Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f536a1e4-3bf0-4352-9061-66694d2bcbd3/0/326130373a353463373a363230303a3a2f34302d3438203d3e20323136323635.roa
File: 326130373a353463373a363230303a3a2f34302d3438203d3e20323136323635.roa (raw, json)
Hash identifier: VfuysCLDAA7Dsixsj+UhAksqP6Aiuk972ptv4AvPD6w=
Subject key identifier: 4D:87:B0:1A:DB:F6:F3:22:F4:B8:55:23:1F:85:6E:4A:A5:11:A3:5C
Certificate issuer: /CN=F1ABD9429F3A733668CAC698C113A9E343C99B3E
Certificate serial: 538C26D9516D02F290DAE122E1331F9E83C38062
Authority key identifier: F1:AB:D9:42:9F:3A:73:36:68:CA:C6:98:C1:13:A9:E3:43:C9:9B:3E
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/F1ABD9429F3A733668CAC698C113A9E343C99B3E.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f536a1e4-3bf0-4352-9061-66694d2bcbd3/0/326130373a353463373a363230303a3a2f34302d3438203d3e20323136323635.roa
Signing time: Sat 22 Jun 2024 01:45:45 +0000
ROA not before: Sat 22 Jun 2024 01:40:45 +0000
ROA not after: Sat 21 Jun 2025 01:45:45 +0000
asID: 216265
IP address blocks: 2a07:54c7:6200::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:8c:26:d9:51:6d:02:f2:90:da:e1:22:e1:33:1f:9e:83:c3:80:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F1ABD9429F3A733668CAC698C113A9E343C99B3E
Validity
Not Before: Jun 22 01:40:45 2024 GMT
Not After : Jun 21 01:45:45 2025 GMT
Subject: CN=4D87B01ADBF6F322F4B855231F856E4AA511A35C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:fa:02:80:33:23:b7:68:44:3d:a7:b9:7a:d7:
57:e7:fc:21:43:dc:55:35:f8:5e:06:c0:86:f0:8f:
d4:3f:b9:5a:4b:a7:ca:fe:0b:9a:49:57:85:a7:87:
61:44:1b:72:02:84:34:49:7c:a7:18:59:61:3f:bd:
8f:f6:1a:2c:48:4d:97:60:f4:c8:d6:5e:90:86:15:
6c:50:8f:13:fe:3b:b9:66:42:5b:58:f6:5c:3e:b0:
70:84:6a:a5:da:87:e8:ff:ff:ca:df:0d:7d:63:71:
23:4c:66:0f:42:db:80:74:3a:4a:eb:e1:8f:f9:1f:
ee:72:6e:19:c1:45:99:7a:b9:5f:76:0d:51:ee:ea:
bd:c6:86:ee:de:78:27:2e:06:75:e8:be:6b:61:e7:
86:56:82:bd:93:ab:17:03:78:fb:c4:db:dc:c7:f1:
99:bf:97:ce:b4:41:36:f1:a6:32:cb:e7:4c:47:95:
dd:0b:70:fa:32:3c:87:4f:96:5f:6e:4d:ce:10:50:
42:0b:ed:fa:ae:e8:5e:39:68:a6:e2:88:f3:b7:db:
4d:e3:80:e4:9f:11:b9:c1:b9:a4:90:b7:f0:8d:d5:
67:16:e1:c0:8e:b1:27:d2:22:f3:9e:13:48:0c:67:
66:90:af:fd:77:e3:34:30:b7:68:19:a1:e0:b5:a0:
f7:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:87:B0:1A:DB:F6:F3:22:F4:B8:55:23:1F:85:6E:4A:A5:11:A3:5C
X509v3 Authority Key Identifier:
keyid:F1:AB:D9:42:9F:3A:73:36:68:CA:C6:98:C1:13:A9:E3:43:C9:9B:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f536a1e4-3bf0-4352-9061-66694d2bcbd3/0/F1ABD9429F3A733668CAC698C113A9E343C99B3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/F1ABD9429F3A733668CAC698C113A9E343C99B3E.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f536a1e4-3bf0-4352-9061-66694d2bcbd3/0/326130373a353463373a363230303a3a2f34302d3438203d3e20323136323635.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:54c7:6200::/40
Signature Algorithm: sha256WithRSAEncryption
cb:c4:ba:fc:60:d9:96:3a:c4:e3:34:27:7f:c2:5c:39:1d:a0:
0a:5a:55:bb:5d:66:37:16:52:eb:ae:3d:2d:c1:6d:3c:34:15:
40:c1:25:21:c0:28:68:d8:5d:a0:d8:89:38:2f:30:24:a6:bc:
d4:b9:f1:6a:0d:8f:ca:21:69:aa:fa:6b:01:ab:ed:31:98:d1:
57:4f:ea:19:1a:d1:a5:a0:20:28:52:3b:3a:8d:87:c6:d0:21:
0e:16:62:ea:a9:25:85:80:6d:57:fb:9a:39:96:98:d1:ff:75:
08:2c:20:5a:b3:c9:b1:71:06:31:f8:0d:8b:20:86:bd:0f:0f:
83:9d:35:1e:fc:9a:58:03:69:28:0d:f5:94:d0:4d:29:0f:05:
b7:85:a6:68:c4:44:05:1e:31:79:1a:f7:35:1a:83:63:64:39:
ae:93:94:34:a3:9f:8e:0e:86:ae:bd:fb:8b:d6:63:78:8c:07:
eb:24:38:37:37:d1:cc:cd:e5:ee:6d:8f:23:f9:ef:05:63:aa:
d9:ea:95:a8:de:a1:b2:44:5b:32:3f:05:c7:92:37:e9:1d:41:
51:87:0a:4b:c0:f6:30:8c:00:49:0e:e0:4d:bb:64:47:0a:73:
0e:75:62:8e:9a:50:36:18:fe:b4:e7:ac:bd:ea:49:3d:7b:7b:
11:fb:53:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 28 00:44:44 2024 by rpki-client on console-fra.rpki-client.org