Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bb25d068-7f9c-4b0e-a695-1779b7d8f06e/0/326130663a336363333a3a2f33362d3336203d3e203630373335.roa
File: 326130663a336363333a3a2f33362d3336203d3e203630373335.roa (raw, json)
Hash identifier: qgpa17rXBGEZyX0zTURKp2TS7HA9WA0LAdj3r9yq+jg=
Subject key identifier: 58:47:39:AF:D7:C8:B5:25:B3:7A:51:43:1D:37:92:6E:0C:28:4A:8A
Certificate issuer: /CN=cb29a77669df5a7a5cb506d839ee8aa4337ccaac
Certificate serial: 7EE534A5BEAAAF6C441DB0E2DDA0645C47E3169C
Authority key identifier: CB:29:A7:76:69:DF:5A:7A:5C:B5:06:D8:39:EE:8A:A4:33:7C:CA:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yymndmnfWnpctQbYOe6KpDN8yqw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bb25d068-7f9c-4b0e-a695-1779b7d8f06e/0/326130663a336363333a3a2f33362d3336203d3e203630373335.roa
Signing time: Sun 30 Mar 2025 05:13:31 +0000
ROA not before: Sun 30 Mar 2025 05:08:31 +0000
ROA not after: Sun 29 Mar 2026 05:13:31 +0000
asID: 60735
IP address blocks: 2a0f:3cc3::/36 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:e5:34:a5:be:aa:af:6c:44:1d:b0:e2:dd:a0:64:5c:47:e3:16:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb29a77669df5a7a5cb506d839ee8aa4337ccaac
Validity
Not Before: Mar 30 05:08:31 2025 GMT
Not After : Mar 29 05:13:31 2026 GMT
Subject: CN=584739AFD7C8B525B37A51431D37926E0C284A8A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e0:37:5c:e8:a9:99:99:54:04:25:88:84:18:
c1:2c:bb:24:78:29:34:ea:8c:ab:56:9d:75:b7:94:
74:f0:cb:94:82:92:9d:c3:9c:0d:ba:5d:7a:f5:5b:
60:cf:46:3c:b8:dd:01:17:6e:92:c2:9d:9f:eb:e8:
80:9d:55:78:76:e7:a8:dd:81:90:99:4c:51:16:b9:
77:41:76:5d:97:b1:e7:f8:61:7b:2a:a6:ae:26:88:
44:a4:02:16:d0:6f:e3:d1:f9:4a:97:e9:1f:49:4c:
3c:e3:74:c6:47:b2:3d:25:75:fc:a2:c4:c8:c4:2b:
81:fb:57:25:69:f2:10:77:4a:3b:73:2c:ed:f8:68:
97:60:97:5f:70:3c:55:3f:76:9e:2a:d1:9e:89:26:
0e:b9:d3:84:35:51:48:f1:d2:2e:6d:b2:30:bc:91:
a3:f9:58:c8:dd:41:b6:b5:49:99:f5:b6:2c:3b:fa:
aa:db:40:1b:dc:8d:35:77:8a:45:5c:88:6f:e2:d8:
d0:cc:d7:eb:a8:7d:32:3b:f7:f6:df:2a:fc:dd:c4:
88:68:58:d8:73:8c:c0:3e:42:a6:b6:14:5b:d5:4e:
0b:fd:a1:ee:eb:cd:e5:fd:b9:8d:8d:96:1d:76:b6:
58:d1:21:dd:7c:b6:e7:b9:cc:b4:eb:07:06:2c:9d:
9b:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:47:39:AF:D7:C8:B5:25:B3:7A:51:43:1D:37:92:6E:0C:28:4A:8A
X509v3 Authority Key Identifier:
keyid:CB:29:A7:76:69:DF:5A:7A:5C:B5:06:D8:39:EE:8A:A4:33:7C:CA:AC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/bb25d068-7f9c-4b0e-a695-1779b7d8f06e/0/CB29A77669DF5A7A5CB506D839EE8AA4337CCAAC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yymndmnfWnpctQbYOe6KpDN8yqw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bb25d068-7f9c-4b0e-a695-1779b7d8f06e/0/326130663a336363333a3a2f33362d3336203d3e203630373335.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:3cc3::/36
Signature Algorithm: sha256WithRSAEncryption
45:aa:94:4c:56:8d:34:33:b1:69:3c:cb:49:30:39:6e:82:22:
f4:73:d9:e8:7d:3b:c9:b3:32:bd:ac:6b:74:c0:70:13:ec:be:
89:56:f1:fc:45:f9:29:55:60:a3:a0:74:67:13:92:ed:4e:c0:
95:0a:70:15:1c:e3:b2:88:d6:2f:65:1e:57:87:73:94:d8:87:
5c:75:6f:8f:89:8c:e1:f5:7e:35:8d:27:c3:68:50:0d:54:c0:
db:86:3c:77:cc:a5:2d:b9:eb:8e:93:cd:56:fc:c9:c4:5c:d4:
16:f9:60:b1:72:6b:12:3e:ca:34:98:d5:f6:b2:ba:30:e4:e0:
db:52:2c:26:e7:ab:6d:30:cb:3d:5a:07:97:9c:7e:af:26:06:
34:fb:a6:5d:24:54:54:1d:13:83:54:f6:f4:66:ce:8c:40:21:
dd:c2:af:10:4f:88:69:e3:15:6e:63:d8:ad:07:b4:67:3b:3e:
94:9e:e8:f8:0b:cb:17:5f:16:42:9e:ab:2b:49:13:b1:cc:a9:
a0:87:d2:a9:01:ab:b7:30:ed:a8:a6:66:c3:a9:5b:eb:77:43:
df:f1:30:6f:93:df:64:52:1a:f2:fa:9e:65:a9:78:79:59:6c:
88:1b:b1:dd:19:40:80:15:1f:af:4f:f8:ab:74:41:23:77:09:
f3:a3:72:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:34:29 2025 by rpki-client on console.sobornost.net