Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a33373a3a2f34382d3438203d3e20323135363635.roa
File: 326131313a323963303a33373a3a2f34382d3438203d3e20323135363635.roa (raw, json)
Hash identifier: eVa0JSY+ceThCBUR4qlevWSoHJuca27AKbuP339a0Ls=
Subject key identifier: B4:0C:C0:97:EB:48:82:90:31:83:9F:94:A6:98:94:CE:2F:5D:47:85
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 2D719BF1B73B7B632042DF7BAC1CC36B3C2EE57F
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a33373a3a2f34382d3438203d3e20323135363635.roa
Signing time: Tue 24 Dec 2024 20:01:38 +0000
ROA not before: Tue 24 Dec 2024 19:56:38 +0000
ROA not after: Tue 23 Dec 2025 20:01:38 +0000
asID: 215665
IP address blocks: 2a11:29c0:37::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:71:9b:f1:b7:3b:7b:63:20:42:df:7b:ac:1c:c3:6b:3c:2e:e5:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Dec 24 19:56:38 2024 GMT
Not After : Dec 23 20:01:38 2025 GMT
Subject: CN=B40CC097EB48829031839F94A69894CE2F5D4785
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:32:7d:9c:9e:c6:52:08:32:6a:8e:f0:c6:15:
85:af:19:b0:3f:d7:d6:7f:f3:20:8c:fa:e4:1c:87:
ff:09:c8:e2:40:09:7b:4d:80:9c:6e:0e:18:53:79:
64:51:8d:b3:73:b9:7f:61:1f:92:7c:94:3c:f4:6a:
f6:00:61:17:13:35:14:74:c4:00:a4:8d:a8:fc:c6:
a8:b2:78:1e:45:17:37:e7:f1:0c:37:da:cb:8e:86:
6a:be:45:27:e3:4f:67:6a:82:f2:92:cd:6d:0c:97:
ec:30:37:4c:f1:68:e4:54:54:cb:bf:7f:6c:c9:56:
28:7c:6d:79:0b:99:40:c0:d2:57:5c:5d:ab:04:1f:
df:0c:0e:8a:ac:81:53:d4:e2:ca:58:8e:c9:55:7c:
06:8e:b9:af:e9:a2:28:94:6b:6d:04:81:f0:8c:b9:
73:71:00:b3:8c:66:c6:fd:ec:5e:58:36:37:93:4e:
97:cb:59:7f:ed:39:c5:3f:b2:10:2d:dd:b6:89:da:
0b:97:ab:2b:e7:62:46:d6:0c:ef:bb:94:20:48:f5:
cc:a3:93:06:7d:f4:78:e0:75:5a:85:82:77:09:ef:
28:ff:01:cf:21:07:63:84:25:9e:5e:88:7c:ee:0e:
ae:9b:a0:2f:08:cd:78:07:01:d1:dd:89:e2:74:2b:
d2:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:0C:C0:97:EB:48:82:90:31:83:9F:94:A6:98:94:CE:2F:5D:47:85
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a33373a3a2f34382d3438203d3e20323135363635.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:37::/48
Signature Algorithm: sha256WithRSAEncryption
58:b9:d0:e0:9a:c1:c7:4a:4a:27:ae:ee:16:9d:1b:f9:53:6e:
76:82:6c:c3:46:bc:d1:df:21:82:68:30:2b:7a:f9:7b:96:7b:
f5:b7:95:ae:43:b5:98:be:cd:39:08:d4:af:49:24:77:5b:11:
0c:d3:59:41:d3:c2:ac:01:ee:cc:19:ca:6e:f1:68:43:2e:1c:
56:02:89:a0:c6:80:f5:7e:cd:69:9f:fd:bb:07:35:35:33:3b:
75:1b:3c:db:60:75:44:1c:cb:95:6c:29:dd:14:96:18:39:22:
61:94:66:b9:4e:ce:ff:42:a2:07:66:50:2d:81:95:9f:6e:06:
c2:e1:76:7f:1c:88:92:34:2b:49:d6:ea:54:19:5a:cd:15:21:
4c:74:66:67:6a:ae:e0:4b:d4:f4:83:45:42:93:99:39:f7:1b:
d1:3e:3f:5b:92:7d:cc:90:c3:53:b6:76:d5:19:63:a3:28:dd:
46:0f:07:b8:38:6d:9c:71:04:a4:e0:98:61:36:cf:4b:2f:eb:
b8:1d:b1:fd:8f:1e:cf:66:54:2a:c5:cd:76:4f:63:00:71:98:
25:44:eb:1e:3f:3c:a0:50:c9:dd:ac:7d:cf:b7:6c:52:1c:d6:
a7:ce:e3:d9:43:70:ff:cc:0a:bb:76:da:1d:3c:22:54:13:38:
f7:70:86:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:42:30 2025 by rpki-client