Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c99265ef-22a9-4100-a23d-51a9d9feeb7d/1/326130353a646663313a383063303a3a2f34322d3438203d3e20313937383134.roa
File: 326130353a646663313a383063303a3a2f34322d3438203d3e20313937383134.roa (raw, json)
Hash identifier: TmI3Qks0GmU2IToJEidECHJuE8aOabW99R+mdgn9naQ=
Subject key identifier: 18:68:50:96:76:79:80:88:FE:24:02:17:FF:10:E4:EE:76:EC:03:D2
Certificate issuer: /CN=CADC66A6E55BEBAFDDFA8BD72B3127C8AEB50EC2
Certificate serial: 66FCF3F96A75FB45115AB2CF793E8F8B64EC0C0F
Authority key identifier: CA:DC:66:A6:E5:5B:EB:AF:DD:FA:8B:D7:2B:31:27:C8:AE:B5:0E:C2
Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/CADC66A6E55BEBAFDDFA8BD72B3127C8AEB50EC2.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c99265ef-22a9-4100-a23d-51a9d9feeb7d/1/326130353a646663313a383063303a3a2f34322d3438203d3e20313937383134.roa
Signing time: Sun 08 Dec 2024 21:39:22 +0000
ROA not before: Sun 08 Dec 2024 21:34:22 +0000
ROA not after: Sun 07 Dec 2025 21:39:22 +0000
asID: 197814
IP address blocks: 2a05:dfc1:80c0::/42 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:fc:f3:f9:6a:75:fb:45:11:5a:b2:cf:79:3e:8f:8b:64:ec:0c:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CADC66A6E55BEBAFDDFA8BD72B3127C8AEB50EC2
Validity
Not Before: Dec 8 21:34:22 2024 GMT
Not After : Dec 7 21:39:22 2025 GMT
Subject: CN=1868509676798088FE240217FF10E4EE76EC03D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:1e:cf:4a:de:73:04:58:0f:12:bf:bf:f0:2b:
00:eb:7b:d4:c2:b1:59:4c:da:c7:b9:aa:e9:71:46:
05:f0:6d:af:7f:e2:80:e5:b5:32:c0:68:a7:9f:6c:
9e:08:b1:6e:f8:a5:fc:0f:cc:44:d6:73:73:4b:97:
fe:e1:70:c0:ca:0f:a5:34:05:9f:bf:7d:03:8f:ba:
5c:b7:2b:5f:f5:56:be:9d:0b:38:76:a3:99:cc:cc:
6c:07:00:bf:d7:77:de:29:6e:1a:ad:4c:55:42:97:
67:65:01:c0:fa:74:e1:c5:06:66:a9:ad:fe:41:63:
38:af:d3:54:96:4b:13:71:c3:e6:4b:53:b4:95:b7:
bb:28:a1:0b:07:95:70:d9:d3:85:45:cb:c1:7f:52:
2c:b3:bd:99:a4:f4:8c:4b:d7:b9:81:41:f6:33:a6:
e1:90:a8:2d:bf:09:52:44:5a:ae:8c:25:f4:d4:93:
95:d5:39:bc:ed:3e:3e:e9:11:68:eb:0a:24:48:9d:
39:97:12:64:7d:15:7e:71:00:c6:d3:d0:c7:b6:ce:
51:a9:05:bf:40:45:f3:36:0e:2b:be:c6:23:68:f8:
97:73:37:4e:ca:59:d9:37:c9:ee:9c:0d:2e:ac:9b:
e8:21:f1:6b:3d:b7:d0:73:7c:51:38:50:7f:d7:f3:
d7:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:68:50:96:76:79:80:88:FE:24:02:17:FF:10:E4:EE:76:EC:03:D2
X509v3 Authority Key Identifier:
keyid:CA:DC:66:A6:E5:5B:EB:AF:DD:FA:8B:D7:2B:31:27:C8:AE:B5:0E:C2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c99265ef-22a9-4100-a23d-51a9d9feeb7d/1/CADC66A6E55BEBAFDDFA8BD72B3127C8AEB50EC2.crl
Authority Information Access:
CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/CADC66A6E55BEBAFDDFA8BD72B3127C8AEB50EC2.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c99265ef-22a9-4100-a23d-51a9d9feeb7d/1/326130353a646663313a383063303a3a2f34322d3438203d3e20313937383134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:80c0::/42
Signature Algorithm: sha256WithRSAEncryption
2a:11:69:92:32:84:77:0e:63:21:bb:1c:1e:a1:78:56:4e:a9:
aa:6f:2a:08:f5:63:b5:58:4b:21:c8:2e:5e:17:a7:26:ed:98:
0d:34:31:54:50:c5:7f:02:56:de:9b:ff:77:50:2b:84:d9:9d:
87:d2:45:37:f2:93:65:80:ba:0b:cc:b7:de:86:08:0e:5c:16:
17:9b:97:1b:5e:c1:77:41:f6:79:05:63:91:85:40:69:c4:03:
1d:df:f6:c3:89:21:fa:74:7b:b7:51:06:d6:b7:bb:18:ba:41:
15:68:e4:4f:74:4e:8c:3b:2d:df:13:bc:cb:3e:34:7b:96:69:
9e:d6:d9:d2:23:81:a6:f0:38:0b:d3:b5:c0:b7:4b:8e:bf:61:
7c:93:fc:ec:eb:86:dd:e5:99:bd:09:bd:f6:03:d8:96:c6:94:
f5:2c:1d:b4:cb:68:f8:a7:84:e3:88:94:95:16:7e:cc:9e:bb:
f8:22:0b:aa:d9:d9:32:45:d1:5d:ff:40:6f:2e:cf:a2:55:f4:
5f:60:92:84:9c:44:a0:71:c9:ae:57:4c:30:b6:c1:eb:22:6a:
20:0b:07:c3:f8:90:91:0a:3e:93:a9:d2:30:2d:3d:21:8b:67:
d5:26:f2:84:7e:5f:23:61:06:a8:20:3b:65:13:bc:55:44:be:
56:e2:52:80
-----BEGIN CERTIFICATE-----
MIIFVjCCBD6gAwIBAgIUZvzz+Wp1+0URWrLPeT6Pi2TsDA8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQ0FEQzY2QTZFNTVCRUJBRkRERkE4QkQ3MkIzMTI3QzhB
RUI1MEVDMjAeFw0yNDEyMDgyMTM0MjJaFw0yNTEyMDcyMTM5MjJaMDMxMTAvBgNV
BAMTKDE4Njg1MDk2NzY3OTgwODhGRTI0MDIxN0ZGMTBFNEVFNzZFQzAzRDIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtHs9K3nMEWA8Sv7/wKwDre9TC
sVlM2se5qulxRgXwba9/4oDltTLAaKefbJ4IsW74pfwPzETWc3NLl/7hcMDKD6U0
BZ+/fQOPuly3K1/1Vr6dCzh2o5nMzGwHAL/Xd94pbhqtTFVCl2dlAcD6dOHFBmap
rf5BYziv01SWSxNxw+ZLU7SVt7sooQsHlXDZ04VFy8F/UiyzvZmk9IxL17mBQfYz
puGQqC2/CVJEWq6MJfTUk5XVObztPj7pEWjrCiRInTmXEmR9FX5xAMbT0Me2zlGp
Bb9ARfM2Diu+xiNo+JdzN07KWdk3ye6cDS6sm+gh8Ws9t9BzfFE4UH/X89eHAgMB
AAGjggJgMIICXDAdBgNVHQ4EFgQUGGhQlnZ5gIj+JAIX/xDk7nbsA9IwHwYDVR0j
BBgwFoAUytxmpuVb66/d+ovXKzEnyK61DsIwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYzk5MjY1ZWYtMjJhOS00MTAwLWEyM2QtNTFhOWQ5ZmVl
YjdkLzEvQ0FEQzY2QTZFNTVCRUJBRkRERkE4QkQ3MkIzMTI3QzhBRUI1MEVDMi5j
cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt
cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wL0NBREM2NkE2RTU1QkVC
QUZEREZBOEJENzJCMzEyN0M4QUVCNTBFQzIuY2VyMIG3BggrBgEFBQcBCwSBqjCB
pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l
dC9yZXBvc2l0b3J5L2M5OTI2NWVmLTIyYTktNDEwMC1hMjNkLTUxYTlkOWZlZWI3
ZC8xLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzgzMDYzMzAzYTNhMmYzNDMyMmQzNDM4
MjAzZDNlMjAzMTM5MzczODMxMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH
DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwYqBd/BgMAwDQYJKoZIhvcN
AQELBQADggEBACoRaZIyhHcOYyG7HB6heFZOqapvKgj1Y7VYSyHILl4XpybtmA00
MVRQxX8CVt6b/3dQK4TZnYfSRTfyk2WAugvMt96GCA5cFheblxtewXdB9nkFY5GF
QGnEAx3f9sOJIfp0e7dRBta3uxi6QRVo5E90Tow7Ld8TvMs+NHuWaZ7W2dIjgabw
OAvTtcC3S46/YXyT/Ozrht3lmb0JvfYD2JbGlPUsHbTLaPinhOOIlJUWfsyeu/gi
C6rZ2TJF0V3/QG8uz6JV9F9gkoScRKBxya5XTDC2wesiaiALB8P4kJEKPpOp0jAt
PSGLZ9Um8oR+XyNhBqggO2UTvFVEvlbiUoA=
-----END CERTIFICATE-----
Generated at Sat Apr 5 06:20:17 2025 by rpki-client