Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638303a313332303a3a2f34342d3438203d3e20323136303635.roa
File: 326131333a646638303a313332303a3a2f34342d3438203d3e20323136303635.roa (raw, json)
Hash identifier: WSOGZXMukNW26zUJgkaZ6CloyA2vcKFi+8Z2lfj+ei8=
Subject key identifier: 8A:B7:D0:20:99:06:17:1D:DA:8B:0E:10:05:61:97:84:AE:DF:DE:DB
Certificate issuer: /CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Certificate serial: 3E6646A24459126391ED4AC663FD25C9C4CA533A
Authority key identifier: D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638303a313332303a3a2f34342d3438203d3e20323136303635.roa
Signing time: Mon 30 Oct 2023 22:42:20 +0000
ROA not before: Mon 30 Oct 2023 22:37:20 +0000
ROA not after: Mon 28 Oct 2024 22:42:20 +0000
asID: 216065
IP address blocks: 2a13:df80:1320::/44 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:66:46:a2:44:59:12:63:91:ed:4a:c6:63:fd:25:c9:c4:ca:53:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Validity
Not Before: Oct 30 22:37:20 2023 GMT
Not After : Oct 28 22:42:20 2024 GMT
Subject: CN=8AB7D0209906171DDA8B0E1005619784AEDFDEDB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:46:d4:5f:b5:d6:e3:ad:4e:e5:ca:19:29:c7:
e0:2c:aa:b0:bd:d1:44:0b:39:d0:c9:3e:d2:a8:9c:
b0:42:ca:5f:c1:f2:d8:40:7a:4a:e0:66:7f:76:03:
47:5d:81:21:22:16:b5:01:51:7a:b3:1e:86:bb:6a:
66:a6:24:ce:0b:cc:1d:64:15:22:71:23:1b:f9:9c:
55:8d:58:90:89:5b:00:36:68:30:a1:10:28:d9:71:
8e:c9:78:08:f4:33:ff:1b:60:50:48:7c:eb:98:b0:
42:d7:7b:61:5b:0a:37:bc:a0:29:01:b7:d4:bd:21:
88:79:77:86:3a:14:6f:d2:f1:8e:c5:54:c6:38:f9:
94:3f:29:8b:d8:66:df:6a:79:04:a4:46:66:00:2a:
47:ed:58:cb:69:8b:a0:85:d5:fc:18:53:4f:d8:29:
e9:05:93:b6:50:74:d1:20:76:30:f3:b6:fb:5b:9e:
82:40:60:1f:cb:f7:48:74:62:15:a8:fd:d6:76:12:
37:b0:f6:ad:23:8f:1b:66:7a:b9:ea:fd:44:2a:1e:
33:13:64:d1:3a:5d:dc:9d:32:d2:97:f0:68:c2:fb:
a7:48:97:c7:bc:db:17:3f:82:09:1b:c7:ee:be:5f:
b3:2a:63:89:8f:be:e0:e2:9d:b3:07:ae:32:d1:9e:
d1:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:B7:D0:20:99:06:17:1D:DA:8B:0E:10:05:61:97:84:AE:DF:DE:DB
X509v3 Authority Key Identifier:
keyid:D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/D5C3D5E70FC9AD10BA90D45DC66454E9E3A146A8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638303a313332303a3a2f34342d3438203d3e20323136303635.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:df80:1320::/44
Signature Algorithm: sha256WithRSAEncryption
6f:81:6f:f4:8d:a1:51:08:db:e1:37:0c:1c:b8:e6:fc:fd:34:
1f:87:95:a8:fc:eb:ff:64:23:37:df:1c:4f:f2:81:47:d1:68:
a6:02:ec:94:44:12:08:aa:0a:1c:08:45:44:18:56:95:a0:3d:
8b:2e:2f:b9:5f:3f:a9:ef:91:c0:67:71:b3:2f:80:2b:6d:50:
d5:2f:2f:ad:ae:25:0d:bd:c4:b4:9f:d5:61:4c:e8:b6:34:c4:
ac:b9:57:17:f1:0d:34:6c:53:24:c3:07:1a:86:0f:fa:0b:9d:
eb:8e:ca:3a:84:2b:e8:68:35:f7:a0:d4:d0:9a:26:63:de:d8:
6b:67:71:2f:7e:95:3a:79:01:6c:77:eb:12:79:5d:28:0f:65:
cf:d8:f1:76:1c:66:f3:0e:c2:5e:f3:ad:78:9b:ae:67:48:aa:
b7:9a:93:32:ad:7c:f5:c0:3b:93:e7:88:17:80:26:85:b5:62:
8c:88:3e:26:e6:2b:47:4c:75:42:cd:6c:0f:e8:4b:9b:6e:f3:
c5:38:69:7b:5d:b9:51:b8:05:e0:f2:ed:17:54:8e:04:99:9f:
eb:0e:00:17:c8:a9:20:1f:ec:86:ea:58:73:98:51:14:29:d6:
d3:e2:a9:9b:e7:60:a6:80:31:42:46:76:ca:fc:41:e0:16:0b:
d6:4a:03:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:08 2024 by rpki-client on console-fra.rpki-client.org