Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393330303a3a2f34302d3438203d3e20323135333634.roa
File: 326131343a373538313a393330303a3a2f34302d3438203d3e20323135333634.roa (raw, json)
Hash identifier: z6xFfxTzAOT/hYwAJ2DQkeBnVgxJoH9HtbYNG39WwF0=
Subject key identifier: 8D:10:2F:A5:B5:79:B0:A3:2C:84:22:45:7C:C9:69:B3:AF:D0:3A:AE
Certificate issuer: /CN=A1EE5D09A0F5D0D87611013175C62E35777DA926
Certificate serial: 354EB2AFC97A734815C2A50A6167B45B3964F85E
Authority key identifier: A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393330303a3a2f34302d3438203d3e20323135333634.roa
Signing time: Thu 22 Aug 2024 16:56:47 +0000
ROA not before: Thu 22 Aug 2024 16:51:47 +0000
ROA not after: Thu 21 Aug 2025 16:56:47 +0000
asID: 215364
IP address blocks: 2a14:7581:9300::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:4e:b2:af:c9:7a:73:48:15:c2:a5:0a:61:67:b4:5b:39:64:f8:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A1EE5D09A0F5D0D87611013175C62E35777DA926
Validity
Not Before: Aug 22 16:51:47 2024 GMT
Not After : Aug 21 16:56:47 2025 GMT
Subject: CN=8D102FA5B579B0A32C8422457CC969B3AFD03AAE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c4:44:5e:f1:c0:29:e3:76:8f:b5:01:00:dd:
4f:be:76:7c:37:35:53:82:02:5a:e6:1f:bd:35:a1:
70:40:cb:1e:cd:11:1b:fd:90:df:84:15:b9:38:02:
7e:f6:08:37:57:fe:f6:65:7b:48:e2:ff:41:f8:e2:
64:e2:44:fe:52:16:07:61:83:66:69:08:e4:b9:70:
3d:95:83:83:08:0f:b7:1e:f8:43:51:7a:20:bc:bf:
fd:d5:ca:6a:16:15:40:f6:2a:44:80:1d:96:d9:8d:
21:9c:6c:4c:f1:68:c0:3b:ad:df:ce:92:3b:5d:68:
b6:91:e1:39:fa:39:3f:9d:ad:a0:a9:db:01:da:32:
1b:de:52:12:63:49:00:fc:80:27:b1:dc:fb:1a:f4:
43:8b:4a:07:99:26:bd:21:ae:6e:f0:5a:f4:42:c4:
05:9b:e6:98:fd:03:8f:b5:c0:95:96:41:5d:ff:d2:
58:c6:d6:ab:d7:39:23:40:7f:34:8a:ce:d9:ac:01:
29:af:af:b6:9e:b1:f2:bf:ba:bc:20:12:d6:8b:3b:
b1:fa:84:0b:83:9e:90:d7:83:c7:17:d5:f2:de:28:
49:77:07:94:71:2f:96:80:7d:f9:f4:61:d4:b5:69:
26:cc:3b:17:02:b8:61:74:9b:6f:76:3f:9b:71:86:
75:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:10:2F:A5:B5:79:B0:A3:2C:84:22:45:7C:C9:69:B3:AF:D0:3A:AE
X509v3 Authority Key Identifier:
keyid:A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393330303a3a2f34302d3438203d3e20323135333634.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:9300::/40
Signature Algorithm: sha256WithRSAEncryption
67:93:8b:50:9b:74:11:53:9c:a8:f9:af:76:49:0f:cc:35:da:
c0:ee:bd:b9:4b:1d:be:f4:49:3f:cd:a9:8a:42:42:6a:36:65:
ed:52:94:47:b2:56:3f:8b:64:5b:8c:fc:d2:d2:8f:0c:42:f9:
17:18:12:aa:1c:52:6e:8d:fd:70:56:ff:f7:ec:f9:52:03:a2:
93:68:38:12:b4:00:e5:62:2a:9d:a2:2b:49:59:51:8a:22:b4:
fb:87:ef:47:8f:8d:88:f1:dc:7c:8a:dd:a1:b8:6d:ef:33:f4:
b1:48:75:f9:f3:2b:61:10:9b:76:93:6e:93:15:70:00:10:d4:
e9:f7:df:b9:e1:8a:f4:f2:92:52:33:6f:2f:ec:f4:45:30:c5:
f1:4d:c6:6f:16:b3:d5:d1:4f:bd:fd:bf:b7:bc:75:95:77:0a:
26:cb:96:af:c9:88:4d:99:7f:31:f0:65:8b:48:8c:27:99:20:
2d:fa:25:ad:d5:3d:d6:1f:72:81:00:42:10:58:cb:39:33:80:
2c:93:20:42:84:7e:8b:96:6e:d4:df:c6:98:72:37:71:a9:ee:
1e:3e:07:24:ab:c8:f3:ff:40:cb:74:cb:27:b1:79:c4:c7:67:
e9:4d:01:68:37:31:13:3c:96:5a:76:a4:1d:80:7e:61:c5:e7:
7e:26:5b:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:39:44 2025 by rpki-client