Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638303a3430303a3a2f33382d3438203d3e203631313432.roa
File: 326131333a646638303a3430303a3a2f33382d3438203d3e203631313432.roa (raw, json)
Hash identifier: hQNw03s1wbsq8Ikp+WZt1XEGvlbAnbamXbLY4D1NQFI=
Subject key identifier: 05:E0:C4:1A:0F:DA:B9:38:6B:9C:2B:E5:45:E6:91:8B:7E:7A:DE:5B
Certificate issuer: /CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Certificate serial: 33CD54488D29CE38E1C1181384BD0A6C2ABE50F2
Authority key identifier: D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638303a3430303a3a2f33382d3438203d3e203631313432.roa
Signing time: Fri 07 Jul 2023 13:29:13 +0000
ROA not before: Fri 07 Jul 2023 13:24:13 +0000
ROA not after: Fri 05 Jul 2024 13:29:13 +0000
asID: 61142
IP address blocks: 2a13:df80:400::/38 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:cd:54:48:8d:29:ce:38:e1:c1:18:13:84:bd:0a:6c:2a:be:50:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Validity
Not Before: Jul 7 13:24:13 2023 GMT
Not After : Jul 5 13:29:13 2024 GMT
Subject: CN=05E0C41A0FDAB9386B9C2BE545E6918B7E7ADE5B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:11:81:d6:aa:0e:86:1b:8e:2a:2f:e6:b5:b2:
c6:c4:ee:5f:8f:f0:c4:a4:10:5b:7e:88:97:a9:48:
64:d5:aa:ff:94:1f:5d:6b:8a:21:53:0c:d6:54:58:
80:f7:34:06:ff:37:79:cc:20:bb:fd:c0:11:08:0e:
9c:66:40:4c:96:a7:cf:e5:86:07:81:af:e4:5f:34:
c6:c3:9a:a4:33:26:e0:fc:17:9a:9d:2a:c4:ff:cf:
f8:73:ad:46:98:a7:ee:18:68:4d:96:a9:16:69:7c:
fa:d7:e3:0c:80:7f:f6:7f:3e:c0:bd:1f:c3:91:77:
b7:5f:12:9e:17:de:17:2e:96:94:3c:b5:dd:59:3d:
bb:76:a8:0e:9e:39:1e:43:4f:7d:93:c2:11:8f:33:
ec:c5:d3:81:78:b2:44:8f:3a:b5:69:07:81:6b:31:
a6:82:6d:d5:1f:24:2f:de:da:7e:31:fa:68:90:e4:
5e:4c:bf:4e:10:9a:fd:21:87:ac:de:1b:bc:38:c1:
40:dd:40:b5:b5:4c:06:ef:86:54:be:9a:8f:ff:39:
ca:67:67:75:b4:99:50:19:06:3c:29:05:29:25:c1:
fe:90:ee:bc:03:12:2c:3b:33:47:60:30:8b:e1:23:
5f:19:04:39:72:ff:76:75:b2:cf:9b:73:1f:e1:d5:
39:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:E0:C4:1A:0F:DA:B9:38:6B:9C:2B:E5:45:E6:91:8B:7E:7A:DE:5B
X509v3 Authority Key Identifier:
keyid:D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/D5C3D5E70FC9AD10BA90D45DC66454E9E3A146A8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638303a3430303a3a2f33382d3438203d3e203631313432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:df80:400::/38
Signature Algorithm: sha256WithRSAEncryption
5c:29:8f:3e:c7:fe:cb:5a:38:d9:e2:d3:0d:23:ae:ea:ee:32:
05:ba:89:d4:8d:81:b5:5f:0e:04:c8:d6:d7:42:99:3d:f2:48:
44:a6:5f:ec:c1:25:f4:73:04:ec:2a:41:5d:ab:28:3e:3b:57:
9f:d4:89:d9:67:02:3a:8c:2a:5b:c7:62:f0:ac:61:96:75:ff:
e9:b2:69:89:2a:57:e7:76:1c:15:fa:c9:5e:d2:2c:ae:16:10:
fa:37:14:58:3d:c1:69:48:05:f9:6d:a3:a8:13:8d:3a:18:bd:
ac:e9:6e:34:20:76:d4:45:28:38:7e:35:fc:e0:2f:ce:15:ef:
fd:e3:bf:81:c7:12:14:b8:99:76:cc:01:40:9b:82:5e:5f:d9:
a3:42:ad:34:ba:fd:bc:35:51:31:3e:3d:36:1d:bf:c2:ab:94:
09:1b:9b:f0:88:21:5a:14:a4:a7:50:66:a8:26:9a:9c:c9:65:
8c:ac:f8:b1:7e:5b:94:a7:99:1e:ea:26:35:fa:7d:e7:6d:e1:
51:9d:5d:aa:43:a3:a3:5b:b4:37:ad:00:0e:3d:cc:e3:3b:cf:
16:4d:cc:e0:fa:f6:fd:86:df:bd:6c:d9:1a:00:bb:7f:d1:c4:
71:a8:de:f1:5b:f6:b3:3f:e9:b4:53:07:fe:82:a7:d3:4e:b6:
c9:e1:20:f6
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:53 2024 by rpki-client on console-ams.rpki-client.org