Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638303a333830333a3a2f34382d3438203d3e20323136343130.roa
File: 326131333a646638303a333830333a3a2f34382d3438203d3e20323136343130.roa (raw, json)
Hash identifier: hJgs3RACfDW/ua2MZzkh+5MQ+Yq0LoMQ927M9p0TFYM=
Subject key identifier: 41:A8:4E:08:3C:D7:6E:A7:6C:BA:18:56:65:92:5F:7C:00:96:3A:23
Certificate issuer: /CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Certificate serial: 2E425F82222DECA49FFE11A9BA410B3F40CF69EA
Authority key identifier: D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638303a333830333a3a2f34382d3438203d3e20323136343130.roa
Signing time: Sat 26 Aug 2023 06:07:58 +0000
ROA not before: Sat 26 Aug 2023 06:02:58 +0000
ROA not after: Sat 24 Aug 2024 06:07:58 +0000
asID: 216410
IP address blocks: 2a13:df80:3803::/48 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:42:5f:82:22:2d:ec:a4:9f:fe:11:a9:ba:41:0b:3f:40:cf:69:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Validity
Not Before: Aug 26 06:02:58 2023 GMT
Not After : Aug 24 06:07:58 2024 GMT
Subject: CN=41A84E083CD76EA76CBA185665925F7C00963A23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:10:67:db:b7:40:d3:6b:a8:dc:e6:f0:13:a0:
a3:27:ed:87:95:6a:e2:4b:7b:c2:b2:87:30:16:bc:
a9:4a:cd:c5:d0:92:73:4a:e2:a7:f1:e0:32:59:fb:
c0:08:ed:83:43:46:b8:11:a5:1a:fb:01:21:fe:24:
82:0a:e8:f3:41:65:98:9c:70:c5:e2:b1:02:7c:21:
07:6a:77:95:c0:58:40:06:ed:79:0f:4a:a2:4e:b5:
11:c9:88:20:42:76:84:73:2c:56:40:d6:04:54:f1:
7c:22:17:da:15:5a:f1:95:bb:1f:26:63:cb:a6:c2:
33:04:50:47:1e:54:1c:60:64:8e:cc:a4:d7:1b:19:
99:ec:8f:3a:33:3a:d4:b1:be:58:9c:fe:81:9b:38:
33:ee:bb:2a:36:05:29:a6:b8:2b:21:3c:98:ae:06:
21:8a:66:3f:ed:47:da:da:5c:06:74:bf:78:06:92:
ff:98:df:1f:1c:a2:17:05:b1:83:7c:55:9b:f8:0e:
12:bc:0c:80:3e:aa:a0:af:0b:12:66:78:36:ee:20:
3b:fc:f4:cd:4c:e1:44:8a:fe:fc:54:4d:95:45:d6:
bd:ee:e7:c0:b8:c4:cc:97:d1:0a:c4:75:d0:08:bb:
e9:d9:35:07:77:a5:a7:c0:b5:85:08:74:a5:79:4d:
01:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:A8:4E:08:3C:D7:6E:A7:6C:BA:18:56:65:92:5F:7C:00:96:3A:23
X509v3 Authority Key Identifier:
keyid:D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/D5C3D5E70FC9AD10BA90D45DC66454E9E3A146A8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638303a333830333a3a2f34382d3438203d3e20323136343130.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:df80:3803::/48
Signature Algorithm: sha256WithRSAEncryption
1a:d5:fa:95:ae:5a:29:18:10:ca:80:8a:ac:ef:39:f8:e4:08:
0a:fa:cb:6a:2d:a8:ea:d0:08:04:89:db:eb:2e:e4:3d:3d:2a:
1f:6b:37:e9:45:af:06:2d:9e:4d:01:ee:00:5a:81:01:36:0f:
9e:32:67:dd:89:15:ef:ea:9b:72:2a:04:ce:48:2a:50:c8:5e:
2f:3b:f8:4b:bb:f3:aa:d4:8e:c8:38:9c:47:bb:61:a6:c7:36:
48:b5:b0:88:9e:a0:b1:19:92:83:f6:15:4c:1c:89:27:94:86:
e1:d3:03:42:d7:40:36:0f:5d:b9:3c:a6:f4:7f:30:e2:c8:94:
52:58:c4:fd:01:67:f6:dd:09:5a:95:e6:f0:06:01:8a:e1:fe:
4d:5e:ca:76:69:a3:7b:69:16:a9:57:49:86:4f:b1:c4:66:04:
2a:9d:d5:ca:9a:58:f0:28:19:1f:a9:89:3d:e0:a3:ae:04:89:
f4:61:06:3b:06:0c:bc:dc:b3:5c:07:05:1f:e1:73:cd:72:42:
7d:49:63:d8:ce:74:55:f2:5c:0e:78:aa:7c:72:81:31:73:b1:
7a:d5:fc:f4:8b:2a:03:35:c7:40:fe:7c:97:11:ac:03:ca:b6:
d1:c7:11:c0:0c:d8:55:f1:83:ca:bb:88:70:a8:ca:69:39:11:
10:f9:26:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:08 2024 by rpki-client on console-fra.rpki-client.org