Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638303a37313a3a2f34382d3438203d3e20323130393132.roa
File: 326131333a646638303a37313a3a2f34382d3438203d3e20323130393132.roa (raw, json)
Hash identifier: K683nVc6e8W1pCmLVDDZBMxdR1e2nKCS93CcnrYehZo=
Subject key identifier: 75:63:28:9A:29:90:C2:BF:DC:04:8E:0A:4C:A5:13:FB:93:C4:45:1D
Certificate issuer: /CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Certificate serial: 6838CFBC2C76C9FD1D641114EB3BA3B159CA495F
Authority key identifier: D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638303a37313a3a2f34382d3438203d3e20323130393132.roa
Signing time: Sat 30 Sep 2023 14:16:15 +0000
ROA not before: Sat 30 Sep 2023 14:11:15 +0000
ROA not after: Sat 28 Sep 2024 14:16:15 +0000
asID: 210912
IP address blocks: 2a13:df80:71::/48 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:38:cf:bc:2c:76:c9:fd:1d:64:11:14:eb:3b:a3:b1:59:ca:49:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Validity
Not Before: Sep 30 14:11:15 2023 GMT
Not After : Sep 28 14:16:15 2024 GMT
Subject: CN=7563289A2990C2BFDC048E0A4CA513FB93C4451D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ca:57:b6:c3:39:3a:c8:0a:13:0f:b3:21:60:
5b:99:84:8f:ae:f0:d8:cb:67:a0:13:dc:97:9d:d8:
29:af:1a:fc:e5:33:98:33:92:bd:91:9c:22:5d:b6:
4a:f3:b4:80:45:27:e2:e1:b4:80:e3:01:fe:af:36:
e1:c6:0e:2c:fa:d0:e2:88:ec:20:fb:a2:bf:c8:d0:
1d:e8:2c:49:f3:99:f6:f0:cb:dc:33:65:bf:0d:70:
7e:21:d0:b0:99:32:de:b1:c9:57:14:0a:e2:92:dd:
65:55:c8:20:22:84:af:f9:2c:6e:f7:da:d6:25:49:
59:9c:c9:5d:75:ff:e9:78:a8:ce:a7:aa:20:41:31:
22:09:73:18:a2:40:92:31:dd:3a:a7:fd:7b:5d:14:
91:25:6a:1a:11:a5:91:fc:fa:0c:54:17:7f:71:04:
00:89:50:0b:8b:9a:ee:c5:90:1f:85:08:4d:64:70:
91:3f:95:cc:6d:0f:28:60:6b:71:92:b4:50:44:17:
10:87:76:66:e5:87:dc:8e:e9:2e:16:26:b2:97:fa:
d7:81:a8:e1:16:a5:32:ed:72:67:93:28:c9:53:2f:
1c:d4:73:b1:e4:25:4b:12:3f:e6:bf:46:15:05:bc:
c2:21:38:0b:1b:3b:bf:cf:b2:39:ae:63:11:57:cb:
01:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:63:28:9A:29:90:C2:BF:DC:04:8E:0A:4C:A5:13:FB:93:C4:45:1D
X509v3 Authority Key Identifier:
keyid:D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/D5C3D5E70FC9AD10BA90D45DC66454E9E3A146A8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638303a37313a3a2f34382d3438203d3e20323130393132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:df80:71::/48
Signature Algorithm: sha256WithRSAEncryption
4c:e5:39:2f:9f:e9:4e:12:9e:24:73:16:4b:d6:6b:7b:4a:d4:
13:f5:82:2d:9c:ba:5e:2f:8e:75:1b:38:3b:ee:c8:2b:28:72:
1f:49:30:cb:ed:0b:68:91:76:c0:85:38:dc:8e:73:2e:e4:e8:
d2:a8:3c:0a:8d:61:4e:6b:cb:e3:9c:d0:6c:fd:70:90:05:cc:
20:f0:09:3f:7e:5f:61:87:96:96:53:6e:ef:f4:2c:5a:d2:42:
ba:63:83:67:e0:12:3d:db:b0:a0:d8:34:d6:ab:0b:05:7b:84:
b1:c6:85:61:a0:dc:5c:2b:d1:f0:55:e7:d7:12:3d:60:20:76:
7d:75:a0:7a:73:5d:d3:26:ff:8a:58:d4:13:48:be:db:68:34:
d6:aa:03:59:80:6f:f8:11:e8:02:b7:73:a7:07:21:09:4c:80:
bc:f1:d9:33:49:42:59:69:93:83:94:bb:79:49:e8:84:0a:53:
5e:64:87:c0:b1:8d:5b:93:f0:c7:76:3d:05:6e:9f:05:21:ae:
dd:57:02:6c:94:b0:5c:0b:93:8d:9d:ba:43:d1:ab:2d:e2:a6:
3a:7e:86:e0:1a:4d:53:58:2e:5d:80:bf:dc:f6:84:dd:b7:00:
ad:0f:41:cb:63:e1:64:54:85:99:f9:b7:be:58:df:db:69:bc:
c4:5e:d1:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:53 2024 by rpki-client on console-ams.rpki-client.org