Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bb25d068-7f9c-4b0e-a695-1779b7d8f06e/0/326130663a336363353a3a2f33322d3332203d3e20323037393336.roa
File: 326130663a336363353a3a2f33322d3332203d3e20323037393336.roa (raw, json)
Hash identifier: yq+hWHhfyocRCOJbnYGyzdHlkfHxXD4gPxuVgEPCc0g=
Subject key identifier: D0:7D:64:78:F5:46:18:44:42:AD:BC:0E:1D:71:F5:05:73:FB:7E:AF
Certificate issuer: /CN=cb29a77669df5a7a5cb506d839ee8aa4337ccaac
Certificate serial: 49B4793ED38C33FBD0A53F912901B1F571EDBBB3
Authority key identifier: CB:29:A7:76:69:DF:5A:7A:5C:B5:06:D8:39:EE:8A:A4:33:7C:CA:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yymndmnfWnpctQbYOe6KpDN8yqw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bb25d068-7f9c-4b0e-a695-1779b7d8f06e/0/326130663a336363353a3a2f33322d3332203d3e20323037393336.roa
Signing time: Sun 30 Mar 2025 05:13:16 +0000
ROA not before: Sun 30 Mar 2025 05:08:16 +0000
ROA not after: Sun 29 Mar 2026 05:13:16 +0000
asID: 207936
IP address blocks: 2a0f:3cc5::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:b4:79:3e:d3:8c:33:fb:d0:a5:3f:91:29:01:b1:f5:71:ed:bb:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb29a77669df5a7a5cb506d839ee8aa4337ccaac
Validity
Not Before: Mar 30 05:08:16 2025 GMT
Not After : Mar 29 05:13:16 2026 GMT
Subject: CN=D07D6478F546184442ADBC0E1D71F50573FB7EAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:68:ee:1b:c7:ea:72:1f:00:c2:70:6d:7b:10:
c7:30:58:56:fd:6b:de:7e:7d:61:73:c7:01:bf:fd:
a5:66:0f:99:02:2d:44:10:59:45:5c:b7:b8:cd:30:
e7:e3:da:00:e2:61:76:60:8b:da:31:39:dc:9f:28:
25:b0:27:62:5d:d0:25:99:62:ed:61:40:09:27:1b:
09:ab:23:5b:82:59:70:10:7a:b9:82:9e:0a:dd:6d:
88:82:af:d3:7c:00:ff:0b:3e:31:65:3b:00:ca:51:
37:8d:e7:3a:7a:85:f5:bd:85:4f:42:24:bc:7e:a1:
9d:e8:8b:53:ed:79:4a:46:0a:f5:ee:a8:78:c1:8d:
cd:12:1b:59:40:bf:65:10:2b:cc:70:d2:15:7b:d6:
91:a7:d7:b0:69:cb:02:22:a2:4f:60:d9:89:24:9b:
3a:e7:a1:67:83:e5:80:ff:9f:e4:02:45:aa:30:56:
8c:8e:cd:20:f1:9e:84:fb:7c:19:33:44:7d:98:90:
b0:6c:54:6e:2c:77:11:3c:34:ad:0b:64:50:85:ed:
df:48:2c:ad:89:ec:87:d5:f7:9e:6b:34:7d:4e:db:
a8:da:c7:75:a9:99:46:0d:07:7c:80:9a:30:85:05:
ee:8e:e7:93:5c:e6:91:11:cd:07:bd:42:75:1a:0a:
d4:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:7D:64:78:F5:46:18:44:42:AD:BC:0E:1D:71:F5:05:73:FB:7E:AF
X509v3 Authority Key Identifier:
keyid:CB:29:A7:76:69:DF:5A:7A:5C:B5:06:D8:39:EE:8A:A4:33:7C:CA:AC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/bb25d068-7f9c-4b0e-a695-1779b7d8f06e/0/CB29A77669DF5A7A5CB506D839EE8AA4337CCAAC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yymndmnfWnpctQbYOe6KpDN8yqw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bb25d068-7f9c-4b0e-a695-1779b7d8f06e/0/326130663a336363353a3a2f33322d3332203d3e20323037393336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:3cc5::/32
Signature Algorithm: sha256WithRSAEncryption
0a:8a:8e:6b:51:49:18:32:2a:d9:0a:2e:25:1c:ca:78:cd:b2:
b0:9f:8f:82:27:b5:b1:93:da:3a:2e:72:be:26:e5:21:e2:1f:
50:6b:13:a1:2f:82:92:c9:68:2a:fb:c5:29:b1:bc:b1:0c:4f:
a5:15:79:3a:7b:b8:f8:04:55:db:db:9a:f7:43:14:0c:b5:16:
1b:6e:e6:11:b7:ef:e0:19:cf:f2:e5:7d:0b:12:e6:e3:73:7f:
22:34:2c:b6:07:51:76:ce:d7:cb:05:a0:01:81:38:54:b6:c9:
02:41:c9:d7:c8:a5:d6:e4:9b:47:52:0c:e7:38:91:65:d2:40:
68:9a:1e:8d:d0:5a:b6:b5:a1:bf:21:d1:16:ce:e1:92:19:54:
59:64:d3:7c:11:e3:7c:13:9d:64:4b:cf:a5:99:42:a2:22:70:
22:b8:3b:ec:38:95:88:45:57:cc:80:35:6c:1a:62:39:79:b1:
63:f0:00:36:e2:26:5c:0b:87:0e:d8:5e:22:ea:48:b9:1e:75:
50:3c:16:ec:a3:7f:30:1f:2f:40:fe:b0:c2:74:ac:6f:cb:de:
ab:bd:cd:44:12:62:df:bd:8e:41:6e:8f:94:a4:4f:de:4f:02:
1f:be:2a:b6:69:d1:ef:61:24:7e:24:f8:19:a8:e3:90:ad:04:
64:00:b4:e1
-----BEGIN CERTIFICATE-----
MIIFNDCCBBygAwIBAgIUSbR5PtOMM/vQpT+RKQGx9XHtu7MwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoY2IyOWE3NzY2OWRmNWE3YTVjYjUwNmQ4MzllZThhYTQz
MzdjY2FhYzAeFw0yNTAzMzAwNTA4MTZaFw0yNjAzMjkwNTEzMTZaMDMxMTAvBgNV
BAMTKEQwN0Q2NDc4RjU0NjE4NDQ0MkFEQkMwRTFENzFGNTA1NzNGQjdFQUYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUaO4bx+pyHwDCcG17EMcwWFb9
a95+fWFzxwG//aVmD5kCLUQQWUVct7jNMOfj2gDiYXZgi9oxOdyfKCWwJ2Jd0CWZ
Yu1hQAknGwmrI1uCWXAQermCngrdbYiCr9N8AP8LPjFlOwDKUTeN5zp6hfW9hU9C
JLx+oZ3oi1PteUpGCvXuqHjBjc0SG1lAv2UQK8xw0hV71pGn17BpywIiok9g2Ykk
mzrnoWeD5YD/n+QCRaowVoyOzSDxnoT7fBkzRH2YkLBsVG4sdxE8NK0LZFCF7d9I
LK2J7IfV955rNH1O26jax3WpmUYNB3yAmjCFBe6O55Nc5pERzQe9QnUaCtT5AgMB
AAGjggI+MIICOjAdBgNVHQ4EFgQU0H1kePVGGERCrbwOHXH1BXP7fq8wHwYDVR0j
BBgwFoAUyymndmnfWnpctQbYOe6KpDN8yqwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYmIyNWQwNjgtN2Y5Yy00YjBlLWE2OTUtMTc3OWI3ZDhm
MDZlLzAvQ0IyOUE3NzY2OURGNUE3QTVDQjUwNkQ4MzlFRThBQTQzMzdDQ0FBQy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3l5bW5kbW5mV25wY3RRYllPZTZLcERO
OHlxdy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYmIyNWQwNjgt
N2Y5Yy00YjBlLWE2OTUtMTc3OWI3ZDhmMDZlLzAvMzI2MTMwNjYzYTMzNjM2MzM1
M2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzIzMDM3MzkzMzM2LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUA
Kg88xTANBgkqhkiG9w0BAQsFAAOCAQEACoqOa1FJGDIq2QouJRzKeM2ysJ+Pgie1
sZPaOi5yviblIeIfUGsToS+CksloKvvFKbG8sQxPpRV5Onu4+ARV29ua90MUDLUW
G27mEbfv4BnP8uV9CxLm43N/IjQstgdRds7XywWgAYE4VLbJAkHJ18il1uSbR1IM
5ziRZdJAaJoejdBatrWhvyHRFs7hkhlUWWTTfBHjfBOdZEvPpZlCoiJwIrg77DiV
iEVXzIA1bBpiOXmxY/AANuImXAuHDtheIupIuR51UDwW7KN/MB8vQP6wwnSsb8ve
q73NRBJi372OQW6PlKRP3k8CH74qtmnR72EkfiT4GajjkK0EZAC04Q==
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:34:29 2025 by rpki-client on console.sobornost.net