Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS36832.roa
File: AS36832.roa (raw, json)
Hash identifier: 5QZeTMdNe63T9YcY/MLiN65wBLCwo9Abn77XIxxq5aQ=
Subject key identifier: 6A:EA:3F:0B:BD:3A:B6:EC:CC:2A:E1:72:E4:5E:46:3C:B3:29:19:11
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 37E1C798A7DF6A8C985B662236927315456AB91F
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS36832.roa
Signing time: Tue 04 Feb 2025 00:17:08 +0000
ROA not before: Tue 04 Feb 2025 00:12:08 +0000
ROA not after: Tue 03 Feb 2026 00:17:08 +0000
asID: 36832
IP address blocks: 2a14:7580:e100::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:e1:c7:98:a7:df:6a:8c:98:5b:66:22:36:92:73:15:45:6a:b9:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Feb 4 00:12:08 2025 GMT
Not After : Feb 3 00:17:08 2026 GMT
Subject: CN=6AEA3F0BBD3AB6ECCC2AE172E45E463CB3291911
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:aa:b8:75:cc:fa:b4:82:43:63:02:35:3c:b7:
d8:d8:ac:83:8b:58:8c:7f:35:9c:c6:c4:f4:57:ae:
39:93:9f:57:a1:d0:03:71:bb:5c:6b:58:b3:73:87:
97:7a:05:c5:65:7a:c0:24:9e:07:0c:4c:ba:7d:07:
49:8b:1e:47:d8:68:26:d0:43:e8:a6:63:0c:69:18:
1f:fd:e8:85:99:cd:cd:5a:02:e3:b8:14:68:ce:42:
8a:26:b3:a9:a4:32:20:75:dd:02:a0:d4:36:e4:1f:
c1:11:d9:57:c2:d3:14:9c:6b:2a:6b:3c:a6:b7:81:
e4:6c:30:a2:c7:fd:83:9c:9b:af:01:3f:c7:75:cd:
24:e0:c0:15:3d:3c:8b:ed:d7:d1:9c:45:c2:56:c6:
f8:32:17:d3:71:d1:fb:75:de:21:c3:26:ff:7e:4e:
39:f8:b0:09:4c:e6:0f:57:4d:46:fc:79:b1:7e:ff:
6e:cb:e2:6d:2b:0a:ed:fe:48:0a:ee:d9:cc:ab:f7:
e8:47:62:34:88:03:74:4f:06:f3:2b:ec:84:23:e9:
3b:b4:a0:50:2c:71:25:0e:75:15:7d:ae:47:27:6d:
be:4d:ce:b4:71:af:fc:2b:e4:dd:7c:e8:50:b3:94:
ab:39:49:14:3f:b5:61:2a:f3:d0:10:c4:22:90:6d:
ae:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:EA:3F:0B:BD:3A:B6:EC:CC:2A:E1:72:E4:5E:46:3C:B3:29:19:11
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS36832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7580:e100::/40
Signature Algorithm: sha256WithRSAEncryption
6a:c5:db:ce:35:0e:c6:f7:7a:1d:f2:0b:51:75:6c:59:5d:d3:
36:c1:ea:dc:b3:61:87:46:3f:eb:66:67:1d:ed:23:f6:54:bc:
05:23:b8:00:70:ed:e7:b8:1e:f8:c3:72:aa:ca:cb:d1:c3:6e:
1e:be:a7:7a:b0:5c:8f:76:06:5f:e8:91:00:f5:83:3e:ff:88:
40:31:2b:88:d0:be:c7:52:3e:5e:9c:93:05:68:2b:e1:5a:cc:
4d:37:a0:71:dc:e4:45:be:5a:da:95:e0:95:50:e8:5c:18:a8:
be:e2:cc:a6:be:f9:60:65:bd:2d:a5:75:f1:34:8e:a9:29:60:
db:29:41:ab:c7:70:2e:93:d4:f9:ab:d7:a0:98:cd:ef:2f:25:
fb:5d:64:83:43:2d:9d:b1:3d:c5:d2:9a:3e:ec:27:a8:60:17:
3b:ad:40:b7:7f:69:9d:8e:89:09:8c:2d:d3:2b:01:e2:25:e2:
92:68:63:66:1a:d5:ca:95:8c:50:e5:3e:cf:5a:de:cc:d1:b3:
db:5c:be:80:22:3c:2d:f1:96:af:b4:86:10:d1:26:48:3a:a2:
1a:9f:9c:e6:62:d1:53:f2:87:91:fc:dc:c4:b9:48:12:ca:63:
4c:b5:98:9d:1c:1d:36:e2:5c:20:77:7b:3e:14:03:31:e8:a0:
6e:be:22:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:32:21 2025 by rpki-client