Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/AS398325.roa
File: AS398325.roa (raw, json)
Hash identifier: f+1fk311AFK2mtSl6Y/uWxrkMlamZslWGfwG1e2RUUA=
Subject key identifier: 4A:DD:81:68:D5:FF:15:47:FF:C6:15:8B:19:68:F2:F9:7A:70:67:44
Certificate issuer: /CN=d12ea65dee9873b5dcf3c6c0224faea6fcb8aea6
Certificate serial: 270EFFDB3B931CFFB321BB0C14A8B21BFE665AD5
Authority key identifier: D1:2E:A6:5D:EE:98:73:B5:DC:F3:C6:C0:22:4F:AE:A6:FC:B8:AE:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0S6mXe6Yc7Xc88bAIk-upvy4rqY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/AS398325.roa
Signing time: Sun 01 Jan 2023 23:59:11 +0000
ROA not before: Sun 01 Jan 2023 23:54:11 +0000
ROA not after: Sun 31 Dec 2023 23:59:11 +0000
asID: 398325
IP address blocks: 2a06:a005:5ba::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:0e:ff:db:3b:93:1c:ff:b3:21:bb:0c:14:a8:b2:1b:fe:66:5a:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d12ea65dee9873b5dcf3c6c0224faea6fcb8aea6
Validity
Not Before: Jan 1 23:54:11 2023 GMT
Not After : Dec 31 23:59:11 2023 GMT
Subject: CN=4ADD8168D5FF1547FFC6158B1968F2F97A706744
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:0f:93:f5:b5:5d:63:4b:ad:09:b3:20:a8:b0:
29:a1:19:90:b4:fd:ad:26:23:2b:49:dc:6a:f3:a6:
e3:ec:f7:70:50:ad:db:f8:6d:c9:89:9e:b2:ef:6b:
96:0d:68:fe:af:ba:43:18:c9:21:41:e6:fa:fc:04:
6c:97:c5:3b:f9:af:3e:9b:19:05:6f:77:65:ea:e4:
2d:c4:eb:49:57:e6:e4:e2:52:d8:af:33:e0:85:d9:
2a:72:8b:8d:20:02:03:2e:c0:84:12:d2:98:35:42:
9e:f4:d7:4b:3d:e4:8b:b1:7e:41:2f:ee:47:ed:6a:
04:ab:cf:e9:06:14:7b:1c:46:77:f1:39:89:75:ed:
a0:bb:5c:d5:c0:15:36:98:28:50:62:de:67:ba:9f:
e3:1c:ad:2b:0a:94:3e:18:23:be:12:bc:c3:98:84:
48:3d:ad:2c:8a:ca:8f:84:62:a7:fc:84:2d:23:8b:
c0:8b:30:58:49:13:1c:e8:8d:19:c9:94:7e:d6:dc:
40:7c:ae:94:34:bd:4e:18:c2:b1:16:c9:ba:45:9b:
78:f3:5d:36:9a:d6:a3:c1:9e:b0:16:01:d0:72:7b:
93:87:94:84:ed:24:14:81:25:92:a7:86:5d:11:32:
17:90:de:d1:cb:9f:19:91:6c:51:9d:0f:ee:0b:3b:
8f:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:DD:81:68:D5:FF:15:47:FF:C6:15:8B:19:68:F2:F9:7A:70:67:44
X509v3 Authority Key Identifier:
keyid:D1:2E:A6:5D:EE:98:73:B5:DC:F3:C6:C0:22:4F:AE:A6:FC:B8:AE:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/D12EA65DEE9873B5DCF3C6C0224FAEA6FCB8AEA6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0S6mXe6Yc7Xc88bAIk-upvy4rqY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/AS398325.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:5ba::/48
Signature Algorithm: sha256WithRSAEncryption
39:63:f8:54:74:1e:c9:23:e0:6e:a3:d8:3c:b8:ec:8c:77:71:
d6:10:95:fb:ff:19:ac:2f:d3:f1:f6:88:f9:d7:4c:b5:d1:96:
83:22:38:34:6c:8c:4f:7c:f3:f4:45:07:89:17:d7:83:6e:47:
05:02:ae:7a:b0:79:1a:26:8d:37:4f:ae:bf:b5:d2:39:55:2a:
19:11:5c:aa:00:b8:10:a5:07:59:e3:11:5c:25:0c:36:4d:f6:
a1:9f:a0:00:47:2f:5b:dd:4e:2b:66:99:26:de:bd:c2:cb:e0:
44:51:7c:1c:83:4c:a5:be:01:0e:74:38:78:99:7b:62:2a:14:
d8:0e:63:87:2f:94:fa:df:2a:9b:5d:3f:54:3f:99:62:21:f6:
c1:78:31:77:23:e8:26:46:42:61:36:02:b9:d5:eb:9a:66:a7:
1a:6c:46:f3:71:5b:d9:bb:ab:ea:71:b5:73:d8:e3:e0:cc:ce:
e8:d8:b3:df:d6:ad:ad:7f:44:c5:cb:43:31:d8:8b:60:cc:19:
c9:af:62:d0:8a:e4:ac:3d:b2:07:28:64:54:a2:eb:6a:25:f1:
04:9d:8b:84:80:f8:ae:32:20:53:e9:ee:a8:61:e5:08:df:60:
af:2d:76:5e:36:c4:b6:b1:a1:5b:f6:88:68:2b:7a:4e:73:92:
63:17:2d:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:09 2024 by rpki-client on console-ams.rpki-client.org