Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/1/326130613a363034303a626135653a3a2f34382d3438203d3e20313939353138.roa
File: 326130613a363034303a626135653a3a2f34382d3438203d3e20313939353138.roa (raw, json)
Hash identifier: PO23A0Nx2WZmrCWhsbwFsUnmPJqCK9YTUNicm9ESGKQ=
Subject key identifier: 43:4A:9F:FF:26:7C:29:DE:95:98:B7:D4:05:6E:FC:7A:70:3C:12:75
Certificate issuer: /CN=756560C5B960222CE81AF47A8B758E1741461E7F
Certificate serial: 7127DE9A69D9CCBCD2A0C690C5E58F00609F160D
Authority key identifier: 75:65:60:C5:B9:60:22:2C:E8:1A:F4:7A:8B:75:8E:17:41:46:1E:7F
Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/756560C5B960222CE81AF47A8B758E1741461E7F.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/1/326130613a363034303a626135653a3a2f34382d3438203d3e20313939353138.roa
Signing time: Fri 21 Mar 2025 00:10:08 +0000
ROA not before: Fri 21 Mar 2025 00:05:08 +0000
ROA not after: Fri 20 Mar 2026 00:10:08 +0000
asID: 199518
IP address blocks: 2a0a:6040:ba5e::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:27:de:9a:69:d9:cc:bc:d2:a0:c6:90:c5:e5:8f:00:60:9f:16:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=756560C5B960222CE81AF47A8B758E1741461E7F
Validity
Not Before: Mar 21 00:05:08 2025 GMT
Not After : Mar 20 00:10:08 2026 GMT
Subject: CN=434A9FFF267C29DE9598B7D4056EFC7A703C1275
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:61:87:ba:f8:2b:6b:81:59:cc:1b:6a:d2:c2:
93:72:2b:20:64:5a:2b:bf:c1:0a:a8:35:54:d0:db:
fb:f2:43:37:c6:0c:d5:0e:58:57:22:de:12:57:f9:
be:79:8b:e2:5b:b0:1a:e0:19:e2:6f:ef:0c:d3:d6:
a0:10:83:09:6a:12:0b:33:b0:bb:f0:cf:03:5a:0f:
18:c2:34:4b:0f:6c:76:e8:64:e2:79:b6:de:d9:ed:
d9:5c:72:28:d6:4a:61:65:18:17:10:2c:95:b3:31:
f1:b1:fc:14:a4:81:51:34:7f:5b:e2:b5:63:83:49:
a6:70:71:59:62:f6:48:74:7a:59:99:aa:4c:11:83:
ed:1b:53:9e:57:91:1e:b1:6b:3f:df:d8:1d:83:17:
94:47:c5:ff:f0:c3:df:80:1b:b9:af:90:17:99:66:
d4:2f:a6:5c:aa:f4:68:4c:94:35:58:da:25:7e:f0:
c0:9d:6d:56:fb:53:00:f1:af:5d:e1:57:2c:98:6c:
00:dc:a6:9d:7f:8e:81:5f:7f:3b:ec:d4:89:c4:cf:
f5:d4:0d:d0:6e:4e:7c:2a:4e:1a:e9:44:01:e4:f2:
40:a0:3c:c4:f5:de:27:40:e9:f9:19:1f:7b:dd:e1:
f4:50:e5:3d:c6:ec:ee:56:77:11:d5:b8:da:00:95:
f6:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:4A:9F:FF:26:7C:29:DE:95:98:B7:D4:05:6E:FC:7A:70:3C:12:75
X509v3 Authority Key Identifier:
keyid:75:65:60:C5:B9:60:22:2C:E8:1A:F4:7A:8B:75:8E:17:41:46:1E:7F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/1/756560C5B960222CE81AF47A8B758E1741461E7F.crl
Authority Information Access:
CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/756560C5B960222CE81AF47A8B758E1741461E7F.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/1/326130613a363034303a626135653a3a2f34382d3438203d3e20313939353138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6040:ba5e::/48
Signature Algorithm: sha256WithRSAEncryption
2e:ec:84:25:72:27:0d:11:01:64:ff:a2:e2:a3:32:1d:de:ec:
a3:90:ad:00:11:d7:3a:af:b6:7f:86:45:28:5d:16:f5:e3:b1:
39:1f:ab:32:8d:7f:df:98:74:b8:d1:2e:87:b8:fb:c2:e8:01:
c4:1e:5e:db:65:91:43:8e:76:55:50:35:14:09:9e:de:ed:fa:
45:8d:1c:bf:c5:0a:d8:15:fc:4d:69:70:e2:d3:04:cc:27:22:
d0:a3:27:ff:76:7f:63:12:5d:2a:8b:33:e6:2d:1c:8c:7f:05:
6f:d9:f3:d0:e2:c3:57:f7:dd:c4:f3:be:88:14:cd:a3:47:dd:
8f:47:8b:1f:49:53:b6:2d:3f:a8:89:54:b3:c9:47:2a:22:a8:
14:73:32:d9:b6:88:1f:5f:82:bb:7c:cd:b6:49:62:09:f5:e0:
0a:00:23:0f:dd:9b:d4:91:b2:84:94:59:ef:d0:aa:e2:a0:75:
8d:14:0b:0d:17:8f:8b:11:0f:2f:10:e6:a7:df:0e:6c:eb:01:
fd:80:5a:17:e1:3e:04:7c:01:2f:33:b7:de:ff:07:05:22:92:
0d:4c:0a:21:76:de:a9:a2:a3:86:2f:44:3f:41:b9:02:44:bf:
64:84:8d:45:6a:49:95:e5:88:4e:4b:a6:07:1b:f7:79:a8:18:
40:c2:4a:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:58:51 2025 by rpki-client