Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bb25d068-7f9c-4b0e-a695-1779b7d8f06e/0/326130663a336363313a3a2f33322d3332203d3e20323037393336.roa
File: 326130663a336363313a3a2f33322d3332203d3e20323037393336.roa (raw, json)
Hash identifier: 4eRihxuyWrFmyrmWNHP+q80BiQuGj/+XTMKJH0kDcVI=
Subject key identifier: B0:28:E2:AB:A2:DF:DA:CC:B1:71:A4:AB:F2:F7:35:52:1D:DD:FC:1A
Certificate issuer: /CN=cb29a77669df5a7a5cb506d839ee8aa4337ccaac
Certificate serial: 04E6C776A20BD3D5603EAE761027ECF9E2E6D802
Authority key identifier: CB:29:A7:76:69:DF:5A:7A:5C:B5:06:D8:39:EE:8A:A4:33:7C:CA:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yymndmnfWnpctQbYOe6KpDN8yqw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bb25d068-7f9c-4b0e-a695-1779b7d8f06e/0/326130663a336363313a3a2f33322d3332203d3e20323037393336.roa
Signing time: Sun 30 Mar 2025 05:13:26 +0000
ROA not before: Sun 30 Mar 2025 05:08:26 +0000
ROA not after: Sun 29 Mar 2026 05:13:26 +0000
asID: 207936
IP address blocks: 2a0f:3cc1::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:e6:c7:76:a2:0b:d3:d5:60:3e:ae:76:10:27:ec:f9:e2:e6:d8:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb29a77669df5a7a5cb506d839ee8aa4337ccaac
Validity
Not Before: Mar 30 05:08:26 2025 GMT
Not After : Mar 29 05:13:26 2026 GMT
Subject: CN=B028E2ABA2DFDACCB171A4ABF2F735521DDDFC1A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:ed:e6:c2:b8:0a:a7:27:fc:88:af:29:72:09:
08:fc:a6:8b:a3:47:75:60:c0:ec:8e:34:aa:e9:6d:
8b:8c:11:58:3e:59:f6:f0:62:3e:43:4e:61:4d:02:
cc:09:16:f1:91:bd:73:08:42:66:d6:23:9e:6c:63:
be:b7:9c:ba:94:a3:f6:1f:71:ed:d1:a9:d2:00:fc:
4d:3f:e3:5e:ba:fa:e7:6e:8b:31:40:b1:43:62:fd:
6c:fb:55:9f:a5:8e:9c:50:f1:c3:ea:c9:3b:9c:2a:
f8:fd:0d:74:bd:05:e6:a8:3d:d4:97:11:74:4b:36:
cd:6b:28:95:96:77:a3:31:b5:da:b2:d3:02:fc:4a:
4a:6b:27:e4:6c:93:72:e7:37:d3:72:c1:08:26:e7:
0b:58:23:6a:7d:17:67:c7:09:0d:c0:1f:20:ff:90:
74:b3:3a:bc:99:4d:80:98:b6:b1:df:bc:c5:d7:63:
ee:f7:5a:b0:1b:5f:55:dd:5e:0d:d0:8d:b6:7f:46:
50:04:76:18:ef:36:bc:5c:63:9e:a6:e0:81:6e:89:
a0:31:0d:17:14:c7:39:f7:c6:59:15:8d:04:d6:ce:
9b:bd:b1:3c:d3:04:39:6d:01:67:c8:20:55:15:cc:
09:40:b9:9b:fa:60:c5:85:41:3e:28:aa:8a:11:66:
d4:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:28:E2:AB:A2:DF:DA:CC:B1:71:A4:AB:F2:F7:35:52:1D:DD:FC:1A
X509v3 Authority Key Identifier:
keyid:CB:29:A7:76:69:DF:5A:7A:5C:B5:06:D8:39:EE:8A:A4:33:7C:CA:AC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/bb25d068-7f9c-4b0e-a695-1779b7d8f06e/0/CB29A77669DF5A7A5CB506D839EE8AA4337CCAAC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yymndmnfWnpctQbYOe6KpDN8yqw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bb25d068-7f9c-4b0e-a695-1779b7d8f06e/0/326130663a336363313a3a2f33322d3332203d3e20323037393336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:3cc1::/32
Signature Algorithm: sha256WithRSAEncryption
61:e8:77:e1:9f:67:01:62:0b:23:bb:f9:e9:2e:4f:0a:f5:e5:
f0:cd:88:f6:69:e1:80:6f:77:f3:2f:19:af:63:ce:5e:3f:c2:
d8:75:0a:a0:94:bf:2f:de:d2:9e:46:b3:2e:e1:68:a5:c2:74:
1e:9d:11:b0:66:01:15:10:71:02:b7:4a:21:d1:27:ec:20:28:
07:48:8a:8b:24:4f:b8:6c:cd:16:7c:4f:ff:bb:e6:55:bb:f9:
ac:6d:88:b5:49:3b:a5:ab:2b:c2:d8:3c:f2:98:79:64:cc:6c:
9d:43:ea:1b:92:09:90:65:af:bd:61:34:87:0c:54:66:3c:ca:
41:6d:61:a5:03:02:9c:c7:df:d9:d7:ee:b3:1f:24:bb:ba:cb:
5d:60:8c:c7:17:5c:bf:d9:18:3b:7a:f6:4b:fa:6a:8a:ea:ac:
a1:1a:11:14:ac:b7:a1:52:49:73:bf:03:4c:2b:d7:d8:3d:c9:
c2:29:8a:a9:4c:99:dd:4c:f3:95:81:b2:39:d5:5e:5c:f2:37:
c2:d5:f8:b7:58:bf:03:c5:18:51:8d:df:4c:dc:ac:08:72:08:
51:73:95:31:8c:a7:67:9f:e6:0f:17:d2:f6:00:3e:06:4b:13:
f5:8f:60:97:3b:4b:2f:6e:fa:ff:eb:08:c6:55:62:95:1d:07:
93:44:f5:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:34:29 2025 by rpki-client on console.sobornost.net