Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bb25d068-7f9c-4b0e-a695-1779b7d8f06e/0/326130663a336363343a3a2f33322d3332203d3e20323037393336.roa
File: 326130663a336363343a3a2f33322d3332203d3e20323037393336.roa (raw, json)
Hash identifier: sUFXVk5mJuzGXi+txvF0jHfWX/7COhdmW+wdhnGLLbA=
Subject key identifier: 1B:55:17:1E:CC:34:88:31:C8:F3:68:55:EB:57:CD:7D:FC:B0:94:F9
Certificate issuer: /CN=cb29a77669df5a7a5cb506d839ee8aa4337ccaac
Certificate serial: 09DFBE349D08C529A9EE1C59F1F30E707533F2A2
Authority key identifier: CB:29:A7:76:69:DF:5A:7A:5C:B5:06:D8:39:EE:8A:A4:33:7C:CA:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yymndmnfWnpctQbYOe6KpDN8yqw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bb25d068-7f9c-4b0e-a695-1779b7d8f06e/0/326130663a336363343a3a2f33322d3332203d3e20323037393336.roa
Signing time: Sun 30 Mar 2025 05:13:14 +0000
ROA not before: Sun 30 Mar 2025 05:08:14 +0000
ROA not after: Sun 29 Mar 2026 05:13:14 +0000
asID: 207936
IP address blocks: 2a0f:3cc4::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:df:be:34:9d:08:c5:29:a9:ee:1c:59:f1:f3:0e:70:75:33:f2:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb29a77669df5a7a5cb506d839ee8aa4337ccaac
Validity
Not Before: Mar 30 05:08:14 2025 GMT
Not After : Mar 29 05:13:14 2026 GMT
Subject: CN=1B55171ECC348831C8F36855EB57CD7DFCB094F9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:7b:07:c5:3c:a0:e4:00:04:56:77:b7:6a:d9:
40:6a:06:3c:54:1a:21:b0:4d:71:7b:9f:b2:fb:0b:
cf:bd:ec:be:b1:36:b0:b2:44:78:c3:9b:36:48:93:
3f:25:48:6a:1c:6c:2b:0b:30:92:f3:df:97:11:fc:
b5:c9:8d:44:5a:62:e7:25:c1:cc:c7:9a:a9:53:5c:
28:74:dd:f0:2c:2a:c5:d6:63:6f:d4:97:d2:f2:ae:
15:67:54:fa:b0:b2:f7:36:58:22:5a:71:22:2e:52:
79:4a:7d:4d:cf:b3:59:8c:cd:55:02:82:97:59:ea:
c9:1e:59:40:4b:65:1e:8b:df:3c:b0:dc:fb:f0:bb:
5c:21:9d:94:70:68:80:9a:0e:0e:c1:9c:a3:66:b8:
f5:f0:ed:31:68:9e:e5:42:7a:34:6a:ae:8a:5c:59:
0c:44:f9:4a:53:91:17:55:5c:ee:99:1d:89:d5:98:
09:61:8c:53:d5:43:70:f9:92:a2:ee:2f:f4:a9:56:
86:de:ae:84:d4:9e:2e:90:38:20:e4:89:2e:7d:99:
86:de:e6:4e:e0:04:d1:f8:98:f9:54:5a:c1:10:46:
ac:e2:b4:d7:3c:7d:7e:45:df:41:0a:58:66:ec:46:
19:8e:da:9e:f2:4a:58:75:8f:1f:4c:94:e2:7c:cc:
51:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:55:17:1E:CC:34:88:31:C8:F3:68:55:EB:57:CD:7D:FC:B0:94:F9
X509v3 Authority Key Identifier:
keyid:CB:29:A7:76:69:DF:5A:7A:5C:B5:06:D8:39:EE:8A:A4:33:7C:CA:AC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/bb25d068-7f9c-4b0e-a695-1779b7d8f06e/0/CB29A77669DF5A7A5CB506D839EE8AA4337CCAAC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yymndmnfWnpctQbYOe6KpDN8yqw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bb25d068-7f9c-4b0e-a695-1779b7d8f06e/0/326130663a336363343a3a2f33322d3332203d3e20323037393336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:3cc4::/32
Signature Algorithm: sha256WithRSAEncryption
79:15:37:65:71:5c:4e:19:da:a7:29:c4:70:d1:8c:79:1a:f6:
31:36:25:91:ed:c0:0c:2f:9e:69:00:99:38:23:8d:a6:e9:52:
ac:06:6e:7d:72:d7:27:03:78:61:a6:56:5d:a3:aa:9e:72:25:
ff:f0:40:e6:0c:40:b4:ef:66:84:d2:d9:bd:29:a9:f9:31:8b:
b3:01:e0:1a:c0:0a:e9:2a:82:11:63:cc:cb:b2:c0:f6:6f:1f:
85:42:06:ed:7f:5b:a0:b2:a1:18:25:54:87:f2:8a:8a:b2:2a:
d6:98:e8:2d:ae:e4:b6:68:63:97:af:e8:c1:01:c2:36:81:59:
51:f4:af:24:dd:85:2d:7b:b6:ee:a2:35:ed:f5:97:5a:b9:79:
f6:b1:6b:45:66:fd:48:36:34:76:f8:65:9e:f8:3d:4e:cf:05:
c4:9a:36:52:7a:5a:56:ef:e5:94:67:82:e1:41:85:0e:fd:ca:
16:4d:37:71:49:e6:7b:b1:5a:d9:5c:18:32:bc:9b:5e:3d:21:
00:de:44:5c:86:06:db:8e:a4:d2:29:0f:41:db:8a:1c:f4:de:
77:9d:b5:2e:ab:4a:03:5b:7f:b9:da:49:f9:54:db:05:44:6b:
d4:50:b5:26:26:26:9d:30:6c:2c:01:46:7d:48:f7:3c:7a:17:
a7:65:32:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:34:29 2025 by rpki-client on console.sobornost.net