Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bb25d068-7f9c-4b0e-a695-1779b7d8f06e/0/326130663a336363323a3a2f33322d3332203d3e20323037393336.roa
File: 326130663a336363323a3a2f33322d3332203d3e20323037393336.roa (raw, json)
Hash identifier: bLMKUTu2LDh7TH4JEFo2TwGKCx3JiqqNy6hRd14etMM=
Subject key identifier: F1:79:C7:54:A1:E8:02:F8:3A:69:98:AB:A0:FC:CD:A3:B2:FE:0F:9D
Certificate issuer: /CN=cb29a77669df5a7a5cb506d839ee8aa4337ccaac
Certificate serial: 444A20D6A6212BB74D1033B6636F92FD7CB4BF83
Authority key identifier: CB:29:A7:76:69:DF:5A:7A:5C:B5:06:D8:39:EE:8A:A4:33:7C:CA:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yymndmnfWnpctQbYOe6KpDN8yqw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bb25d068-7f9c-4b0e-a695-1779b7d8f06e/0/326130663a336363323a3a2f33322d3332203d3e20323037393336.roa
Signing time: Sun 30 Mar 2025 05:13:22 +0000
ROA not before: Sun 30 Mar 2025 05:08:22 +0000
ROA not after: Sun 29 Mar 2026 05:13:22 +0000
asID: 207936
IP address blocks: 2a0f:3cc2::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:4a:20:d6:a6:21:2b:b7:4d:10:33:b6:63:6f:92:fd:7c:b4:bf:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb29a77669df5a7a5cb506d839ee8aa4337ccaac
Validity
Not Before: Mar 30 05:08:22 2025 GMT
Not After : Mar 29 05:13:22 2026 GMT
Subject: CN=F179C754A1E802F83A6998ABA0FCCDA3B2FE0F9D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:a0:ff:d0:68:c2:56:7b:ee:60:3d:d2:c9:61:
82:1a:16:2b:be:59:9a:c8:14:1b:2c:b3:91:6a:7e:
c7:ec:88:ae:eb:d9:ba:a3:0c:f9:6c:e1:de:b0:39:
81:51:22:6f:1d:27:42:27:af:93:26:6b:ad:5f:3e:
a5:86:42:53:3f:06:29:81:1f:7e:3d:a0:4b:8b:39:
2e:25:44:39:e3:d0:be:35:e5:11:c4:ec:7f:36:fb:
2d:a1:76:a6:4f:c2:e3:fd:2d:18:93:20:8a:ff:99:
e6:04:ff:82:b6:37:3a:fb:f6:d7:28:61:e0:b1:6a:
00:24:5d:35:50:90:4b:e1:f3:ac:ee:13:df:20:03:
1a:6b:eb:48:11:ba:fb:52:85:36:51:85:ca:1f:50:
12:2e:96:d9:75:50:c0:5e:b4:02:52:f4:d6:6a:d3:
b2:f9:5e:c6:76:17:33:9a:5e:4a:d7:2f:b6:68:68:
57:cf:03:22:af:3a:24:5e:62:1d:37:d4:5b:6c:94:
a8:b9:a4:3d:69:61:1a:9f:99:a6:7c:1c:57:ad:63:
4f:2e:1e:35:d8:09:08:da:3c:fc:1f:05:15:48:e5:
14:ed:9c:c4:0f:75:e8:ca:c4:c0:3e:14:04:59:db:
23:98:98:e1:34:d7:80:11:95:43:ae:83:d5:0c:78:
4b:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:79:C7:54:A1:E8:02:F8:3A:69:98:AB:A0:FC:CD:A3:B2:FE:0F:9D
X509v3 Authority Key Identifier:
keyid:CB:29:A7:76:69:DF:5A:7A:5C:B5:06:D8:39:EE:8A:A4:33:7C:CA:AC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/bb25d068-7f9c-4b0e-a695-1779b7d8f06e/0/CB29A77669DF5A7A5CB506D839EE8AA4337CCAAC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yymndmnfWnpctQbYOe6KpDN8yqw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bb25d068-7f9c-4b0e-a695-1779b7d8f06e/0/326130663a336363323a3a2f33322d3332203d3e20323037393336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:3cc2::/32
Signature Algorithm: sha256WithRSAEncryption
30:3b:97:4f:86:d7:ed:69:0c:63:80:b4:bb:f5:05:8a:70:56:
53:98:6b:13:71:c3:b1:ce:0b:fe:9d:70:ef:74:bd:bb:43:83:
32:cf:13:df:05:1e:97:84:3f:a1:06:28:0b:1e:e1:0a:04:1c:
8d:b4:30:50:2b:cf:de:8d:62:79:5d:ff:ce:cb:e6:c7:dd:49:
ea:31:ab:77:f5:b8:ea:b3:11:f6:1a:8e:2d:ee:88:67:57:9b:
8f:d0:5f:ee:f7:e9:ed:d5:9e:cf:7b:70:f4:f8:d8:c3:79:ef:
7e:26:b1:38:03:90:80:35:08:5d:f3:99:37:3b:7e:1c:58:0e:
c3:70:ad:af:dd:73:e9:8b:3e:2f:75:6b:f8:ca:a0:42:51:34:
53:57:3c:60:ee:7f:90:db:db:83:ea:ce:bd:96:47:f3:a3:9d:
68:9c:bd:ec:ff:ee:5c:db:41:03:a8:5d:22:59:b9:05:e1:49:
32:6c:51:74:25:62:b2:ee:bd:9b:8a:4f:fd:99:c1:aa:99:29:
74:e9:0a:23:f7:6a:d7:a4:f6:05:24:cd:ca:3c:7b:a2:c2:89:
62:ca:7c:cc:00:7a:38:d0:03:e2:91:b0:37:b8:40:0c:0c:8f:
30:fe:4f:b7:e3:21:cd:d0:0d:99:ca:c5:eb:6e:b5:b5:43:96:
2b:23:b9:8d
-----BEGIN CERTIFICATE-----
MIIFNDCCBBygAwIBAgIUREog1qYhK7dNEDO2Y2+S/Xy0v4MwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoY2IyOWE3NzY2OWRmNWE3YTVjYjUwNmQ4MzllZThhYTQz
MzdjY2FhYzAeFw0yNTAzMzAwNTA4MjJaFw0yNjAzMjkwNTEzMjJaMDMxMTAvBgNV
BAMTKEYxNzlDNzU0QTFFODAyRjgzQTY5OThBQkEwRkNDREEzQjJGRTBGOUQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJoP/QaMJWe+5gPdLJYYIaFiu+
WZrIFBsss5FqfsfsiK7r2bqjDPls4d6wOYFRIm8dJ0Inr5Mma61fPqWGQlM/BimB
H349oEuLOS4lRDnj0L415RHE7H82+y2hdqZPwuP9LRiTIIr/meYE/4K2Nzr79tco
YeCxagAkXTVQkEvh86zuE98gAxpr60gRuvtShTZRhcofUBIultl1UMBetAJS9NZq
07L5XsZ2FzOaXkrXL7ZoaFfPAyKvOiReYh031FtslKi5pD1pYRqfmaZ8HFetY08u
HjXYCQjaPPwfBRVI5RTtnMQPdejKxMA+FARZ2yOYmOE014ARlUOug9UMeEsBAgMB
AAGjggI+MIICOjAdBgNVHQ4EFgQU8XnHVKHoAvg6aZiroPzNo7L+D50wHwYDVR0j
BBgwFoAUyymndmnfWnpctQbYOe6KpDN8yqwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYmIyNWQwNjgtN2Y5Yy00YjBlLWE2OTUtMTc3OWI3ZDhm
MDZlLzAvQ0IyOUE3NzY2OURGNUE3QTVDQjUwNkQ4MzlFRThBQTQzMzdDQ0FBQy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3l5bW5kbW5mV25wY3RRYllPZTZLcERO
OHlxdy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYmIyNWQwNjgt
N2Y5Yy00YjBlLWE2OTUtMTc3OWI3ZDhmMDZlLzAvMzI2MTMwNjYzYTMzNjM2MzMy
M2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzIzMDM3MzkzMzM2LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUA
Kg88wjANBgkqhkiG9w0BAQsFAAOCAQEAMDuXT4bX7WkMY4C0u/UFinBWU5hrE3HD
sc4L/p1w73S9u0ODMs8T3wUel4Q/oQYoCx7hCgQcjbQwUCvP3o1ieV3/zsvmx91J
6jGrd/W46rMR9hqOLe6IZ1ebj9Bf7vfp7dWez3tw9PjYw3nvfiaxOAOQgDUIXfOZ
Nzt+HFgOw3Ctr91z6Ys+L3Vr+MqgQlE0U1c8YO5/kNvbg+rOvZZH86OdaJy97P/u
XNtBA6hdIlm5BeFJMmxRdCVisu69m4pP/ZnBqpkpdOkKI/dq16T2BSTNyjx7osKJ
Ysp8zAB6ONAD4pGwN7hADAyPMP5Pt+MhzdANmcrF6261tUOWKyO5jQ==
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:34:29 2025 by rpki-client on console.sobornost.net