Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/AS214565.roa
File: AS214565.roa (raw, json)
Hash identifier: QGU/XzARhOrgYEyY8L+IQySo/t2hFs4Zf9iw9JQSv7Q=
Subject key identifier: 06:46:8E:7C:09:F6:50:55:E4:39:C2:13:F4:1E:26:AF:A8:48:F6:51
Certificate issuer: /CN=5ae4437029659539f54f900b35e43be06a94b37b
Certificate serial: 6DED58C85204E333A211C4B2E08CB87DFD6E1D0C
Authority key identifier: 5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/AS214565.roa
Signing time: Wed 10 Jul 2024 17:48:42 +0000
ROA not before: Wed 10 Jul 2024 17:43:42 +0000
ROA not after: Wed 09 Jul 2025 17:48:42 +0000
asID: 214565
IP address blocks: 2a0f:85c1:832::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:ed:58:c8:52:04:e3:33:a2:11:c4:b2:e0:8c:b8:7d:fd:6e:1d:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ae4437029659539f54f900b35e43be06a94b37b
Validity
Not Before: Jul 10 17:43:42 2024 GMT
Not After : Jul 9 17:48:42 2025 GMT
Subject: CN=06468E7C09F65055E439C213F41E26AFA848F651
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:06:ed:16:6f:d2:46:0b:ae:6a:a2:87:9d:7c:
e3:bd:45:2f:3b:5b:18:22:26:ef:37:d4:c6:84:f8:
e4:f0:6e:43:04:1f:0b:6c:ea:a7:2a:1d:5e:06:00:
e0:5a:ce:57:1d:9c:bf:2b:cc:9b:10:d5:f3:d4:e8:
0a:49:e0:2f:64:cc:f2:16:54:18:60:b2:34:70:2a:
de:e0:66:50:0d:a9:3b:59:55:a7:a1:ad:86:12:0a:
11:1c:21:24:49:74:8b:ed:15:f4:db:2c:d1:0c:d3:
86:64:8a:70:13:83:6c:90:8d:0b:13:f6:6c:45:7f:
9d:6f:b5:21:3d:ec:82:ba:84:c8:ef:4d:22:2e:55:
71:6e:0e:7d:2f:eb:d1:6c:11:9b:c7:06:b7:43:e0:
be:4e:9c:3f:c6:2b:44:32:20:ba:51:05:62:aa:a5:
61:44:98:d5:14:f9:1c:7c:fc:91:fb:c7:7a:66:6a:
d4:05:aa:b3:20:8c:56:94:54:6f:85:cd:ba:f1:82:
5d:77:40:c0:7e:0e:41:a6:d5:9d:6b:59:35:fb:4d:
47:0d:d2:43:18:eb:73:15:21:68:59:0a:40:f0:0f:
e7:02:d1:ac:9d:d9:de:89:b8:41:bc:44:ab:4f:74:
aa:0d:78:b1:de:13:e2:3b:9c:13:9d:ce:65:7d:ed:
d5:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:46:8E:7C:09:F6:50:55:E4:39:C2:13:F4:1E:26:AF:A8:48:F6:51
X509v3 Authority Key Identifier:
keyid:5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/5AE4437029659539F54F900B35E43BE06A94B37B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/AS214565.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:832::/48
Signature Algorithm: sha256WithRSAEncryption
4f:d7:86:bd:76:73:ab:90:0d:90:8e:7e:ab:57:bb:f0:46:5d:
b5:2c:b3:02:28:9d:3d:52:a0:90:d4:bf:4d:d8:1c:c1:dc:57:
3d:89:44:33:82:ae:77:a6:93:39:47:0b:28:0c:86:f2:26:a6:
77:62:0b:9f:9d:be:74:a0:30:cc:22:9e:4b:6e:89:71:24:83:
30:68:97:b4:62:c1:35:26:a6:a9:32:b5:f1:33:64:50:b4:b4:
ca:61:03:88:1b:21:00:03:6f:6c:1b:2d:fd:a7:a5:ac:40:87:
e7:35:54:6e:7c:dc:31:27:77:57:a1:25:ef:56:e5:72:a7:eb:
b6:0f:79:7e:5a:06:7a:d0:f2:01:eb:34:48:81:b8:e6:c3:c0:
d2:22:72:9e:a6:f2:c8:01:c2:ed:83:c1:f0:4a:8e:80:44:24:
5e:13:63:21:94:06:30:4e:d0:c1:36:b6:cf:37:2b:63:71:e7:
53:92:c8:bf:ac:54:a1:cb:67:a7:7b:ec:31:d2:3d:09:ec:20:
88:9d:99:0b:c3:10:37:77:12:b1:26:24:2b:f1:f3:5c:c2:46:
47:d0:b5:2c:eb:cb:1f:76:8a:5a:d8:45:df:b5:84:60:31:b9:
e6:e7:2c:86:b1:60:e3:cf:c1:80:bc:d1:fa:24:99:dd:01:6d:
c0:af:d2:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 23 12:55:04 2024 by rpki-client on console-ams.rpki-client.org