Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/AS206290.roa
File: AS206290.roa (raw, json)
Hash identifier: dDDWpXbcmnNxzIEUBQAiIzkFcGDs4IOn8YORSFSC5DQ=
Subject key identifier: B9:59:4D:64:52:BB:0F:BA:C5:AF:90:7C:DD:A9:91:EB:E9:E4:3E:52
Certificate issuer: /CN=d12ea65dee9873b5dcf3c6c0224faea6fcb8aea6
Certificate serial: 3A345AE3852F456921CBFAD38DAD4FEFF8C857B3
Authority key identifier: D1:2E:A6:5D:EE:98:73:B5:DC:F3:C6:C0:22:4F:AE:A6:FC:B8:AE:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0S6mXe6Yc7Xc88bAIk-upvy4rqY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/AS206290.roa
Signing time: Sun 01 Jan 2023 23:59:15 +0000
ROA not before: Sun 01 Jan 2023 23:54:15 +0000
ROA not after: Sun 31 Dec 2023 23:59:15 +0000
asID: 206290
IP address blocks: 2a06:a005:1276::/47 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:34:5a:e3:85:2f:45:69:21:cb:fa:d3:8d:ad:4f:ef:f8:c8:57:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d12ea65dee9873b5dcf3c6c0224faea6fcb8aea6
Validity
Not Before: Jan 1 23:54:15 2023 GMT
Not After : Dec 31 23:59:15 2023 GMT
Subject: CN=B9594D6452BB0FBAC5AF907CDDA991EBE9E43E52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:76:33:df:8c:bd:f5:6d:52:d7:0f:b5:03:79:
f3:b1:17:88:10:1e:37:98:b9:a6:0d:da:2e:d3:86:
34:b0:39:57:fa:f0:ba:af:3b:54:75:00:9b:3d:4c:
3c:84:56:e7:32:3b:c0:17:b6:da:95:28:07:83:0f:
99:a3:a6:86:2c:21:cf:59:b2:be:b4:ef:f5:b7:29:
a8:96:54:06:66:b5:ef:bc:4a:13:88:2d:e3:7a:34:
9e:c0:93:5c:aa:91:4e:8d:84:43:21:eb:6f:cf:cb:
b7:3f:a3:2a:93:0f:c8:30:29:da:9a:60:d9:8c:ba:
42:57:f1:7a:b0:56:9c:29:4c:d4:05:32:d2:dc:3a:
be:b3:64:01:be:30:7a:d9:1e:7e:15:f0:73:eb:e6:
15:0b:ae:72:47:2d:65:36:88:69:b7:62:af:f1:ed:
b0:e6:6f:eb:ca:24:cd:8d:4d:11:f2:4f:a7:d4:2e:
4a:60:7f:cc:cc:4e:c2:33:15:4e:fc:5c:36:4c:92:
bc:09:b6:ac:f2:e3:41:f5:76:4c:82:bd:58:f8:c5:
88:b6:4e:5a:4c:76:2d:61:5f:22:d1:13:26:94:91:
04:84:a3:a7:69:6f:cb:64:43:63:49:bf:21:ce:89:
d9:90:95:0c:54:24:1c:51:a1:7f:7c:e1:48:41:c1:
91:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:59:4D:64:52:BB:0F:BA:C5:AF:90:7C:DD:A9:91:EB:E9:E4:3E:52
X509v3 Authority Key Identifier:
keyid:D1:2E:A6:5D:EE:98:73:B5:DC:F3:C6:C0:22:4F:AE:A6:FC:B8:AE:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/D12EA65DEE9873B5DCF3C6C0224FAEA6FCB8AEA6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0S6mXe6Yc7Xc88bAIk-upvy4rqY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/AS206290.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1276::/47
Signature Algorithm: sha256WithRSAEncryption
88:4b:6a:ca:ab:74:0c:f9:aa:94:f3:99:7a:fc:39:83:45:78:
8b:75:69:6b:31:4a:84:3f:14:b6:12:ce:aa:ce:87:77:61:c2:
ca:bd:4d:5a:77:72:7f:b6:96:12:45:24:ff:45:0a:59:dc:55:
f5:4b:53:a4:cf:f9:45:29:1d:20:83:26:70:13:d6:5e:f7:47:
39:f5:33:88:4e:5e:e7:ee:38:8c:d9:b0:3a:56:57:20:40:75:
b0:d3:fc:51:b5:b1:26:c2:4f:7f:a8:ae:99:86:27:f1:80:3e:
bd:10:4d:d4:a7:cb:a0:99:f5:9f:6b:92:46:31:af:d6:f3:45:
4e:a1:fb:b9:65:77:41:c2:38:40:45:af:d4:38:df:c9:3d:db:
02:c1:ad:85:c5:42:86:92:c1:ee:59:14:82:b0:0f:35:83:ca:
52:33:fa:55:08:6d:85:67:50:14:67:8e:af:27:c0:db:36:6b:
93:4f:6a:77:1f:18:80:97:d6:f3:36:ca:5f:cf:24:41:62:6a:
71:26:9a:47:e3:59:a4:b5:58:d0:b3:6f:dd:84:bb:1a:af:c3:
8a:f6:cd:78:c3:15:e9:ba:36:8e:df:6b:43:03:30:3d:1e:3a:
73:2c:78:0b:1a:89:f1:af:12:d5:1f:10:4d:f6:99:6b:0a:9a:
6a:ae:be:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:53:24 2025 by rpki-client