Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/326130313a3666303a666666663a3a2f34382d3438203d3e203633343733.roa
File: 326130313a3666303a666666663a3a2f34382d3438203d3e203633343733.roa (raw, json)
Hash identifier: HPx3p0o3JNV4S4gkhApEcNxH07kfI1kH4r5RoASJugE=
Subject key identifier: 19:03:42:16:EE:79:DA:FC:E6:7E:9E:BD:C2:A9:77:DE:01:4C:C3:11
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 224CCEF371E46E9B6A1A94E3C01B0E40FAAC994C
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/326130313a3666303a666666663a3a2f34382d3438203d3e203633343733.roa
Signing time: Mon 27 Jan 2025 09:45:14 +0000
ROA not before: Mon 27 Jan 2025 09:40:14 +0000
ROA not after: Mon 26 Jan 2026 09:45:14 +0000
asID: 63473
IP address blocks: 2a01:6f0:ffff::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:4c:ce:f3:71:e4:6e:9b:6a:1a:94:e3:c0:1b:0e:40:fa:ac:99:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jan 27 09:40:14 2025 GMT
Not After : Jan 26 09:45:14 2026 GMT
Subject: CN=19034216EE79DAFCE67E9EBDC2A977DE014CC311
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:57:f4:f2:0c:0a:b0:28:ce:d2:19:fd:9a:84:
3b:c3:7c:5c:b4:dc:a4:ea:e6:4b:ad:37:22:9d:b2:
fc:47:cc:0c:af:e9:e9:25:6c:04:ba:3d:a1:1a:2b:
ec:fc:f2:a1:69:66:31:2f:26:2f:75:d7:08:0f:1d:
1f:63:05:7f:3f:76:b9:9a:d8:cc:08:06:c8:fe:0c:
6e:67:06:f2:0d:11:45:a3:82:e9:6e:15:82:48:f2:
f3:e7:e7:e9:d6:69:99:b8:c0:dd:c6:6c:93:ae:ae:
b8:c7:6c:76:b6:89:c7:9d:2f:17:0f:95:01:08:e1:
64:7f:1b:9d:3b:1f:3f:51:ef:2b:3b:5d:7b:a9:38:
8a:e1:b5:56:1c:0e:27:b7:c1:32:04:99:24:8c:54:
49:52:c1:5f:13:97:c0:67:29:30:92:90:66:23:1f:
09:de:a3:ac:33:c1:5a:2f:5a:25:c3:b1:9d:48:a8:
c7:8e:64:9e:bc:41:22:2b:b8:a4:dd:26:5e:ac:7b:
8b:64:c5:95:6e:e0:25:70:af:26:0a:29:74:56:68:
f8:8f:81:3d:56:2e:68:84:79:cd:ee:f3:99:c7:cb:
8b:70:81:d2:2d:b1:0d:8a:5e:81:6a:0c:91:38:27:
0c:bd:87:a8:5c:24:15:16:4a:a6:ed:e9:f8:4c:42:
30:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:03:42:16:EE:79:DA:FC:E6:7E:9E:BD:C2:A9:77:DE:01:4C:C3:11
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/326130313a3666303a666666663a3a2f34382d3438203d3e203633343733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:6f0:ffff::/48
Signature Algorithm: sha256WithRSAEncryption
8a:77:ef:f6:6e:8a:a4:a5:d0:7c:21:ee:2e:cb:b3:af:59:97:
65:56:c0:e4:aa:42:82:af:31:60:a5:44:5c:d6:42:dc:90:a1:
92:0d:7d:83:ff:63:f4:80:54:da:77:f6:42:67:20:f5:9e:2f:
6d:7a:09:63:fd:aa:0f:7a:cf:fe:8b:13:b4:a9:92:94:29:f1:
66:4b:70:c1:37:4d:c0:a5:8c:50:e2:2d:11:95:ec:67:60:1f:
89:20:8d:5c:05:fb:da:2d:7e:7d:ec:b6:95:19:f7:91:c2:39:
4c:cf:61:3c:eb:01:d4:df:bc:83:52:83:a5:e5:f7:f7:f5:10:
8d:91:c9:3c:34:fb:47:a5:91:9a:a2:cd:05:12:f2:59:cf:ca:
ea:1e:ef:c7:7e:10:b5:1e:ca:74:a5:64:b8:0e:50:39:7f:de:
44:cc:19:30:55:fe:e7:ca:3e:a4:6c:26:4b:16:fc:b2:56:5e:
b4:09:4f:79:ea:e7:76:d5:47:0f:db:47:be:ca:1c:e5:b7:31:
ce:c0:6c:09:af:63:a9:89:3e:1f:8f:c0:20:b0:84:56:9e:70:
b3:ef:f3:da:d1:c7:75:f2:e5:52:b8:b6:32:c3:ab:da:02:bd:
4d:ee:68:34:9b:8d:a9:c9:b3:e9:8a:62:06:d2:1e:4d:e7:89:
71:67:f5:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 19:03:24 2025 by rpki-client