Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638303a6330303a3a2f33382d3438203d3e20323032313937.roa
File: 326131333a646638303a6330303a3a2f33382d3438203d3e20323032313937.roa (raw, json)
Hash identifier: 1nQKRY5yB4lp7T6vF6QlGyMfbhaM1xsfUi1JPL5aAV0=
Subject key identifier: 3E:BD:A8:DC:D9:91:54:67:0C:1B:50:54:E3:23:41:6D:BB:21:22:8C
Certificate issuer: /CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Certificate serial: 5214F9756C157E0165C48DB1620B8560EA9E6DD4
Authority key identifier: D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638303a6330303a3a2f33382d3438203d3e20323032313937.roa
Signing time: Tue 11 Jul 2023 21:33:06 +0000
ROA not before: Tue 11 Jul 2023 21:28:06 +0000
ROA not after: Tue 09 Jul 2024 21:33:06 +0000
asID: 202197
IP address blocks: 2a13:df80:c00::/38 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:14:f9:75:6c:15:7e:01:65:c4:8d:b1:62:0b:85:60:ea:9e:6d:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Validity
Not Before: Jul 11 21:28:06 2023 GMT
Not After : Jul 9 21:33:06 2024 GMT
Subject: CN=3EBDA8DCD99154670C1B5054E323416DBB21228C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:c7:48:b6:f7:3b:df:3f:31:20:17:6f:26:8a:
ec:45:5b:03:53:69:bb:58:e0:33:a4:6b:89:e6:b5:
fb:48:69:97:32:0f:d8:d7:1c:8d:c4:4a:7d:d3:4f:
59:6b:9d:1b:8d:0c:68:c0:f5:b0:ec:66:78:24:2f:
11:d0:e1:e7:c2:e2:3d:87:21:d5:c8:fa:ff:87:6f:
ae:dd:be:1f:42:6c:91:11:29:6f:17:bd:d8:74:87:
b5:c1:c5:c1:cd:e4:1a:e1:ca:3c:4e:7f:f2:db:ee:
81:3d:fc:2b:d4:32:3d:2a:99:2f:52:95:a3:cd:e7:
ce:60:8c:48:d1:b2:40:cb:24:d6:c5:bc:a3:ad:16:
30:94:ee:f5:66:bc:f9:5b:fe:3c:f6:c6:54:82:54:
64:22:7e:be:74:c8:b2:dd:7f:42:28:fa:31:22:f0:
7d:a0:c5:90:f2:89:a8:dd:f6:3b:3d:e0:32:67:94:
d8:31:b0:1c:a6:1c:19:3f:a6:33:fb:fa:86:46:5a:
ac:40:2b:98:91:60:07:54:1d:7a:5c:c5:64:fb:12:
96:ac:31:18:19:89:db:e9:0a:75:3e:0b:d6:ac:61:
54:25:f2:2f:d9:8f:bb:97:b6:e8:b9:f8:bc:db:f2:
80:38:e7:28:ad:78:bc:ef:c0:fb:1b:2b:1c:1f:2a:
0e:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:BD:A8:DC:D9:91:54:67:0C:1B:50:54:E3:23:41:6D:BB:21:22:8C
X509v3 Authority Key Identifier:
keyid:D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/D5C3D5E70FC9AD10BA90D45DC66454E9E3A146A8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638303a6330303a3a2f33382d3438203d3e20323032313937.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:df80:c00::/38
Signature Algorithm: sha256WithRSAEncryption
7b:5e:e5:4b:e1:92:50:7c:a5:ac:5b:c7:a1:fe:52:4a:e8:3a:
e2:4d:76:a1:22:2d:06:ba:66:44:e2:7c:2f:dc:3d:b7:8d:c6:
f5:dd:68:cd:67:71:c0:d1:66:bc:24:f3:82:e3:e3:96:3d:d6:
42:25:ae:bd:62:e6:40:6e:8c:d9:8a:12:4c:98:54:92:a5:8a:
e9:7c:8f:1f:30:70:8d:4b:ea:c7:4f:65:e9:c2:2c:3d:ee:6e:
f3:d6:d7:15:22:5d:b1:ab:b5:08:1a:d0:e2:b8:2e:cd:80:2b:
f3:55:58:5e:5f:57:38:64:b1:88:35:66:0c:da:81:34:bf:3a:
d0:79:0b:75:c6:b6:3b:7e:d2:98:21:28:59:0b:12:36:72:11:
0e:eb:4e:92:f9:ac:b3:df:65:37:73:fa:26:e6:96:84:71:f2:
91:3b:e4:4e:06:23:87:89:46:9b:5a:ee:8b:b2:59:b2:20:c9:
9b:79:87:72:39:9a:06:28:d7:b2:00:50:ee:86:ce:a9:e2:bc:
4f:b1:80:0a:89:18:0d:c8:75:0c:37:58:06:c8:ad:18:0b:57:
d7:ce:3b:2e:31:b4:11:27:c5:98:26:2a:9c:80:d4:4e:9e:a5:
6a:7e:36:93:f3:12:6c:59:2f:06:96:92:60:74:01:34:b2:4a:
c3:2f:57:0c
-----BEGIN CERTIFICATE-----
MIIFPTCCBCWgAwIBAgIUUhT5dWwVfgFlxI2xYguFYOqebdQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZDVjM2Q1ZTcwZmM5YWQxMGJhOTBkNDVkYzY2NDU0ZTll
M2ExNDZhODAeFw0yMzA3MTEyMTI4MDZaFw0yNDA3MDkyMTMzMDZaMDMxMTAvBgNV
BAMTKDNFQkRBOERDRDk5MTU0NjcwQzFCNTA1NEUzMjM0MTZEQkIyMTIyOEMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9x0i29zvfPzEgF28miuxFWwNT
abtY4DOka4nmtftIaZcyD9jXHI3ESn3TT1lrnRuNDGjA9bDsZngkLxHQ4efC4j2H
IdXI+v+Hb67dvh9CbJERKW8Xvdh0h7XBxcHN5BrhyjxOf/Lb7oE9/CvUMj0qmS9S
laPN585gjEjRskDLJNbFvKOtFjCU7vVmvPlb/jz2xlSCVGQifr50yLLdf0Io+jEi
8H2gxZDyiajd9js94DJnlNgxsBymHBk/pjP7+oZGWqxAK5iRYAdUHXpcxWT7Epas
MRgZidvpCnU+C9asYVQl8i/Zj7uXtui5+Lzb8oA45yiteLzvwPsbKxwfKg6XAgMB
AAGjggJHMIICQzAdBgNVHQ4EFgQUPr2o3NmRVGcMG1BU4yNBbbshIowwHwYDVR0j
BBgwFoAU1cPV5w/JrRC6kNRdxmRU6eOhRqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMDQwMzJjOGYtMWQ1Ny00YzNiLTkwNDMtYTBlN2ZlYmYx
NjdkLzAvRDVDM0Q1RTcwRkM5QUQxMEJBOTBENDVEQzY2NDU0RTlFM0ExNDZBOC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzFjUFY1d19KclJDNmtOUmR4bVJVNmVP
aFJxZy5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMDQwMzJjOGYt
MWQ1Ny00YzNiLTkwNDMtYTBlN2ZlYmYxNjdkLzAvMzI2MTMxMzMzYTY0NjYzODMw
M2E2MzMwMzAzYTNhMmYzMzM4MmQzNDM4MjAzZDNlMjAzMjMwMzIzMTM5Mzcucm9h
MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4E
AgACMAgDBgIqE9+ADDANBgkqhkiG9w0BAQsFAAOCAQEAe17lS+GSUHylrFvHof5S
Sug64k12oSItBrpmROJ8L9w9t43G9d1ozWdxwNFmvCTzguPjlj3WQiWuvWLmQG6M
2YoSTJhUkqWK6XyPHzBwjUvqx09l6cIsPe5u89bXFSJdsau1CBrQ4rguzYAr81VY
Xl9XOGSxiDVmDNqBNL860HkLdca2O37SmCEoWQsSNnIRDutOkvmss99lN3P6JuaW
hHHykTvkTgYjh4lGm1rui7JZsiDJm3mHcjmaBijXsgBQ7obOqeK8T7GACokYDch1
DDdYBsitGAtX1847LjG0ESfFmCYqnIDUTp6lan42k/MSbFkvBpaSYHQBNLJKwy9X
DA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:08 2024 by rpki-client on console-fra.rpki-client.org