Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638303a353a3a2f34382d3634203d3e20323036353031.roa
File: 326131333a646638303a353a3a2f34382d3634203d3e20323036353031.roa (raw, json)
Hash identifier: kiezIIJeavzBLm6JyMyz4073/jGT70X/K9hT3MRDspQ=
Subject key identifier: 71:38:45:5D:86:25:C0:E4:EB:24:54:D8:4C:B7:F8:B9:EE:A3:3B:15
Certificate issuer: /CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Certificate serial: 697E1959987A8E42C0AFAA4EC2AECF8845470C35
Authority key identifier: D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638303a353a3a2f34382d3634203d3e20323036353031.roa
Signing time: Fri 15 Dec 2023 07:42:00 +0000
ROA not before: Fri 15 Dec 2023 07:37:00 +0000
ROA not after: Fri 13 Dec 2024 07:42:00 +0000
asID: 206501
IP address blocks: 2a13:df80:5::/48 maxlen: 64
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:7e:19:59:98:7a:8e:42:c0:af:aa:4e:c2:ae:cf:88:45:47:0c:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Validity
Not Before: Dec 15 07:37:00 2023 GMT
Not After : Dec 13 07:42:00 2024 GMT
Subject: CN=7138455D8625C0E4EB2454D84CB7F8B9EEA33B15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:02:df:33:cc:85:2e:c7:01:b7:1b:27:bf:a3:
8f:a2:ca:36:9e:55:08:76:c7:78:09:76:5d:1e:37:
df:83:3c:2f:79:93:51:b7:36:a4:e7:cc:f0:8b:94:
09:6b:e7:af:4a:b2:a2:cd:b2:af:81:ac:bb:df:03:
45:59:e9:16:5e:88:c2:47:58:b3:41:99:01:5a:0d:
69:2e:0f:3a:13:c7:04:19:6b:2c:50:5e:7e:63:56:
92:0b:db:7c:09:79:53:5f:c3:0e:3e:04:f7:7e:9a:
81:be:dd:7f:c1:20:a9:46:a8:41:49:72:1d:ef:07:
87:86:cf:55:4f:27:3b:45:db:86:eb:c3:7f:2e:89:
b0:81:6d:3f:ac:a7:3a:16:89:d3:12:58:eb:20:6b:
a9:b6:7c:09:e4:69:f1:68:ab:e0:32:92:3a:d3:f2:
51:cc:e6:31:84:17:18:55:aa:fa:da:ec:76:fd:44:
4f:96:9f:5c:42:e1:8c:53:1d:58:dc:64:a2:68:35:
f7:90:f1:16:88:f4:7f:ce:05:34:d5:5c:4d:83:7c:
70:f1:d7:31:74:00:96:3f:a4:d9:d2:e4:d4:de:65:
66:e3:66:9b:e7:67:d0:81:8d:6c:ae:7e:8f:8c:74:
89:95:a4:6f:41:2f:af:bd:59:df:72:b8:4f:75:b1:
5d:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:38:45:5D:86:25:C0:E4:EB:24:54:D8:4C:B7:F8:B9:EE:A3:3B:15
X509v3 Authority Key Identifier:
keyid:D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/D5C3D5E70FC9AD10BA90D45DC66454E9E3A146A8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638303a353a3a2f34382d3634203d3e20323036353031.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:df80:5::/48
Signature Algorithm: sha256WithRSAEncryption
92:d9:99:9d:85:80:e7:fa:f4:45:0e:d1:a7:96:4e:11:de:23:
6a:1b:74:b3:83:b4:74:4e:42:f7:f9:aa:91:f6:a6:07:94:10:
3c:a1:1a:5b:62:b2:a1:30:70:4d:ad:2e:c5:7d:8c:27:c5:c5:
70:cb:3f:1c:95:a0:24:de:4f:e6:9e:8b:0e:33:13:3c:ce:3d:
1c:16:b0:df:5b:b7:97:a7:c5:01:df:9b:fd:68:b2:f1:21:de:
52:fc:3a:32:e4:5e:b5:e9:9e:57:39:56:ec:d3:6b:0d:d3:25:
bf:d6:15:fa:a3:1b:46:9e:0c:bf:74:f2:0e:dd:a6:76:dd:dc:
fb:96:85:30:d3:6e:e7:87:73:d1:e9:8f:07:f1:ae:8a:10:e1:
d3:0c:23:36:02:b7:ae:c4:5c:2d:2a:94:d8:7d:e7:5b:a3:e1:
79:74:d8:30:41:0d:a9:94:9b:13:fe:62:78:ad:76:c1:c4:72:
37:d2:b7:8f:a8:b7:ec:2b:bc:b2:eb:29:da:b3:b9:1f:e6:d4:
1a:f9:fc:75:bb:d7:b5:0f:54:f2:a3:f2:94:6b:db:49:49:94:
be:52:93:b3:a6:b8:fc:a8:8d:23:3f:7f:4b:fe:d7:eb:c0:a8:
26:fa:cd:e9:6f:b9:8b:08:a3:01:09:35:a2:d8:a9:62:d0:ee:
1f:ea:63:04
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:53 2024 by rpki-client on console-ams.rpki-client.org