Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8070615f-d26d-42e3-a145-5c7b67b2b64e/0/326131343a623430303a3a2f33322d3332203d3e20323133323739.roa
File: 326131343a623430303a3a2f33322d3332203d3e20323133323739.roa (raw, json)
Hash identifier: 5hhgwEfLD9bumu2w7kC2KzlKzBKITTTKNPZHvvEg0u8=
Subject key identifier: CA:31:DC:11:D8:6A:CF:0C:44:C4:6E:A4:E9:7A:DB:E2:2E:79:9A:B2
Certificate issuer: /CN=2c12f0a080f021f2ba25bc0c6ea7e06b67aad05e
Certificate serial: 0CEADDDE42A3896F8C22AA3B3AE9590C6275EF55
Authority key identifier: 2C:12:F0:A0:80:F0:21:F2:BA:25:BC:0C:6E:A7:E0:6B:67:AA:D0:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LBLwoIDwIfK6JbwMbqfga2eq0F4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8070615f-d26d-42e3-a145-5c7b67b2b64e/0/326131343a623430303a3a2f33322d3332203d3e20323133323739.roa
Signing time: Sun 02 Feb 2025 09:54:13 +0000
ROA not before: Sun 02 Feb 2025 09:49:13 +0000
ROA not after: Sun 01 Feb 2026 09:54:13 +0000
asID: 213279
IP address blocks: 2a14:b400::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:ea:dd:de:42:a3:89:6f:8c:22:aa:3b:3a:e9:59:0c:62:75:ef:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c12f0a080f021f2ba25bc0c6ea7e06b67aad05e
Validity
Not Before: Feb 2 09:49:13 2025 GMT
Not After : Feb 1 09:54:13 2026 GMT
Subject: CN=CA31DC11D86ACF0C44C46EA4E97ADBE22E799AB2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:84:4a:fb:96:e4:c5:21:e9:aa:ff:51:33:79:
c4:f9:db:c2:37:cf:bd:09:11:37:1d:07:9f:40:54:
72:fd:c3:4c:5f:64:b9:19:1e:f4:72:78:16:07:7b:
a9:4b:65:c3:6f:c0:a7:a4:1f:23:b5:e2:e7:52:a5:
45:8d:29:6d:21:d3:f1:4d:62:cb:4f:0f:03:7d:52:
e4:6c:3b:81:a1:d2:8c:65:55:4d:74:59:43:82:dc:
84:91:72:d2:fc:e5:2b:4a:9b:21:4e:24:db:2a:ca:
5b:36:f8:ac:88:f1:5c:09:f8:a7:9a:7b:32:50:50:
00:98:18:d2:61:f1:ff:97:5b:2f:15:f2:95:41:7a:
53:45:1e:9a:9b:24:cb:43:f0:9f:b3:39:51:1e:c2:
47:a1:2c:f5:cb:09:97:dc:38:8a:b4:c5:20:b5:08:
d3:9d:6e:30:80:1a:7e:8a:4b:a1:d6:ae:39:9a:11:
eb:84:21:ed:43:ec:5d:8e:3f:cb:f5:30:58:ff:e0:
40:a5:f3:fa:21:14:45:76:49:63:48:f9:35:dc:71:
01:76:de:1e:f0:62:ff:cb:37:fd:d6:85:03:2d:5a:
ff:70:b1:d1:53:bb:c3:f7:d2:07:d4:54:85:38:57:
17:82:cd:ff:a4:bf:4d:00:99:f0:af:e8:60:51:db:
50:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:31:DC:11:D8:6A:CF:0C:44:C4:6E:A4:E9:7A:DB:E2:2E:79:9A:B2
X509v3 Authority Key Identifier:
keyid:2C:12:F0:A0:80:F0:21:F2:BA:25:BC:0C:6E:A7:E0:6B:67:AA:D0:5E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8070615f-d26d-42e3-a145-5c7b67b2b64e/0/2C12F0A080F021F2BA25BC0C6EA7E06B67AAD05E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LBLwoIDwIfK6JbwMbqfga2eq0F4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8070615f-d26d-42e3-a145-5c7b67b2b64e/0/326131343a623430303a3a2f33322d3332203d3e20323133323739.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:b400::/32
Signature Algorithm: sha256WithRSAEncryption
95:49:3e:2b:a5:ea:d4:d2:7b:07:9c:d8:f5:e9:5c:62:39:83:
4d:37:38:cc:ab:1c:fd:d1:88:18:ba:f5:af:e4:52:e1:a9:91:
c2:c5:63:ce:3f:3a:94:0b:d7:74:8d:28:c7:b2:e1:93:51:12:
2c:b0:f2:07:78:13:e9:df:d4:bc:7b:62:55:58:53:83:0a:08:
9e:ba:72:29:0a:2a:48:02:12:b6:f2:b3:9a:96:a9:79:df:ba:
47:bf:e3:32:db:49:fe:bf:ab:c2:23:c2:15:9d:e9:6a:2b:24:
8f:3d:1c:21:bc:bb:42:05:99:2c:47:8c:ce:c5:7a:44:5d:1d:
43:39:a1:e6:29:0f:2a:fe:c1:6f:38:cb:3d:e6:06:6b:d5:77:
77:01:cd:37:8f:37:d8:40:4d:58:20:c1:f6:d8:1b:0f:2c:3b:
59:e0:95:c3:34:1a:a8:80:27:5c:b7:d7:a3:83:c6:cd:a9:97:
e8:8f:06:ad:9e:1e:71:71:25:cf:2e:14:ef:94:91:b6:45:b0:
0d:78:b2:e4:29:c1:be:20:0f:56:1d:21:2b:b9:81:5b:15:f1:
07:45:49:f3:27:5f:78:e6:b7:88:7c:48:d1:35:bf:ac:4e:ff:
7e:77:f0:e3:8c:13:ad:ec:8a:31:11:f4:93:a3:f7:72:af:0d:
6f:09:bc:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:34:27 2025 by rpki-client on console.sobornost.net