Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/326130363a396638313a333034313a3a2f34382d3438203d3e20333934313036.roa
File: 326130363a396638313a333034313a3a2f34382d3438203d3e20333934313036.roa (raw, json)
Hash identifier: yD+Lz/5QUddqFE53MHNSZqQKhChAtWl8lNDMVWJgg/4=
Subject key identifier: F3:2A:0E:60:2C:1B:85:B4:ED:BB:C1:D6:88:A5:83:E6:66:6D:0E:E4
Certificate issuer: /CN=B75E5F3652430CEF96E1E0BD16DDAC40726889EB
Certificate serial: 08A5AAFF74F73E9B05BAF9FF96821E8B7563809E
Authority key identifier: B7:5E:5F:36:52:43:0C:EF:96:E1:E0:BD:16:DD:AC:40:72:68:89:EB
Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/B75E5F3652430CEF96E1E0BD16DDAC40726889EB.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/326130363a396638313a333034313a3a2f34382d3438203d3e20333934313036.roa
Signing time: Fri 27 Sep 2024 12:55:29 +0000
ROA not before: Fri 27 Sep 2024 12:50:29 +0000
ROA not after: Fri 26 Sep 2025 12:55:29 +0000
asID: 394106
IP address blocks: 2a06:9f81:3041::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:a5:aa:ff:74:f7:3e:9b:05:ba:f9:ff:96:82:1e:8b:75:63:80:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B75E5F3652430CEF96E1E0BD16DDAC40726889EB
Validity
Not Before: Sep 27 12:50:29 2024 GMT
Not After : Sep 26 12:55:29 2025 GMT
Subject: CN=F32A0E602C1B85B4EDBBC1D688A583E6666D0EE4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:f2:66:d4:4e:e8:f1:4c:33:52:78:de:96:42:
80:88:3b:11:ca:bb:0f:3c:3e:ad:22:c6:38:a8:3d:
c3:ec:45:dc:a9:37:ec:52:03:04:29:44:f9:f1:bd:
53:b9:5e:0d:c1:df:bd:ef:15:d3:ac:85:85:1d:ea:
79:ab:6c:ae:b1:df:4f:81:a4:75:83:7f:32:27:ae:
6f:cd:89:60:f9:c1:4c:34:76:93:dc:96:b0:4b:ba:
18:43:7e:96:f0:0f:21:da:f0:2b:0d:de:92:d6:13:
b4:a2:c9:8d:13:27:9a:97:ff:c2:d5:51:be:57:5e:
a3:ed:b5:86:b6:2d:92:7f:b8:06:c3:01:02:de:d6:
df:db:c9:e9:f6:a8:ea:85:5e:b7:cc:3e:dc:81:87:
5e:18:e3:4a:24:c2:6e:38:e0:14:44:36:bc:33:d4:
70:40:6a:62:2d:d1:0a:6f:fb:dc:71:a3:9c:85:e3:
e6:d6:f0:09:5f:bd:3a:23:cc:a5:14:d8:c3:be:2b:
93:f8:11:6e:f6:cd:0f:0b:4f:e6:69:3a:cc:05:2b:
dc:12:94:0a:b6:db:f3:e5:5d:8d:9e:b7:7c:fc:12:
f7:a5:14:a9:1b:bf:ef:5c:6d:62:8d:7b:63:7a:98:
36:08:4d:2b:0b:b3:67:4b:77:ec:74:aa:0d:02:b8:
6f:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:2A:0E:60:2C:1B:85:B4:ED:BB:C1:D6:88:A5:83:E6:66:6D:0E:E4
X509v3 Authority Key Identifier:
keyid:B7:5E:5F:36:52:43:0C:EF:96:E1:E0:BD:16:DD:AC:40:72:68:89:EB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/B75E5F3652430CEF96E1E0BD16DDAC40726889EB.crl
Authority Information Access:
CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/B75E5F3652430CEF96E1E0BD16DDAC40726889EB.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/326130363a396638313a333034313a3a2f34382d3438203d3e20333934313036.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:9f81:3041::/48
Signature Algorithm: sha256WithRSAEncryption
aa:b4:64:9e:a9:d4:f5:03:aa:fd:27:03:10:bb:d2:e2:ad:ca:
c1:7f:71:f7:6d:68:f0:31:b6:5d:a4:93:0f:74:e9:fc:da:0b:
ab:a4:21:8e:ed:13:75:4d:93:26:18:68:3c:e3:da:b0:78:5a:
95:4d:18:18:db:00:7b:52:21:f8:a1:59:d1:a5:cf:1c:68:f3:
34:05:59:1f:79:ba:8a:27:dc:80:99:f8:11:fd:55:be:0d:fc:
97:a0:11:a1:ae:7c:3c:dd:b8:23:81:0c:5b:29:f1:77:0a:84:
9f:eb:cd:44:da:c4:9f:10:bb:9a:4e:3b:7f:dc:1f:cb:0a:19:
59:90:fc:8e:64:ac:f8:1c:58:90:26:f9:4e:5a:33:60:e7:a1:
08:73:4c:8e:31:62:ca:6e:d1:2d:43:21:9a:b9:c4:ee:43:52:
2c:4f:21:c0:2a:be:55:3f:3d:b6:ea:d0:80:73:f1:66:fc:8a:
7c:9f:b2:e0:ea:a2:d5:46:3e:88:c4:17:be:75:59:f3:96:06:
d5:6f:2c:63:5e:6a:4a:c2:4b:91:14:ad:ab:ff:c0:61:ae:fa:
c2:2a:44:f1:90:12:70:74:d9:c7:54:78:52:38:a0:ff:07:b1:
45:f5:0c:6c:6a:c9:c4:46:1d:3b:c3:97:99:9e:ff:ba:f3:c1:
96:a4:85:16
-----BEGIN CERTIFICATE-----
MIIFVjCCBD6gAwIBAgIUCKWq/3T3PpsFuvn/loIei3VjgJ4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjc1RTVGMzY1MjQzMENFRjk2RTFFMEJEMTZEREFDNDA3
MjY4ODlFQjAeFw0yNDA5MjcxMjUwMjlaFw0yNTA5MjYxMjU1MjlaMDMxMTAvBgNV
BAMTKEYzMkEwRTYwMkMxQjg1QjRFREJCQzFENjg4QTU4M0U2NjY2RDBFRTQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+8mbUTujxTDNSeN6WQoCIOxHK
uw88Pq0ixjioPcPsRdypN+xSAwQpRPnxvVO5Xg3B373vFdOshYUd6nmrbK6x30+B
pHWDfzInrm/NiWD5wUw0dpPclrBLuhhDfpbwDyHa8CsN3pLWE7SiyY0TJ5qX/8LV
Ub5XXqPttYa2LZJ/uAbDAQLe1t/byen2qOqFXrfMPtyBh14Y40okwm444BRENrwz
1HBAamIt0Qpv+9xxo5yF4+bW8AlfvTojzKUU2MO+K5P4EW72zQ8LT+ZpOswFK9wS
lAq22/PlXY2et3z8EvelFKkbv+9cbWKNe2N6mDYITSsLs2dLd+x0qg0CuG9DAgMB
AAGjggJgMIICXDAdBgNVHQ4EFgQU8yoOYCwbhbTtu8HWiKWD5mZtDuQwHwYDVR0j
BBgwFoAUt15fNlJDDO+W4eC9Ft2sQHJoieswDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZDY0YWM5NDEtNWE3Yy00MmNmLWI2NGItMGIyODhmMTg4
N2YyLzAvQjc1RTVGMzY1MjQzMENFRjk2RTFFMEJEMTZEREFDNDA3MjY4ODlFQi5j
cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt
cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wL0I3NUU1RjM2NTI0MzBD
RUY5NkUxRTBCRDE2RERBQzQwNzI2ODg5RUIuY2VyMIG3BggrBgEFBQcBCwSBqjCB
pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l
dC9yZXBvc2l0b3J5L2Q2NGFjOTQxLTVhN2MtNDJjZi1iNjRiLTBiMjg4ZjE4ODdm
Mi8wLzMyNjEzMDM2M2EzOTY2MzgzMTNhMzMzMDM0MzEzYTNhMmYzNDM4MmQzNDM4
MjAzZDNlMjAzMzM5MzQzMTMwMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH
DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqBp+BMEEwDQYJKoZIhvcN
AQELBQADggEBAKq0ZJ6p1PUDqv0nAxC70uKtysF/cfdtaPAxtl2kkw906fzaC6uk
IY7tE3VNkyYYaDzj2rB4WpVNGBjbAHtSIfihWdGlzxxo8zQFWR95uoon3ICZ+BH9
Vb4N/JegEaGufDzduCOBDFsp8XcKhJ/rzUTaxJ8Qu5pOO3/cH8sKGVmQ/I5krPgc
WJAm+U5aM2DnoQhzTI4xYspu0S1DIZq5xO5DUixPIcAqvlU/Pbbq0IBz8Wb8inyf
suDqotVGPojEF751WfOWBtVvLGNeakrCS5EUrav/wGGu+sIqRPGQEnB02cdUeFI4
oP8HsUX1DGxqycRGHTvDl5me/7rzwZakhRY=
-----END CERTIFICATE-----
Generated at Sun Apr 6 17:44:04 2025 by rpki-client