Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/AS213866.roa
File: AS213866.roa (raw, json)
Hash identifier: zACmDxwrLiX+TLpmLeMUT5evrPtDneNvZfpO1NfaQWw=
Subject key identifier: A7:BD:EC:CF:4D:0C:A4:BA:C4:71:61:08:EF:7E:61:E9:F3:59:2B:C6
Certificate issuer: /CN=c4ce7d8902405ba4598f84b6a41c27d722834b1c
Certificate serial: 19FC8116E62EDF4F3D84D1A2E331EE5F01C3A3EB
Authority key identifier: C4:CE:7D:89:02:40:5B:A4:59:8F:84:B6:A4:1C:27:D7:22:83:4B:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xM59iQJAW6RZj4S2pBwn1yKDSxw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/AS213866.roa
Signing time: Tue 03 Dec 2024 02:12:50 +0000
ROA not before: Tue 03 Dec 2024 02:07:50 +0000
ROA not after: Tue 02 Dec 2025 02:12:50 +0000
asID: 213866
IP address blocks: 2a0f:85c1:8f7::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:fc:81:16:e6:2e:df:4f:3d:84:d1:a2:e3:31:ee:5f:01:c3:a3:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4ce7d8902405ba4598f84b6a41c27d722834b1c
Validity
Not Before: Dec 3 02:07:50 2024 GMT
Not After : Dec 2 02:12:50 2025 GMT
Subject: CN=A7BDECCF4D0CA4BAC4716108EF7E61E9F3592BC6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:2b:94:af:1f:8b:59:e3:e1:f8:b7:85:84:c5:
ad:ab:9a:29:26:e3:d4:2d:e7:8e:48:06:27:57:f7:
78:87:18:34:39:e6:5e:a7:31:44:0c:4a:5f:22:48:
95:22:0f:23:73:da:9d:91:b3:02:e8:3c:90:08:62:
3e:71:d1:60:26:63:eb:71:fa:25:3a:56:2c:ea:4d:
c9:43:92:3f:6f:3a:9e:27:87:be:42:12:11:dc:2f:
f2:96:e3:6f:1b:ab:fc:5b:e1:74:e4:23:a8:91:1b:
d8:aa:ca:86:bc:a1:59:2e:19:79:d4:b2:47:e2:f2:
a3:08:73:03:66:73:d5:b2:74:71:0f:26:b5:d9:f9:
a4:67:b4:7e:55:38:73:5a:f2:7b:bf:9a:5d:98:f0:
68:b7:6b:01:6d:23:4e:2c:e9:73:f7:1d:38:d7:f8:
2a:4b:ec:c5:a8:c2:a7:d9:55:cd:a0:2c:2b:3a:c0:
71:ec:6c:e0:32:43:45:1c:61:eb:4a:48:2b:a3:b9:
31:ca:e2:2c:aa:58:d0:5e:61:87:af:c3:a1:de:c2:
68:fc:73:3d:b3:bd:39:0d:b4:13:7e:af:1b:4a:3b:
cd:0b:3a:b6:06:9a:5d:32:bf:9e:5a:f4:62:c8:b2:
70:16:ce:89:a7:45:89:89:65:76:b1:7a:2a:da:08:
ae:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:BD:EC:CF:4D:0C:A4:BA:C4:71:61:08:EF:7E:61:E9:F3:59:2B:C6
X509v3 Authority Key Identifier:
keyid:C4:CE:7D:89:02:40:5B:A4:59:8F:84:B6:A4:1C:27:D7:22:83:4B:1C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/C4CE7D8902405BA4598F84B6A41C27D722834B1C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xM59iQJAW6RZj4S2pBwn1yKDSxw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/AS213866.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:8f7::/48
Signature Algorithm: sha256WithRSAEncryption
2f:f5:09:5e:08:58:27:80:ba:46:4d:12:21:32:c9:f2:63:22:
de:b3:5d:36:a5:0d:05:86:ba:e5:99:5c:f6:15:b6:66:75:89:
a4:f6:e0:67:0b:69:38:98:23:a6:13:f1:3a:4a:e6:66:ea:a2:
8c:76:b5:95:51:61:a6:37:9f:93:0f:07:1a:1e:84:38:94:7c:
02:99:86:5b:c5:e8:1d:f2:15:60:71:08:92:40:c1:a1:11:fa:
1e:19:91:8c:f4:df:22:a3:bd:f4:85:d1:62:91:4e:e3:91:1b:
bb:51:b8:af:46:dd:c1:d9:e2:c7:6c:5b:c7:46:45:49:d8:82:
af:1b:44:6f:c1:13:5e:ae:b4:6e:99:f7:de:e9:89:88:fe:f7:
62:c5:ff:78:66:ba:7e:f5:2f:58:84:09:c1:81:b1:26:0a:c5:
09:64:46:e7:b9:02:f3:ad:1b:9e:e3:5b:52:34:ec:66:5d:4e:
66:15:53:ad:3e:ee:a0:da:73:16:6c:86:de:ad:b8:f0:33:8e:
a0:65:17:65:f7:32:f2:81:47:f7:ff:a1:84:23:0c:d7:ac:9c:
c5:40:94:e2:e0:f1:31:9d:ce:ca:e3:fb:42:7b:c4:6a:80:20:
a6:a5:4e:cc:4b:32:fe:ff:ee:22:b2:9a:f0:1d:22:ad:04:ee:
01:b0:a3:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 18:27:14 2025 by rpki-client