Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fb30d3de-e574-4a23-a1bd-5f1fa05c53be/0/326130623a346530343a34323a3a2f34382d3438203d3e20323135373531.roa
File: 326130623a346530343a34323a3a2f34382d3438203d3e20323135373531.roa (raw, json)
Hash identifier: i7ycL1VdQKdj6JlBhzbSnK6agd5/KvQ/v8/9VlHoQSo=
Subject key identifier: 6A:CF:2A:74:23:57:C9:24:76:A1:F6:45:CD:1B:56:B0:91:4D:4B:A7
Certificate issuer: /CN=fc59950e49df88985ab0727278320c684d2074be
Certificate serial: 7F78A7CF22E5331232BD6D2BF232D1522E1CEC74
Authority key identifier: FC:59:95:0E:49:DF:88:98:5A:B0:72:72:78:32:0C:68:4D:20:74:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_FmVDknfiJhasHJyeDIMaE0gdL4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fb30d3de-e574-4a23-a1bd-5f1fa05c53be/0/326130623a346530343a34323a3a2f34382d3438203d3e20323135373531.roa
Signing time: Sat 27 Apr 2024 15:41:51 +0000
ROA not before: Sat 27 Apr 2024 15:36:51 +0000
ROA not after: Sat 26 Apr 2025 15:41:51 +0000
asID: 215751
IP address blocks: 2a0b:4e04:42::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:78:a7:cf:22:e5:33:12:32:bd:6d:2b:f2:32:d1:52:2e:1c:ec:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc59950e49df88985ab0727278320c684d2074be
Validity
Not Before: Apr 27 15:36:51 2024 GMT
Not After : Apr 26 15:41:51 2025 GMT
Subject: CN=6ACF2A742357C92476A1F645CD1B56B0914D4BA7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:2a:2a:1a:ed:76:0c:42:f5:66:16:c3:53:64:
88:f1:cd:ec:c3:f5:70:b0:25:36:cd:3e:7b:db:6a:
95:c1:2b:35:91:de:85:c2:0a:29:61:86:24:83:9a:
a3:9d:e5:d3:43:a1:95:ba:59:8c:23:de:9f:84:42:
c3:90:2f:c0:93:ee:d0:da:15:06:b4:50:28:3b:38:
1f:a6:55:9f:10:2f:c0:ba:5e:2f:7e:26:58:1b:4d:
b4:46:02:bc:8b:f3:b0:a4:77:14:2a:67:73:60:96:
b4:e4:3f:85:ee:c7:ae:9a:05:a5:11:30:99:e5:1b:
4a:c6:9f:df:87:a6:ff:b2:e7:bc:17:6d:8d:76:70:
2f:9c:df:e5:5f:99:71:c9:d0:d8:8a:1e:eb:01:9f:
74:c4:3d:81:d0:3a:32:2e:3b:10:83:4b:4c:f8:e6:
66:d8:96:c9:b4:8c:88:67:54:ef:7b:14:a7:f5:71:
b3:a5:6e:67:3e:ef:4b:74:66:6d:44:a4:a0:b4:11:
68:a7:27:2f:db:19:87:d6:3a:f2:4c:23:db:87:4a:
b4:ac:ee:eb:ab:0d:92:6a:21:9b:14:36:6e:45:8c:
96:4c:9b:f9:2a:49:80:f2:c0:66:11:6b:a8:5d:70:
76:f6:8d:b4:a3:0f:b0:e0:f4:ab:95:db:9e:5c:15:
95:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:CF:2A:74:23:57:C9:24:76:A1:F6:45:CD:1B:56:B0:91:4D:4B:A7
X509v3 Authority Key Identifier:
keyid:FC:59:95:0E:49:DF:88:98:5A:B0:72:72:78:32:0C:68:4D:20:74:BE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fb30d3de-e574-4a23-a1bd-5f1fa05c53be/0/FC59950E49DF88985AB0727278320C684D2074BE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_FmVDknfiJhasHJyeDIMaE0gdL4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fb30d3de-e574-4a23-a1bd-5f1fa05c53be/0/326130623a346530343a34323a3a2f34382d3438203d3e20323135373531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:4e04:42::/48
Signature Algorithm: sha256WithRSAEncryption
74:50:42:06:af:51:08:e5:96:da:30:10:d0:09:11:ba:9f:a8:
a8:78:a6:3e:53:37:a2:15:6c:8e:83:11:11:ad:9d:26:aa:5c:
14:e6:25:7c:1b:cd:d8:cf:0d:0e:de:f7:eb:60:da:24:f2:b6:
bf:cb:05:1f:03:90:b5:42:c9:54:cb:d6:4c:f0:0d:2f:29:06:
68:b1:b7:a1:c0:cf:61:81:3b:be:6f:d8:f6:3b:d8:0a:94:60:
bf:3f:ff:82:53:87:ec:64:c8:b5:79:aa:6d:6f:f8:99:61:e2:
c7:f6:43:83:38:38:17:53:54:cb:02:bc:47:f5:03:05:9f:5c:
39:04:a6:d7:e5:3f:a9:9e:4c:08:09:d6:0f:44:64:d1:80:99:
95:3f:83:4b:2d:70:fa:10:b2:cc:9f:92:03:35:61:55:44:da:
ac:d6:97:3b:eb:88:07:7e:60:e5:69:19:5c:1d:38:93:76:26:
bb:51:cc:b6:db:ed:af:80:4b:1e:16:96:0d:bf:27:4b:f4:91:
8f:4c:dd:b2:b4:27:50:94:fb:79:54:2e:12:be:fe:57:08:f5:
5e:d2:cf:c4:70:61:47:fb:60:c0:d9:83:6c:ac:1a:ac:6c:a8:
2f:cc:a7:71:ca:91:66:dc:10:e0:e9:fc:86:39:fc:51:60:c8:
f8:de:d9:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 11 05:06:49 2024 by rpki-client on console-fra.rpki-client.org