Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638303a3930303a3a2f34302d3430203d3e20323131323732.roa
File: 326131333a646638303a3930303a3a2f34302d3430203d3e20323131323732.roa (raw, json)
Hash identifier: cj9NPt1kYrRvsTR6Vghfn5pDj2HaBCExjMz7i4xt3v0=
Subject key identifier: E0:41:4B:CA:B6:64:14:EF:C8:0A:AE:C2:B9:9B:C3:F5:54:1E:46:45
Certificate issuer: /CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Certificate serial: 2EF11E2244A770474F2BD67833812E6A257315E1
Authority key identifier: D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638303a3930303a3a2f34302d3430203d3e20323131323732.roa
Signing time: Wed 28 Jun 2023 19:02:30 +0000
ROA not before: Wed 28 Jun 2023 18:57:30 +0000
ROA not after: Wed 26 Jun 2024 19:02:30 +0000
asID: 211272
IP address blocks: 2a13:df80:900::/40 maxlen: 40
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:f1:1e:22:44:a7:70:47:4f:2b:d6:78:33:81:2e:6a:25:73:15:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Validity
Not Before: Jun 28 18:57:30 2023 GMT
Not After : Jun 26 19:02:30 2024 GMT
Subject: CN=E0414BCAB66414EFC80AAEC2B99BC3F5541E4645
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:c9:dd:e8:c7:a5:6d:2b:15:1a:cd:3a:d7:72:
52:93:05:40:b9:4b:d7:f0:3a:b9:09:94:f4:29:0f:
cb:35:3b:84:0a:f5:18:44:c1:f8:b7:70:2c:25:a5:
d7:48:87:88:74:04:48:52:d6:9a:96:84:d5:9e:10:
5a:80:29:3f:71:ea:78:ed:be:aa:27:fd:b9:70:7d:
fa:56:93:7e:7a:85:d5:ad:a5:c8:c9:e5:1f:9d:57:
84:e0:cf:75:17:a1:2b:e8:52:02:e8:71:47:02:af:
d0:45:a5:e4:6e:ba:8c:95:29:44:c3:b0:d9:83:6b:
14:90:8a:87:8c:82:bf:0b:b3:eb:cb:76:92:1b:70:
60:d8:c4:00:79:9b:ac:b5:76:6f:12:44:3e:5d:b9:
4f:48:33:d5:bc:3c:dc:51:3e:5d:e3:69:6e:55:bc:
96:6e:fb:86:a0:97:1d:bd:6e:35:a6:e1:17:1c:9a:
1b:af:21:12:31:b0:c2:82:65:78:f9:fa:e9:db:38:
cc:a0:0f:46:76:f0:1a:96:a1:96:55:4c:e5:eb:74:
f2:df:90:5c:3e:b1:4c:1e:6d:25:23:19:c1:ff:31:
07:b9:0c:8e:3f:02:e5:0e:ac:d0:4e:5b:d4:0e:d2:
e0:dc:3e:58:35:b4:1c:10:d1:72:f9:20:32:ce:9f:
a9:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:41:4B:CA:B6:64:14:EF:C8:0A:AE:C2:B9:9B:C3:F5:54:1E:46:45
X509v3 Authority Key Identifier:
keyid:D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/D5C3D5E70FC9AD10BA90D45DC66454E9E3A146A8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638303a3930303a3a2f34302d3430203d3e20323131323732.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:df80:900::/40
Signature Algorithm: sha256WithRSAEncryption
2e:ed:7f:a2:83:24:74:64:c8:85:7f:02:e9:42:da:fa:ab:18:
98:3e:cf:11:48:da:1b:f5:d3:4f:b6:63:d6:37:63:47:0c:bb:
d9:20:03:4c:9a:3e:72:28:0b:ed:ea:57:ab:07:2f:bc:ec:9f:
d3:8c:e1:02:9d:e1:0f:d0:d2:7e:a9:92:71:4a:4d:e4:56:78:
de:d0:62:7a:4a:25:29:1b:35:6b:5f:cf:7a:14:a8:5c:42:78:
32:13:29:af:0a:24:dc:60:01:09:0b:b1:1c:f7:03:7f:58:31:
86:d7:e7:c5:a7:ea:17:24:06:c3:ca:6d:c4:55:9b:21:e7:b6:
73:41:d9:2b:c6:3d:09:0d:8a:83:a8:cb:48:8c:14:c0:46:7c:
de:c5:b6:b6:67:16:e6:c8:25:85:e0:d8:26:92:00:51:18:dc:
13:7b:3d:98:73:23:e8:8d:dc:a7:53:fb:7d:71:86:bb:15:47:
99:a8:1c:dd:f3:97:fe:cf:34:59:c7:5e:4e:4d:a6:7b:a0:1b:
98:78:7a:2b:50:f8:4d:0e:8d:c9:6c:85:ba:10:fc:a5:1a:1b:
24:da:28:0e:bb:d4:1e:cc:81:02:b4:6a:0e:43:37:e9:9f:75:
41:8e:c1:09:d7:11:97:f9:1a:b2:af:7a:55:a9:75:f2:c4:30:
f8:54:a4:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:08 2024 by rpki-client on console-fra.rpki-client.org