Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ecb30322-94f7-4e61-8691-5c1b611b0a95/1/326130613a363034343a393030373a3a2f34382d3438203d3e2030.roa
File: 326130613a363034343a393030373a3a2f34382d3438203d3e2030.roa (raw, json)
Hash identifier: zdoHRl9eAZv7jX3eavPcp2wW0eTr8w9Ub9N1fnI5ZzE=
Subject key identifier: BB:A7:BE:57:D8:5A:7D:D5:C5:64:BB:EE:7B:EE:FC:25:DC:82:2B:3F
Certificate issuer: /CN=488BD86AFDB1BE238E1E3EADE85A0520B2AF66DF
Certificate serial: 5551B044E34C948C2FE02DB69B6DD0E77838B85A
Authority key identifier: 48:8B:D8:6A:FD:B1:BE:23:8E:1E:3E:AD:E8:5A:05:20:B2:AF:66:DF
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/488BD86AFDB1BE238E1E3EADE85A0520B2AF66DF.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ecb30322-94f7-4e61-8691-5c1b611b0a95/1/326130613a363034343a393030373a3a2f34382d3438203d3e2030.roa
Signing time: Wed 04 Sep 2024 07:09:26 +0000
ROA not before: Wed 04 Sep 2024 07:04:26 +0000
ROA not after: Wed 03 Sep 2025 07:09:26 +0000
asID: 0
IP address blocks: 2a0a:6044:9007::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:51:b0:44:e3:4c:94:8c:2f:e0:2d:b6:9b:6d:d0:e7:78:38:b8:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=488BD86AFDB1BE238E1E3EADE85A0520B2AF66DF
Validity
Not Before: Sep 4 07:04:26 2024 GMT
Not After : Sep 3 07:09:26 2025 GMT
Subject: CN=BBA7BE57D85A7DD5C564BBEE7BEEFC25DC822B3F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:9f:ca:ba:f6:e3:82:ae:4a:6b:64:c2:f7:6c:
79:c3:fe:83:a8:cb:ef:91:54:b3:03:1c:7a:ec:af:
3b:7d:2b:13:c9:0c:45:62:42:91:d0:1d:65:6e:96:
b2:b0:77:8b:a2:1b:ec:c7:a8:43:b3:9f:2e:06:b2:
7c:8e:ca:4c:25:2e:f6:b9:68:f8:12:93:05:6c:78:
90:b7:a8:bf:86:73:90:09:73:fe:bf:f8:00:1f:81:
ea:0a:7d:5f:db:0d:03:bc:4f:f5:fc:8f:09:7e:6c:
db:c1:d4:81:8e:2c:e6:3c:62:e0:89:51:84:c1:b3:
d5:72:71:1a:bc:04:81:ea:de:c9:6e:0a:0f:46:ad:
1c:5d:83:bf:7d:98:20:f0:f0:cd:07:3f:f1:ba:61:
37:51:1b:ba:87:9a:74:e2:cf:57:01:e6:27:6e:75:
c3:e9:4b:a0:45:74:8c:7b:db:91:26:66:f9:7c:bd:
c3:df:87:22:2f:08:46:d0:bd:76:e1:61:92:33:ea:
05:5f:f1:40:62:6a:37:6e:3c:53:41:04:d0:06:8d:
fd:39:e7:cd:7e:11:97:98:ff:11:87:2a:39:e3:65:
95:dc:9e:54:71:64:22:86:a5:0f:1d:0e:53:57:c6:
4e:c4:c7:0f:36:63:e3:b4:91:73:ad:6d:48:eb:4a:
c4:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:A7:BE:57:D8:5A:7D:D5:C5:64:BB:EE:7B:EE:FC:25:DC:82:2B:3F
X509v3 Authority Key Identifier:
keyid:48:8B:D8:6A:FD:B1:BE:23:8E:1E:3E:AD:E8:5A:05:20:B2:AF:66:DF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/ecb30322-94f7-4e61-8691-5c1b611b0a95/1/488BD86AFDB1BE238E1E3EADE85A0520B2AF66DF.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/488BD86AFDB1BE238E1E3EADE85A0520B2AF66DF.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ecb30322-94f7-4e61-8691-5c1b611b0a95/1/326130613a363034343a393030373a3a2f34382d3438203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6044:9007::/48
Signature Algorithm: sha256WithRSAEncryption
50:af:ea:2e:56:0a:f8:83:46:23:46:64:37:d8:3f:76:c0:ce:
47:ed:aa:cd:94:6d:da:41:04:fc:e9:cc:7b:25:68:26:cb:b7:
ae:e0:2a:0c:78:17:88:6a:fd:06:04:00:33:3d:64:06:8a:f3:
6a:d1:51:8e:17:07:d4:e3:0a:bb:6b:16:73:1a:23:5f:40:4e:
54:cb:32:8d:23:bf:e1:4b:1d:2c:3b:6c:48:5e:ac:65:c7:4c:
72:bc:4a:5a:d0:99:fa:5b:f9:f1:0b:2b:ad:1a:03:fc:50:99:
88:9c:d9:23:36:5e:ea:29:4d:93:12:cc:f3:f3:1f:2f:25:97:
12:5f:b4:15:3d:3d:be:b4:78:d8:8e:b7:4c:ad:f1:72:a6:c2:
9a:9c:95:cd:02:ef:4c:47:1f:72:bf:8c:e9:52:7d:46:13:73:
e4:24:a2:cc:ef:ec:4d:75:76:55:10:d7:b3:f9:76:ba:94:1c:
a3:8c:6a:42:db:d0:ec:c3:2c:74:b4:56:45:0d:9f:0a:0e:6a:
22:45:0e:60:96:6c:e6:54:61:f2:c8:18:7e:81:1a:3f:a9:88:
97:96:cc:bc:07:d1:e2:e3:1e:df:b9:cb:90:84:77:63:7d:ec:
ff:b8:bb:6f:af:42:6b:2a:23:2c:53:66:d7:47:5f:21:a7:81:
7c:1f:ee:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:32:39 2025 by rpki-client