Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/1/326130613a363034303a626130303a3a2f34302d3430203d3e20313939353138.roa
File: 326130613a363034303a626130303a3a2f34302d3430203d3e20313939353138.roa (raw, json)
Hash identifier: 3Ztq5ZW5uOUA3ZwKIZuskL4WTnSlbLcyIjxJbmO+pk0=
Subject key identifier: 42:83:18:0B:79:F0:CB:96:CD:A6:67:8D:8E:91:D6:01:86:DF:32:40
Certificate issuer: /CN=756560C5B960222CE81AF47A8B758E1741461E7F
Certificate serial: 45591A5F33CA319F8CC45B5435A9D1F7AB341970
Authority key identifier: 75:65:60:C5:B9:60:22:2C:E8:1A:F4:7A:8B:75:8E:17:41:46:1E:7F
Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/756560C5B960222CE81AF47A8B758E1741461E7F.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/1/326130613a363034303a626130303a3a2f34302d3430203d3e20313939353138.roa
Signing time: Fri 21 Mar 2025 00:10:09 +0000
ROA not before: Fri 21 Mar 2025 00:05:09 +0000
ROA not after: Fri 20 Mar 2026 00:10:09 +0000
asID: 199518
IP address blocks: 2a0a:6040:ba00::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:59:1a:5f:33:ca:31:9f:8c:c4:5b:54:35:a9:d1:f7:ab:34:19:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=756560C5B960222CE81AF47A8B758E1741461E7F
Validity
Not Before: Mar 21 00:05:09 2025 GMT
Not After : Mar 20 00:10:09 2026 GMT
Subject: CN=4283180B79F0CB96CDA6678D8E91D60186DF3240
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:bd:4d:8f:9e:a2:12:6f:87:95:87:e0:bc:66:
6e:b9:a9:01:ab:47:17:20:33:1a:d7:c6:88:63:10:
6a:bf:e7:8e:71:51:39:53:21:af:eb:ef:bf:5e:43:
7c:f1:62:5d:6f:b1:c8:76:fd:80:a5:c1:db:07:78:
60:85:c5:06:ca:b0:16:b3:f7:67:7a:1b:39:22:4d:
fa:29:2d:d5:9b:0c:34:0b:ee:59:c6:67:81:33:1a:
c7:d1:2a:c4:93:c7:89:a2:0d:0b:66:20:ba:f6:db:
6a:53:98:4a:ef:b9:75:4e:7b:ca:70:1d:8f:3b:69:
11:56:08:fa:b8:e4:4c:80:16:99:85:74:ed:ce:6b:
e5:d2:1b:0c:c9:fd:81:f3:1c:34:5f:d6:31:1c:4b:
e0:8a:56:65:76:1f:88:38:6a:25:84:ee:ea:a0:b6:
25:b2:c9:e5:6d:0a:47:bc:c0:fe:5a:3f:75:37:d3:
b5:8d:39:89:a4:7a:10:b6:36:f8:32:2c:54:76:b1:
82:92:e1:db:1d:63:94:67:db:53:90:12:55:67:d3:
03:ad:24:ce:ed:49:0a:55:82:a1:d7:1b:4c:cd:5a:
40:20:2c:da:71:b1:78:ca:58:27:4b:2f:8f:78:d7:
a0:82:8c:49:2f:b6:cd:ab:b9:5c:90:35:d0:8d:e4:
89:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:83:18:0B:79:F0:CB:96:CD:A6:67:8D:8E:91:D6:01:86:DF:32:40
X509v3 Authority Key Identifier:
keyid:75:65:60:C5:B9:60:22:2C:E8:1A:F4:7A:8B:75:8E:17:41:46:1E:7F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/1/756560C5B960222CE81AF47A8B758E1741461E7F.crl
Authority Information Access:
CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/756560C5B960222CE81AF47A8B758E1741461E7F.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/1/326130613a363034303a626130303a3a2f34302d3430203d3e20313939353138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6040:ba00::/40
Signature Algorithm: sha256WithRSAEncryption
03:f0:84:fc:01:18:99:56:9a:a3:e0:12:1a:91:0d:37:00:32:
bd:97:7a:b7:31:f7:1e:0f:15:29:ce:21:52:5d:76:84:5c:33:
4a:cf:39:bf:d9:13:7f:3d:13:86:f4:c6:0d:c1:66:02:12:dd:
ce:3e:ae:f0:3a:58:64:d5:3f:2c:4d:f3:70:35:99:e3:6b:35:
21:27:b2:ad:c8:93:4d:12:53:80:27:6d:ad:a9:7d:19:31:7c:
44:03:b9:31:3a:e6:d8:dd:39:2e:0d:c9:a8:3c:0d:94:40:6b:
f4:98:70:a8:17:09:20:90:e4:ce:ee:0c:c5:a9:ea:27:c0:26:
ec:f2:80:8e:92:af:5b:a1:be:08:b8:bb:3e:b6:47:66:72:27:
f0:55:84:21:65:fd:68:13:f0:b0:41:b4:c2:5e:57:4b:18:49:
84:ce:67:de:ac:aa:9f:83:dc:4a:50:fa:dc:13:06:eb:b1:98:
64:f8:fd:c1:a0:23:23:65:3f:a5:e9:60:6c:b1:f7:13:fd:6d:
05:27:21:c2:40:d7:be:6b:27:ce:fb:11:ab:3e:3e:19:16:1e:
bc:49:00:e9:8d:07:83:97:50:fc:d7:42:fc:23:35:02:ca:a5:
f8:fa:bf:60:b0:ff:ef:ec:bf:20:89:e0:29:d6:49:a6:5c:3a:
4d:39:98:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:01:15 2025 by rpki-client