Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/3/326131343a313463313a3130303a3a2f34382d3438203d3e203531303139.roa
File: 326131343a313463313a3130303a3a2f34382d3438203d3e203531303139.roa (raw, json)
Hash identifier: CF0jWSCzZFUy1Fafe137rlHbiCFDPVBfanWNlQQSeOA=
Subject key identifier: 25:A7:79:C9:2F:17:A7:7F:7F:FA:6D:E5:60:09:05:3F:D7:C5:F4:6B
Certificate issuer: /CN=58E92F2C3859C2D0EF322A871688CB22928E2F3E
Certificate serial: 3178AFBFCD36595C577BAE059EE0085C03279EFF
Authority key identifier: 58:E9:2F:2C:38:59:C2:D0:EF:32:2A:87:16:88:CB:22:92:8E:2F:3E
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/69bbfdcf-35cd-4524-8ffa-3005b0b69a29/0/58E92F2C3859C2D0EF322A871688CB22928E2F3E.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/3/326131343a313463313a3130303a3a2f34382d3438203d3e203531303139.roa
Signing time: Fri 03 May 2024 00:47:35 +0000
ROA not before: Fri 03 May 2024 00:42:35 +0000
ROA not after: Fri 02 May 2025 00:47:35 +0000
asID: 51019
IP address blocks: 2a14:14c1:100::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:78:af:bf:cd:36:59:5c:57:7b:ae:05:9e:e0:08:5c:03:27:9e:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58E92F2C3859C2D0EF322A871688CB22928E2F3E
Validity
Not Before: May 3 00:42:35 2024 GMT
Not After : May 2 00:47:35 2025 GMT
Subject: CN=25A779C92F17A77F7FFA6DE56009053FD7C5F46B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:50:85:fe:d8:30:97:87:9b:b0:7b:c3:41:92:
bb:f6:61:82:0f:9e:66:8e:0d:68:f9:6c:c7:1d:67:
a3:d5:1c:39:ee:b4:3a:98:6c:f3:7c:9b:64:06:da:
58:0d:01:42:18:da:5d:ae:64:ff:da:69:38:bf:ae:
99:36:3c:d9:41:44:e8:39:79:aa:bc:4b:a9:e4:cf:
a5:b8:43:67:cd:95:46:27:f3:db:f9:2d:3c:c1:a6:
84:f7:29:09:a9:43:d4:9e:dd:02:a7:73:e2:0a:2d:
a1:ba:f4:92:7a:a0:ff:57:11:0b:bf:4f:53:cc:ef:
41:01:eb:fc:d9:2c:eb:f4:b0:80:cb:13:b3:b2:27:
d5:02:3a:b2:12:a4:7e:8a:c5:3f:50:c1:75:03:22:
3e:ae:ee:3c:ce:41:a0:e9:b9:2c:1a:f4:7b:ec:4f:
c0:ef:93:dc:e5:41:51:75:85:d0:1b:6d:e1:2d:28:
11:68:0b:25:e7:7e:4d:c5:37:31:c7:b1:00:31:49:
ee:d2:16:71:48:8c:fc:de:69:05:bc:43:ac:63:00:
b8:f9:60:40:94:2b:f1:35:97:1e:f4:86:32:2c:af:
42:8c:df:b5:d8:9c:8f:2b:21:23:6d:14:69:f2:6c:
3a:51:79:ea:22:aa:e1:1d:ed:d8:da:43:8a:de:c5:
5b:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:A7:79:C9:2F:17:A7:7F:7F:FA:6D:E5:60:09:05:3F:D7:C5:F4:6B
X509v3 Authority Key Identifier:
keyid:58:E9:2F:2C:38:59:C2:D0:EF:32:2A:87:16:88:CB:22:92:8E:2F:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/3/58E92F2C3859C2D0EF322A871688CB22928E2F3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/69bbfdcf-35cd-4524-8ffa-3005b0b69a29/0/58E92F2C3859C2D0EF322A871688CB22928E2F3E.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/3/326131343a313463313a3130303a3a2f34382d3438203d3e203531303139.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:14c1:100::/48
Signature Algorithm: sha256WithRSAEncryption
b8:8b:9d:b5:13:3d:c8:c2:ed:4f:bd:8f:e1:6d:be:92:c3:0c:
b4:d8:93:37:8e:a2:ee:5e:78:49:c1:8d:1f:20:18:a0:34:eb:
2f:21:f1:6b:30:12:e0:b9:55:2c:e7:b0:e6:c4:70:07:4b:81:
00:90:a2:71:87:dc:ca:f1:f7:05:76:c4:e4:91:b8:2b:36:1a:
77:69:e6:8c:19:d0:d7:1b:e9:1f:bf:64:2d:59:1c:6c:f4:04:
a7:b7:25:b4:22:a4:10:aa:cc:01:d3:59:24:97:a2:c6:3f:0c:
f9:31:25:0e:5f:0a:13:51:d2:49:f9:11:c9:b4:f1:b1:b8:19:
5b:e3:25:01:e8:9a:2b:4c:4a:bc:51:67:60:aa:3b:16:aa:3d:
27:79:38:79:a7:da:5a:54:88:76:63:f7:13:2e:79:3a:ec:58:
73:5b:29:38:57:83:e0:db:17:cd:33:99:42:80:5d:cc:83:ab:
f0:dd:48:05:e9:b4:1c:8a:ea:a0:19:eb:3a:70:9b:cb:28:92:
4a:42:67:e7:ef:24:20:44:33:71:af:46:c2:8b:b5:5b:2d:d6:
bb:d4:2c:78:ae:dc:1e:45:b6:e4:0f:00:2e:c7:a9:c4:7c:88:
f0:ab:bf:65:02:0e:7c:8a:8e:0b:4c:cc:32:c6:be:52:91:22:
b9:c9:2b:53
-----BEGIN CERTIFICATE-----
MIIFdzCCBF+gAwIBAgIUMXivv802WVxXe64FnuAIXAMnnv8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNThFOTJGMkMzODU5QzJEMEVGMzIyQTg3MTY4OENCMjI5
MjhFMkYzRTAeFw0yNDA1MDMwMDQyMzVaFw0yNTA1MDIwMDQ3MzVaMDMxMTAvBgNV
BAMTKDI1QTc3OUM5MkYxN0E3N0Y3RkZBNkRFNTYwMDkwNTNGRDdDNUY0NkIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcUIX+2DCXh5uwe8NBkrv2YYIP
nmaODWj5bMcdZ6PVHDnutDqYbPN8m2QG2lgNAUIY2l2uZP/aaTi/rpk2PNlBROg5
eaq8S6nkz6W4Q2fNlUYn89v5LTzBpoT3KQmpQ9Se3QKnc+IKLaG69JJ6oP9XEQu/
T1PM70EB6/zZLOv0sIDLE7OyJ9UCOrISpH6KxT9QwXUDIj6u7jzOQaDpuSwa9Hvs
T8Dvk9zlQVF1hdAbbeEtKBFoCyXnfk3FNzHHsQAxSe7SFnFIjPzeaQW8Q6xjALj5
YECUK/E1lx70hjIsr0KM37XYnI8rISNtFGnybDpReeoiquEd7djaQ4rexVsFAgMB
AAGjggKBMIICfTAdBgNVHQ4EFgQUJad5yS8Xp39/+m3lYAkFP9fF9GswHwYDVR0j
BBgwFoAUWOkvLDhZwtDvMiqHFojLIpKOLz4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh
ZTNmLzMvNThFOTJGMkMzODU5QzJEMEVGMzIyQTg3MTY4OENCMjI5MjhFMkYzRS5j
cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu
Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS82OWJiZmRjZi0zNWNkLTQ1
MjQtOGZmYS0zMDA1YjBiNjlhMjkvMC81OEU5MkYyQzM4NTlDMkQwRUYzMjJBODcx
Njg4Q0IyMjkyOEUyRjNFLmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUF
BzALhoGTcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9hYTAwNGJhMS00MTliLTRkYjUtYmJkMy01Y2NhNjMzY2FlM2YvMy8zMjYxMzEz
NDNhMzEzNDYzMzEzYTMxMzAzMDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzEz
MDMxMzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcB
Af8EEzARMA8EAgACMAkDBwAqFBTBAQAwDQYJKoZIhvcNAQELBQADggEBALiLnbUT
PcjC7U+9j+FtvpLDDLTYkzeOou5eeEnBjR8gGKA06y8h8WswEuC5VSznsObEcAdL
gQCQonGH3Mrx9wV2xOSRuCs2Gndp5owZ0Ncb6R+/ZC1ZHGz0BKe3JbQipBCqzAHT
WSSXosY/DPkxJQ5fChNR0kn5Ecm08bG4GVvjJQHomitMSrxRZ2CqOxaqPSd5OHmn
2lpUiHZj9xMueTrsWHNbKThXg+DbF80zmUKAXcyDq/DdSAXptByK6qAZ6zpwm8so
kkpCZ+fvJCBEM3GvRsKLtVst1rvULHiu3B5FtuQPAC7HqcR8iPCrv2UCDnyKjgtM
zDLGvlKRIrnJK1M=
-----END CERTIFICATE-----
Generated at Wed Aug 28 14:17:30 2024 by rpki-client on console-ams.rpki-client.org