Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336532303a3a2f34342d3438203d3e20323135343738.roa
File: 326131313a323963303a336532303a3a2f34342d3438203d3e20323135343738.roa (raw, json)
Hash identifier: 5Q0jhk3rAYcf6XvuHOGJTc0n6PY7Aa4+TliAfyuHX4g=
Subject key identifier: EA:E1:5F:10:61:E1:2B:46:E3:22:45:6E:E1:7A:BD:52:5D:FC:5E:0F
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 4014CD68C415B191F92D34E0FFB47F00630CD84F
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336532303a3a2f34342d3438203d3e20323135343738.roa
Signing time: Wed 29 Jan 2025 23:01:40 +0000
ROA not before: Wed 29 Jan 2025 22:56:40 +0000
ROA not after: Wed 28 Jan 2026 23:01:40 +0000
asID: 215478
IP address blocks: 2a11:29c0:3e20::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:14:cd:68:c4:15:b1:91:f9:2d:34:e0:ff:b4:7f:00:63:0c:d8:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Jan 29 22:56:40 2025 GMT
Not After : Jan 28 23:01:40 2026 GMT
Subject: CN=EAE15F1061E12B46E322456EE17ABD525DFC5E0F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:a8:44:42:22:a9:4d:bf:97:06:d9:ce:7c:fa:
3f:05:d2:f4:24:18:82:36:8d:00:25:c9:19:c8:35:
59:fe:dc:af:b8:9e:4d:8f:9d:9f:72:55:9e:38:ed:
88:bc:2c:fc:c4:63:d7:98:c9:19:0e:45:23:ca:1c:
95:4f:66:42:db:be:64:6a:d4:73:4c:10:b2:96:2a:
f7:e6:3c:b8:c4:c9:89:c0:cc:9f:9f:ae:d0:98:9d:
56:32:dc:8d:d6:8a:2f:c5:73:e9:94:1f:66:18:32:
b9:f5:9a:35:e4:ad:aa:1b:5b:df:72:ff:5e:09:5f:
36:c6:4b:14:24:27:77:e5:c8:75:bf:05:a8:84:03:
d2:16:66:79:14:e0:d5:cd:fe:e7:84:eb:0b:52:13:
7e:2d:b6:a0:ac:e9:c7:4f:24:db:2c:22:19:91:90:
64:94:2b:d8:f1:c2:ec:b5:88:20:7c:f2:69:d4:91:
45:97:51:9e:ab:ab:50:8c:6f:c3:0b:cf:86:aa:d6:
f8:56:fd:a5:2a:51:d0:e1:bb:10:4a:2f:38:4d:66:
65:a1:b6:c5:37:12:e3:3d:df:4d:90:6d:1e:d9:d8:
cb:75:15:d2:02:b5:93:a9:cb:15:56:3b:fb:39:06:
4e:9e:39:99:f5:ee:b3:87:80:88:a2:62:a5:53:76:
16:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:E1:5F:10:61:E1:2B:46:E3:22:45:6E:E1:7A:BD:52:5D:FC:5E:0F
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336532303a3a2f34342d3438203d3e20323135343738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:3e20::/44
Signature Algorithm: sha256WithRSAEncryption
96:09:ad:e5:ba:b4:35:db:29:54:b2:c5:1b:bd:f1:30:b5:d1:
02:42:e4:32:ef:a3:4d:60:dc:a2:dd:de:8a:2c:0e:08:d9:ae:
1a:76:50:35:93:af:a8:0b:56:3c:d1:92:c5:1c:65:78:91:4a:
04:a7:97:8e:6b:74:be:d1:8c:09:c7:11:ce:84:6e:5c:ed:b7:
64:19:c1:d7:11:e2:b1:66:79:03:06:14:d4:8f:5d:27:11:96:
56:35:61:bc:3a:f8:94:00:f3:54:83:5b:45:f8:9c:4e:cc:ef:
0a:78:4d:81:6c:bb:f9:73:c0:ae:79:76:48:8f:a1:1a:30:9a:
4e:bb:89:a8:b3:fa:18:eb:f4:ee:6d:e8:c7:d9:21:9d:8e:b0:
ec:6b:ad:bf:14:08:eb:fc:82:3b:15:29:9a:6e:58:7f:0a:5a:
68:b5:7e:3b:82:bc:ef:2e:3c:a4:d4:82:a9:cc:26:ca:68:fc:
49:9d:aa:b6:d1:38:7e:96:37:55:a4:d0:8c:ae:6c:11:08:d6:
89:50:47:62:9d:eb:97:cb:24:b3:01:fc:d6:06:79:ae:7a:8f:
47:19:82:3c:12:b5:07:7b:9b:8b:04:0a:de:a2:1e:0a:ec:45:
d9:8d:32:e5:3e:42:84:32:87:a1:c4:f6:1c:e7:f8:05:c9:20:
89:42:dc:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:42:37 2025 by rpki-client