Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638303a3a2f32392d3634203d3e20323130393132.roa
File: 326131333a646638303a3a2f32392d3634203d3e20323130393132.roa (raw, json)
Hash identifier: bDWBNkMEXDm2dM8iG6lK9s0IL5Ph1zczdm/XETOVVLM=
Subject key identifier: BD:CC:2B:51:86:B8:88:58:A5:00:B2:38:37:78:1A:12:25:9B:06:59
Certificate issuer: /CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Certificate serial: 10C509528D9CAF3796AEBB7AC8130ACB141A3AB2
Authority key identifier: D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638303a3a2f32392d3634203d3e20323130393132.roa
Signing time: Mon 07 Aug 2023 13:54:09 +0000
ROA not before: Mon 07 Aug 2023 13:49:09 +0000
ROA not after: Mon 05 Aug 2024 13:54:09 +0000
asID: 210912
IP address blocks: 2a13:df80::/29 maxlen: 64
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:c5:09:52:8d:9c:af:37:96:ae:bb:7a:c8:13:0a:cb:14:1a:3a:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Validity
Not Before: Aug 7 13:49:09 2023 GMT
Not After : Aug 5 13:54:09 2024 GMT
Subject: CN=BDCC2B5186B88858A500B23837781A12259B0659
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:0a:72:c6:28:2b:9e:52:4b:73:b5:30:be:2b:
ce:7e:53:fa:83:1b:f8:3f:36:19:79:d3:9e:a9:5a:
6d:56:fb:34:d1:65:fe:1d:b5:e6:90:0b:fc:a8:0f:
34:f8:38:b5:f8:8c:cc:cf:21:e7:64:d4:15:fc:04:
de:2d:63:e9:fc:2f:e0:6e:75:d1:99:74:33:f9:bd:
b6:53:0b:95:98:27:6b:4e:76:0d:45:d1:e5:f9:5a:
a1:1d:fc:3b:4e:0f:39:5d:79:a3:90:eb:43:2e:94:
48:f7:a2:c9:35:1b:f2:cb:5e:c9:93:e3:bb:77:2d:
bc:87:99:d3:6a:a4:44:c9:98:c0:55:b5:06:39:cb:
99:f1:73:45:40:3c:7a:a5:0d:99:c2:00:a3:8f:c3:
10:30:2c:55:ad:ba:aa:84:6b:b1:ea:b4:91:91:a8:
7e:01:bc:af:87:23:3d:1b:6d:08:6f:9c:ef:d3:10:
a3:8c:14:69:1d:ea:04:f6:8c:71:09:f8:a4:65:b0:
07:84:c4:d0:4d:83:a6:b8:72:21:5a:2a:da:29:b3:
02:4b:ad:0b:5c:57:ce:22:6d:b9:ad:72:da:12:32:
ad:28:fb:8a:fb:0d:df:3f:7f:0e:b5:d3:42:e9:22:
79:73:05:cd:72:6e:33:56:0f:94:cb:ba:c4:3b:2a:
28:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:CC:2B:51:86:B8:88:58:A5:00:B2:38:37:78:1A:12:25:9B:06:59
X509v3 Authority Key Identifier:
keyid:D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/D5C3D5E70FC9AD10BA90D45DC66454E9E3A146A8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638303a3a2f32392d3634203d3e20323130393132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:df80::/29
Signature Algorithm: sha256WithRSAEncryption
33:17:7b:46:e1:a4:99:4d:f9:05:19:81:26:83:ea:55:54:c4:
c9:62:30:82:d5:bc:3b:89:66:79:9b:b9:17:d4:e3:16:70:3a:
55:91:b2:f5:1b:d8:36:1a:40:b2:6c:fd:f7:62:bd:e9:d1:47:
90:39:1d:2b:38:1a:95:63:07:e6:68:a9:38:62:e8:e3:81:54:
7b:e9:98:7a:e5:5f:76:28:16:44:28:61:de:1e:3f:e9:de:b7:
05:2a:97:33:52:c7:eb:83:1f:a4:9c:ed:80:48:51:37:41:7c:
8c:d0:10:46:50:d2:0b:12:c4:28:f7:3a:51:d3:bf:c0:15:70:
61:3d:5c:29:84:ec:3a:ab:3e:3a:8b:2b:e1:b6:4e:cc:55:b3:
89:78:a3:69:25:16:9a:e5:8c:68:67:36:f3:a9:c5:69:82:99:
f3:36:fe:00:37:c9:7c:63:fc:05:c4:d1:d3:76:87:05:88:f0:
58:5d:cd:97:fa:d1:a3:aa:9e:c8:42:e2:52:0f:30:d4:fe:56:
74:83:33:b2:8d:31:65:a6:fa:6b:9a:f3:44:87:2c:54:6e:be:
4d:db:fc:c1:4d:b8:87:69:14:a9:27:64:6b:a8:9c:68:a0:08:
0c:e0:fd:f7:f2:49:05:f1:36:0c:39:04:a8:2c:9e:e2:74:18:
98:10:d6:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:08 2024 by rpki-client on console-fra.rpki-client.org