:f6:c3:13:4d:10:41:f4:
d8:ad:7a:33:ae:38:db:39:19:35:fe:d9:6d:79:a8:75:79:56:
3a:18:3a:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 00:19:49 2025 by rpki-client