Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS30700.roa
File: AS30700.roa (raw, json)
Hash identifier: tWG73nRJLbDHbieq5VdbyJR2s6QlqVls7syBmJkJbJI=
Subject key identifier: 64:32:89:0F:F9:9A:83:85:7B:9C:EA:BE:1B:CE:2D:A0:10:CA:85:60
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 0A86BDBE34F8ECCE9943D99332B7A93F5FFD7427
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS30700.roa
Signing time: Tue 04 Feb 2025 00:17:10 +0000
ROA not before: Tue 04 Feb 2025 00:12:10 +0000
ROA not after: Tue 03 Feb 2026 00:17:10 +0000
asID: 30700
IP address blocks: 2a14:7581:9de0::/43 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:86:bd:be:34:f8:ec:ce:99:43:d9:93:32:b7:a9:3f:5f:fd:74:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Feb 4 00:12:10 2025 GMT
Not After : Feb 3 00:17:10 2026 GMT
Subject: CN=6432890FF99A83857B9CEABE1BCE2DA010CA8560
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:d4:e4:52:03:f9:2d:9e:aa:82:a5:32:a1:c9:
a1:cc:55:60:d5:7f:92:58:98:2a:06:53:b6:89:46:
fa:d8:04:48:ba:99:0d:2c:95:1d:4d:e0:b3:cd:50:
66:6a:1f:20:b6:b7:0a:c0:0f:53:b5:cd:62:11:1f:
b7:30:e4:59:37:4a:25:f9:86:fc:8b:95:d3:21:36:
99:61:79:b6:be:a4:13:39:db:31:93:8e:11:54:38:
61:ad:d5:de:1e:90:35:d8:71:e7:30:ef:fd:d4:88:
d5:22:c4:77:bc:d6:f8:21:d7:cd:4b:17:dd:36:21:
5c:86:ba:eb:a7:d0:35:32:4b:dd:b5:4f:7c:b0:e5:
1c:52:c7:8c:09:21:58:48:b3:2c:91:27:88:65:b3:
9b:00:42:7a:b8:49:79:f9:fc:6c:3c:21:f1:43:2b:
5d:ab:2b:4d:bb:3a:4b:d9:d7:eb:56:7e:d8:20:5c:
bf:75:0f:1b:a2:98:35:6a:0e:32:da:04:0c:d6:e4:
df:09:e8:20:b0:58:64:b4:f9:49:7e:60:b1:52:a4:
fb:e0:3f:fb:58:a2:40:af:4e:63:83:66:8e:e7:79:
5a:af:28:7f:74:08:fe:39:45:b7:a0:97:a8:b6:4f:
6b:b6:76:85:75:46:84:a7:49:26:b1:e0:d6:8e:7b:
ff:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:32:89:0F:F9:9A:83:85:7B:9C:EA:BE:1B:CE:2D:A0:10:CA:85:60
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS30700.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:9de0::/43
Signature Algorithm: sha256WithRSAEncryption
11:d7:0f:dd:cd:6a:3f:77:84:86:f5:b3:a7:2e:b3:a8:e3:c0:
fc:22:62:c0:4f:f3:22:b6:31:5f:5b:af:58:23:5b:29:5d:73:
64:30:7e:ec:f4:27:f1:f4:99:15:0b:50:fc:e5:71:ba:3c:7f:
08:69:4d:5f:07:45:48:00:60:8d:75:da:a5:00:87:b1:93:c9:
1f:3c:7c:60:d6:98:31:2d:da:7b:5f:b5:bf:18:33:5f:36:08:
a4:e6:a5:94:f5:57:fe:43:41:bd:77:7a:0e:79:a6:18:7b:47:
a2:fb:7d:6b:5c:c8:70:48:1b:16:70:d1:3e:31:7a:05:c2:e3:
68:5f:50:36:de:d2:1e:0c:6f:48:5e:c3:8b:f6:e0:4c:ed:73:
f2:47:65:8a:3f:d9:cb:fc:01:5b:d0:33:32:57:ae:60:f8:2e:
27:88:4e:83:45:7e:04:4e:89:bd:7b:e1:2f:fa:ea:8f:f1:5f:
45:9c:74:b1:ae:bd:06:9c:dc:4c:77:eb:9e:07:55:dc:b4:3d:
33:f2:54:de:72:48:9d:7b:7f:43:cb:54:bb:ad:59:fc:e0:95:
e7:89:03:75:e7:74:84:4f:61:75:a5:87:4d:f8:c4:af:fb:9d:
0a:96:85:87:2b:a9:a0:17:6b:b2:ae:7e:86:df:fc:18:38:c7:
58:e8:60:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:41:58 2025 by rpki-client