Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638303a3a2f32392d3438203d3e203630383538.roa
File: 326131333a646638303a3a2f32392d3438203d3e203630383538.roa (raw, json)
Hash identifier: 2cYAzrprcvVGYQevhBRvjg1UkSFwSuBDBDj3culZQ5k=
Subject key identifier: 0D:01:F0:30:19:9A:16:90:B5:BC:D6:12:DE:F2:37:57:A1:52:7A:77
Certificate issuer: /CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Certificate serial: 7996BBAB16030099D87F3BA240039C4C50B5D989
Authority key identifier: D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638303a3a2f32392d3438203d3e203630383538.roa
Signing time: Fri 07 Jul 2023 08:18:53 +0000
ROA not before: Fri 07 Jul 2023 08:13:53 +0000
ROA not after: Fri 05 Jul 2024 08:18:53 +0000
asID: 60858
IP address blocks: 2a13:df80::/29 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:96:bb:ab:16:03:00:99:d8:7f:3b:a2:40:03:9c:4c:50:b5:d9:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Validity
Not Before: Jul 7 08:13:53 2023 GMT
Not After : Jul 5 08:18:53 2024 GMT
Subject: CN=0D01F030199A1690B5BCD612DEF23757A1527A77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:df:27:7d:f2:65:a2:81:06:a8:4a:27:79:69:
3b:ba:18:2e:7c:85:a4:f1:40:1d:d8:fb:37:a6:d6:
90:98:70:16:a0:d2:8c:d3:4b:50:8b:ce:9c:2a:0d:
31:f2:e4:50:a4:81:a1:fb:88:6b:6f:e5:a8:55:70:
61:3b:80:20:dd:b3:e6:60:04:50:b3:83:dc:f2:33:
55:9e:0f:02:95:43:7e:33:76:e8:64:d7:4a:c2:7d:
33:bb:56:d7:7e:5e:27:84:50:b8:37:d9:32:6b:da:
34:90:ce:19:17:db:95:d2:c2:a5:78:73:92:23:90:
a8:8a:b2:36:f9:32:ba:ef:7e:bf:cd:00:25:6f:f6:
84:2f:41:a3:f3:4e:2a:53:df:23:f3:45:89:6d:05:
c2:6a:48:af:2c:44:e6:0e:e1:ec:19:b5:e6:7d:24:
e0:8d:2e:4e:fe:5c:97:0c:27:b7:83:0b:c6:84:be:
05:28:ce:27:fb:92:cb:22:42:92:d5:cf:21:f9:34:
e3:64:8f:2b:f4:e7:19:2b:4c:02:cf:d5:29:04:5d:
fe:6d:0d:15:18:97:1e:69:36:cd:02:e6:4c:a0:47:
52:af:01:4e:f4:e1:29:82:c4:c3:76:b6:36:5b:9f:
72:e8:b0:fc:ba:d0:c4:a8:93:08:2e:0c:05:60:1c:
da:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:01:F0:30:19:9A:16:90:B5:BC:D6:12:DE:F2:37:57:A1:52:7A:77
X509v3 Authority Key Identifier:
keyid:D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/D5C3D5E70FC9AD10BA90D45DC66454E9E3A146A8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638303a3a2f32392d3438203d3e203630383538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:df80::/29
Signature Algorithm: sha256WithRSAEncryption
1b:53:bf:b8:0f:52:d5:a1:3a:ed:7e:7f:5d:ed:c8:ea:51:6b:
a4:16:db:1f:7d:0a:07:90:09:a9:52:be:03:d6:d4:11:d4:02:
10:f7:72:17:cf:50:6e:64:a5:ee:dc:df:d5:fe:27:18:77:84:
15:d8:e9:ff:7d:7d:30:e2:3b:73:40:32:d0:89:f7:b4:76:e1:
b9:73:1e:36:f3:18:2c:9e:44:6b:ef:d5:ab:d4:4e:31:f9:ac:
fc:48:02:12:cf:ba:61:61:0e:af:9f:38:62:45:3e:af:2a:01:
eb:21:3f:a0:81:05:57:25:d8:ad:41:27:34:f9:13:7b:c6:b3:
23:75:14:50:85:f0:29:7a:1f:eb:64:2f:1b:83:f4:1a:83:4b:
dc:76:02:2d:e5:44:10:06:7d:84:c4:54:92:dd:04:6a:81:bc:
18:a3:2f:dc:e6:70:a8:00:3a:d9:f9:7e:93:46:89:5e:7d:88:
91:89:73:eb:f8:0e:ea:9e:a5:38:31:0a:75:42:75:16:cf:5d:
1c:66:d8:f7:40:a5:8c:95:91:f7:67:53:63:f6:69:3d:e3:86:
e7:68:b0:d2:4e:d4:2f:5b:16:cb:66:70:9f:26:1b:6e:4e:2b:
af:14:7f:81:58:44:bf:db:b8:e3:91:87:18:0b:38:5b:1c:43:
e7:5a:a0:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:53 2024 by rpki-client on console-ams.rpki-client.org