Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a34313a3a2f34382d3438203d3e20323135343534.roa
File: 326131313a323963303a34313a3a2f34382d3438203d3e20323135343534.roa (raw, json)
Hash identifier: HTcI86MyTRLlKAGgizTu8PRK0RX+5TyQTTa/idAOdE4=
Subject key identifier: 59:E6:E1:5F:98:76:CC:16:37:5C:C7:21:D8:80:61:D4:01:64:F6:36
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 726171502CCFAEE271B7B93C8BC72483F6CFAA55
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a34313a3a2f34382d3438203d3e20323135343534.roa
Signing time: Tue 21 Jan 2025 11:01:40 +0000
ROA not before: Tue 21 Jan 2025 10:56:40 +0000
ROA not after: Tue 20 Jan 2026 11:01:40 +0000
asID: 215454
IP address blocks: 2a11:29c0:41::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:61:71:50:2c:cf:ae:e2:71:b7:b9:3c:8b:c7:24:83:f6:cf:aa:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Jan 21 10:56:40 2025 GMT
Not After : Jan 20 11:01:40 2026 GMT
Subject: CN=59E6E15F9876CC16375CC721D88061D40164F636
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:0a:32:d0:31:39:d9:ba:3a:ce:f7:ef:20:b1:
27:b9:82:b4:d1:44:b7:f0:a1:9f:b1:78:d1:cb:b9:
2d:ba:97:2d:f4:cf:af:c2:93:b8:0a:02:c9:82:1f:
ee:bf:2e:4e:cf:66:4b:1e:79:89:ff:71:d2:4d:a9:
b6:43:f5:d8:90:a7:99:6d:61:a3:ec:2c:69:26:b7:
94:c7:58:ca:5f:16:38:5c:9b:f9:fe:58:49:a5:fa:
61:d8:85:73:a2:d1:24:a8:e9:10:c3:4e:63:2e:29:
d7:a6:83:c6:61:f1:74:e6:d7:05:f5:7f:99:17:cd:
d4:6e:68:0e:e8:27:fd:d9:6e:9a:f3:bb:97:a8:af:
17:10:72:26:04:2e:03:e0:ec:8a:fd:7e:03:52:11:
ab:df:02:81:b6:ce:43:11:13:8a:7d:f1:1a:05:11:
43:b5:06:bb:69:a5:8d:e6:90:c9:08:cb:29:94:d8:
3e:7f:2f:d9:98:83:18:57:23:22:18:81:9e:07:2b:
30:35:70:34:b9:2b:c4:0d:90:e7:66:be:67:da:ed:
f2:07:fb:14:ca:ca:f1:ea:5e:6d:2e:39:29:5a:16:
0e:82:90:a2:a5:17:f1:7b:3c:0d:c1:b4:8a:df:7e:
05:14:81:54:b2:ed:5c:8f:48:95:33:9d:9b:d1:b1:
f7:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:E6:E1:5F:98:76:CC:16:37:5C:C7:21:D8:80:61:D4:01:64:F6:36
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a34313a3a2f34382d3438203d3e20323135343534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:41::/48
Signature Algorithm: sha256WithRSAEncryption
2d:ce:bd:54:a4:97:e6:13:71:ba:30:1c:45:32:41:27:2f:18:
49:7d:a8:c9:1a:7b:f0:fd:15:f2:9b:d0:18:02:4d:af:6a:bc:
fe:53:93:bb:79:09:e0:f0:fa:8d:22:aa:da:c6:1b:39:67:89:
c3:91:96:7c:f7:d7:65:72:74:e4:29:0a:41:8f:65:ad:88:e3:
59:ca:e4:c2:62:4a:a5:69:6c:35:f7:50:a5:99:06:e6:09:e7:
44:f2:f2:9c:24:4f:b6:3f:dc:5f:71:1b:54:01:2e:ed:ae:e1:
5d:e7:6b:2b:e2:a4:91:9e:f9:b3:e6:b8:4c:0a:e2:9a:da:f1:
fb:4c:26:04:66:32:03:de:ed:3b:03:54:fc:3e:f8:79:16:c6:
9e:f7:97:59:b8:cb:cf:b5:a1:7b:9e:54:de:e1:56:d3:d0:bd:
f2:45:2b:dc:c3:51:13:d3:a5:96:5b:e8:1f:d0:ad:96:ef:aa:
9d:b1:3c:c9:bd:fd:3c:df:39:68:21:05:cf:7b:3c:ce:9d:3b:
18:3f:d0:f9:cf:f4:43:a2:2e:4d:52:13:34:c7:12:f9:23:72:
d3:5b:e8:fb:d3:ce:94:59:b8:15:37:36:29:96:93:ea:d4:de:
58:d1:ce:69:bb:3e:85:1b:f8:b3:a4:5e:05:98:81:dd:5d:67:
2c:8c:b4:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 02:39:42 2025 by rpki-client