Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638303a37303a3a2f34342d3434203d3e203630393030.roa
File: 326131333a646638303a37303a3a2f34342d3434203d3e203630393030.roa (raw, json)
Hash identifier: +cys47jEPO/ndrdGUYpnc/5E5Pl/vHGIgji2nqAU/XQ=
Subject key identifier: 1B:55:00:8B:8B:AB:7C:09:8E:7C:DE:2E:42:58:E3:AA:02:BA:D0:D0
Certificate issuer: /CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Certificate serial: 75EC7856BA1F64FFC19F6088C35F3FD4BCF1484E
Authority key identifier: D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638303a37303a3a2f34342d3434203d3e203630393030.roa
Signing time: Fri 07 Jul 2023 07:04:19 +0000
ROA not before: Fri 07 Jul 2023 06:59:19 +0000
ROA not after: Fri 05 Jul 2024 07:04:19 +0000
asID: 60900
IP address blocks: 2a13:df80:70::/44 maxlen: 44
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:ec:78:56:ba:1f:64:ff:c1:9f:60:88:c3:5f:3f:d4:bc:f1:48:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Validity
Not Before: Jul 7 06:59:19 2023 GMT
Not After : Jul 5 07:04:19 2024 GMT
Subject: CN=1B55008B8BAB7C098E7CDE2E4258E3AA02BAD0D0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:1b:4d:20:ec:0f:28:51:ef:05:d3:9f:23:c0:
33:66:52:7f:d9:16:d3:44:e6:6b:e8:a3:37:4c:6c:
30:01:17:4a:3b:f5:0c:2f:10:a6:c9:8e:2d:58:21:
11:e6:d0:5b:57:7d:92:e1:ed:c0:f0:bb:85:70:f1:
f7:c8:5e:ad:d5:46:20:ca:7a:84:e3:56:2e:5f:48:
95:e3:d2:ec:38:2c:08:16:ea:ae:14:0b:d6:4b:bc:
42:e6:78:40:7f:60:19:ce:15:92:1a:2f:70:66:98:
86:3c:c2:28:a2:45:4a:a5:c7:60:65:ec:03:1d:ec:
40:83:00:26:79:25:6a:79:03:e4:c8:36:e3:ab:fd:
8b:3e:8b:15:89:58:96:b9:6a:0c:cb:f0:36:34:38:
c3:61:49:a0:e8:f8:d9:61:4c:9e:2e:ec:ea:c8:2a:
b7:a5:13:da:1b:8d:07:a4:42:cd:71:1b:44:e1:8a:
dd:20:46:8e:6f:34:1f:d1:fe:33:51:8d:03:bb:32:
ab:1c:91:7f:bc:72:e9:32:e5:d3:d2:c9:9b:63:c1:
c9:94:46:15:2b:2e:20:9d:3c:d5:73:53:86:d9:9e:
7e:99:e6:5e:1b:28:97:95:a7:d2:7a:96:c5:f7:51:
73:d0:89:9c:0e:bb:df:05:67:70:f4:7c:f8:b7:b2:
c7:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:55:00:8B:8B:AB:7C:09:8E:7C:DE:2E:42:58:E3:AA:02:BA:D0:D0
X509v3 Authority Key Identifier:
keyid:D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/D5C3D5E70FC9AD10BA90D45DC66454E9E3A146A8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638303a37303a3a2f34342d3434203d3e203630393030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:df80:70::/44
Signature Algorithm: sha256WithRSAEncryption
32:c6:75:23:77:1d:aa:59:28:99:d2:d4:71:4d:1f:11:79:df:
1d:15:81:09:82:14:2c:23:14:37:3c:43:42:fa:8e:88:9f:13:
43:e6:66:68:24:7a:61:98:8e:f5:3a:4f:3d:9d:74:01:0e:70:
a3:78:a7:5b:1a:98:e6:85:07:ef:9e:5b:ea:4e:00:86:9e:96:
c6:8d:b6:c2:88:88:a7:86:93:1e:db:81:c5:b4:22:78:08:8e:
bf:d2:83:45:3c:58:eb:40:d5:47:f3:34:51:e1:31:d2:02:35:
36:45:8b:ca:99:b2:8f:c9:86:5e:07:09:35:c1:3c:3c:76:b7:
7c:ad:0f:f6:c6:ce:a0:13:4c:1f:34:bb:0d:53:33:3b:3e:ea:
26:d7:9e:bd:7b:9b:3a:84:18:3a:f9:a0:fa:ce:27:77:c4:3c:
6a:20:ea:66:bd:87:09:49:d7:5c:57:06:9c:b4:f7:15:73:36:
9a:d6:f4:48:95:31:d4:6d:64:0a:e2:11:da:68:1c:2c:b9:9e:
86:a5:7d:e3:95:6d:7d:53:06:1c:f7:2e:cc:23:55:3c:a8:0d:
fd:17:82:e3:a0:7e:ec:d8:b8:85:d7:bd:b2:9c:9e:c7:ae:df:
14:76:f9:7f:09:0a:99:51:c5:95:27:fc:d7:61:d0:7f:51:f8:
e9:c3:f6:0b
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:08 2024 by rpki-client on console-fra.rpki-client.org