Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638303a6330303a3a2f33382d3438203d3e203438373532.roa
File: 326131333a646638303a6330303a3a2f33382d3438203d3e203438373532.roa (raw, json)
Hash identifier: D/g5Uqz92XmtyhLtMHCyMy+bF8qdBrH+PggwSxd3fok=
Subject key identifier: E2:99:ED:41:71:1E:01:82:0F:FE:EA:8D:75:26:57:50:B4:38:EA:C3
Certificate issuer: /CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Certificate serial: 68D298E8162BBACDBD0D120D0720363BDAE552AD
Authority key identifier: D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638303a6330303a3a2f33382d3438203d3e203438373532.roa
Signing time: Fri 14 Jul 2023 15:26:10 +0000
ROA not before: Fri 14 Jul 2023 15:21:10 +0000
ROA not after: Fri 12 Jul 2024 15:26:10 +0000
asID: 48752
IP address blocks: 2a13:df80:c00::/38 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:d2:98:e8:16:2b:ba:cd:bd:0d:12:0d:07:20:36:3b:da:e5:52:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Validity
Not Before: Jul 14 15:21:10 2023 GMT
Not After : Jul 12 15:26:10 2024 GMT
Subject: CN=E299ED41711E01820FFEEA8D75265750B438EAC3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:47:05:e4:5d:e1:17:55:9a:20:eb:dd:0f:75:
b5:b6:bf:26:8e:31:c9:6b:f5:a2:c1:9f:bd:c2:c8:
24:0e:3c:d7:36:90:24:36:05:71:58:06:be:c0:3e:
e3:6a:5e:7f:93:c3:d3:ae:cb:19:27:08:52:db:6b:
21:a1:ec:3a:ae:5b:66:31:f2:3f:8f:47:50:ca:63:
03:06:08:81:8c:ba:d1:09:1e:0e:5e:88:6d:d2:c1:
f5:a9:ea:94:e5:59:0a:78:cd:b0:97:e6:1e:a6:51:
a4:47:1c:1f:0b:4f:2e:f9:68:d1:7e:49:a7:25:35:
a6:d8:99:89:1a:ef:9d:c9:32:72:49:3d:08:2f:4d:
02:45:c7:74:80:ba:2b:26:bb:a5:e5:ae:c7:f0:45:
05:fe:7b:c2:6a:8d:d6:e5:7b:47:eb:02:c4:a9:a3:
7a:51:5e:d6:c2:05:5f:83:ed:42:23:18:60:52:75:
ed:08:31:74:6e:cf:aa:6e:ff:ea:49:98:29:aa:c0:
02:7a:fc:64:e9:7d:8a:d6:a1:c6:e6:68:1b:e9:88:
87:da:b6:60:b3:10:b1:ba:d7:3f:7c:ad:41:fb:81:
78:82:32:21:89:91:90:93:f0:16:5e:2b:6d:b4:8d:
5a:4a:b5:c2:a2:81:b1:e3:94:d8:c3:e8:7f:76:93:
9c:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:99:ED:41:71:1E:01:82:0F:FE:EA:8D:75:26:57:50:B4:38:EA:C3
X509v3 Authority Key Identifier:
keyid:D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/D5C3D5E70FC9AD10BA90D45DC66454E9E3A146A8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638303a6330303a3a2f33382d3438203d3e203438373532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:df80:c00::/38
Signature Algorithm: sha256WithRSAEncryption
a2:f0:38:3e:8e:12:b8:71:8f:4b:87:eb:05:b8:d7:34:89:16:
dc:50:87:c6:01:26:d7:d9:e7:08:d4:ed:de:c3:ee:a9:c0:a9:
72:2f:95:cc:96:e5:32:83:d4:71:55:da:4b:6b:cd:d6:de:e7:
23:e0:cd:52:ac:3a:14:04:87:6f:b6:bf:78:38:06:4a:8c:2b:
f8:cf:8f:4c:e6:e7:6c:55:d7:19:4d:36:ac:48:d2:3b:a2:33:
02:22:46:58:85:ee:8e:c8:d8:29:68:83:c0:75:86:5f:3f:9a:
71:ad:a1:d6:81:8c:db:7d:68:d3:0e:f8:fc:05:17:06:1d:12:
bd:ba:d4:88:f3:5f:31:ba:d0:8b:0a:b1:1f:2a:65:ef:ae:12:
9f:99:a5:de:75:3d:d4:a7:ae:39:3f:04:d9:3e:1d:b3:1a:83:
9b:1c:d4:68:1d:33:7a:6d:1f:05:89:94:6d:44:9f:ae:01:b2:
d8:63:40:ac:fd:e2:f9:ad:73:ce:7b:f4:6a:44:8c:36:0b:22:
ad:6e:aa:43:cb:f6:34:07:e2:9c:db:89:94:97:3c:d0:96:1f:
88:f2:40:5a:25:d0:06:15:08:15:c1:0d:8d:3a:52:b7:ff:98:
a6:c4:ef:46:9b:92:e6:ec:9d:02:14:d6:33:f8:4c:7a:b8:c0:
42:df:23:5e
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:08 2024 by rpki-client on console-fra.rpki-client.org