Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a31653a3a2f34382d3438203d3e203239383032.roa
File: 326131333a393530303a31653a3a2f34382d3438203d3e203239383032.roa (raw, json)
Hash identifier: dOVIqTUYoZRQ3fG4NA1DnV/eSI5r8ORAb0XNylgr1iU=
Subject key identifier: 6C:95:B4:A9:C4:CA:77:FF:53:5D:73:0C:51:6F:AA:A6:7E:60:51:37
Certificate issuer: /CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Certificate serial: 70D13BB586CB119140F1B1DEAC686E4E3DD284B2
Authority key identifier: E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a31653a3a2f34382d3438203d3e203239383032.roa
Signing time: Fri 26 Apr 2024 12:20:16 +0000
ROA not before: Fri 26 Apr 2024 12:15:16 +0000
ROA not after: Fri 25 Apr 2025 12:20:16 +0000
asID: 29802
IP address blocks: 2a13:9500:1e::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:d1:3b:b5:86:cb:11:91:40:f1:b1:de:ac:68:6e:4e:3d:d2:84:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Validity
Not Before: Apr 26 12:15:16 2024 GMT
Not After : Apr 25 12:20:16 2025 GMT
Subject: CN=6C95B4A9C4CA77FF535D730C516FAAA67E605137
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d1:07:71:93:c6:02:25:57:2b:d7:0e:13:14:
b4:c7:40:df:f8:62:48:cb:aa:26:2e:91:55:6d:aa:
1e:d0:79:e8:21:24:e9:d2:36:36:1e:2a:6e:98:16:
36:a9:4d:89:5f:1e:ae:ef:14:9b:0f:86:de:70:ff:
9a:5f:e1:a7:b1:5b:ec:9c:29:78:48:2b:37:ce:67:
1f:70:e5:f6:25:b6:cc:a7:32:0d:2a:2c:ee:2f:b4:
57:b8:65:55:c9:c7:19:1e:c0:06:bf:a7:d2:ca:14:
95:91:9b:d5:95:9c:fb:1a:57:b5:6c:ee:32:8e:d9:
fc:b0:26:33:f0:9b:9f:8e:d2:1a:fe:45:43:1b:2b:
a4:9d:c7:f6:d4:83:5b:5b:ad:99:1d:f5:c1:ee:88:
00:e1:ba:be:b5:9f:83:d2:ee:cb:c6:05:87:11:31:
d5:13:7c:05:97:9f:e6:b5:24:17:19:1c:0a:18:0a:
47:38:d4:ce:24:1e:76:14:7f:77:42:4a:96:f9:2c:
a2:19:19:2f:a1:74:e8:44:c8:d7:47:c9:4e:a8:41:
0c:59:87:06:5b:2b:54:6d:82:8f:7b:2a:a4:93:27:
00:2f:1f:a7:c2:e7:3b:43:09:ba:32:8b:70:cc:84:
cd:ef:d8:b7:9e:e8:de:55:d5:06:8d:d7:bc:5a:26:
37:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:95:B4:A9:C4:CA:77:FF:53:5D:73:0C:51:6F:AA:A6:7E:60:51:37
X509v3 Authority Key Identifier:
keyid:E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a31653a3a2f34382d3438203d3e203239383032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:1e::/48
Signature Algorithm: sha256WithRSAEncryption
a0:c9:71:f0:a1:a0:f0:a9:17:79:36:de:69:fe:a8:16:ce:52:
52:98:ff:cd:89:2a:41:a2:3b:b9:77:8c:a8:6b:8a:26:f9:0c:
bc:22:b2:76:f4:fb:23:03:1f:a3:30:c9:c3:76:7a:c1:c8:06:
33:f1:b2:10:99:0b:21:9f:87:0f:df:9b:20:44:3a:e4:a4:57:
4d:5a:60:ab:5f:96:97:34:be:62:23:f4:23:02:a9:e8:d9:a3:
ff:e7:db:1a:6d:2e:c6:5c:7c:17:53:74:19:0d:ef:c3:74:38:
bc:fd:20:27:75:35:07:18:b9:5c:ab:58:96:60:a1:05:34:ef:
7d:a6:e5:89:95:2c:75:42:5e:fd:65:45:e4:e2:49:79:4d:5d:
75:75:44:41:d0:95:77:be:02:2a:d4:34:48:03:5d:c7:61:03:
33:6c:55:48:6b:f4:b6:69:e7:0d:69:aa:83:b6:97:89:35:eb:
00:9c:76:6a:2b:9f:f6:0e:ff:5f:0a:80:7a:48:53:85:bf:e2:
37:44:0d:fe:66:16:67:64:11:20:27:39:cd:84:14:56:9c:94:
01:fd:fe:58:02:6e:ca:60:81:ca:24:db:69:4a:b5:b7:19:3d:
ec:77:46:0b:04:82:a7:fa:97:1e:ff:89:55:42:f3:11:7a:e0:
0c:d1:21:db
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Feb 16 15:48:49 2025 by rpki-client