Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638303a63303a3a2f34342d3434203d3e20313938353835.roa
File: 326131333a646638303a63303a3a2f34342d3434203d3e20313938353835.roa (raw, json)
Hash identifier: gmsRm+XQfn823hmbHf+RyeCyLnYXswlsfO1Oa0RZg18=
Subject key identifier: 2F:90:4F:8E:86:A3:CF:45:A1:99:95:6B:DB:78:B8:A1:4B:32:8F:94
Certificate issuer: /CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Certificate serial: 69AEAC8C94CCE924F68D2E0DB202E4628F302477
Authority key identifier: D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638303a63303a3a2f34342d3434203d3e20313938353835.roa
Signing time: Fri 16 Jun 2023 20:08:38 +0000
ROA not before: Fri 16 Jun 2023 20:03:38 +0000
ROA not after: Fri 14 Jun 2024 20:08:38 +0000
asID: 198585
IP address blocks: 2a13:df80:c0::/44 maxlen: 44
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:ae:ac:8c:94:cc:e9:24:f6:8d:2e:0d:b2:02:e4:62:8f:30:24:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Validity
Not Before: Jun 16 20:03:38 2023 GMT
Not After : Jun 14 20:08:38 2024 GMT
Subject: CN=2F904F8E86A3CF45A199956BDB78B8A14B328F94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b3:8b:5f:f8:fd:f8:7e:bd:d8:44:5a:a1:bc:
80:07:3d:ce:7c:4b:5e:99:21:f4:b9:7f:e5:1a:cb:
19:74:d1:44:ed:61:62:39:b5:3e:51:87:fc:99:58:
ba:f6:47:11:af:57:35:e6:1f:15:d5:5f:f5:41:e9:
95:77:07:da:06:24:5f:23:9e:ce:61:65:00:f5:a5:
cf:ba:4f:41:32:22:7b:78:10:6e:d7:7f:c1:d7:62:
23:5d:7d:a9:fd:d0:95:e0:5b:bd:96:79:5a:fc:f8:
7c:ea:c9:b6:8e:d0:a6:02:b3:8a:5b:7c:c5:86:e9:
44:d4:c8:20:69:1b:7c:37:35:61:08:97:e4:17:27:
7b:af:f4:98:f7:63:8c:72:58:d5:fe:fe:43:c3:45:
59:4c:ca:60:47:8c:76:d1:19:f0:83:d0:f7:f6:b2:
97:64:4d:b8:ea:94:9d:64:d5:87:2f:6e:36:c2:59:
3c:7d:a4:b4:80:4f:36:39:f8:fb:32:0c:06:b6:5e:
72:64:27:0b:1b:2a:80:6c:88:20:b0:ef:38:de:29:
e1:00:e0:1f:99:12:50:5d:68:4d:e3:cc:7c:9f:cc:
56:71:f9:c4:2a:27:7f:54:04:92:25:cc:1f:fa:a7:
d8:e3:4a:35:c7:33:a5:70:06:29:0b:93:9f:db:25:
f4:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:90:4F:8E:86:A3:CF:45:A1:99:95:6B:DB:78:B8:A1:4B:32:8F:94
X509v3 Authority Key Identifier:
keyid:D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/D5C3D5E70FC9AD10BA90D45DC66454E9E3A146A8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638303a63303a3a2f34342d3434203d3e20313938353835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:df80:c0::/44
Signature Algorithm: sha256WithRSAEncryption
55:81:ba:a7:32:2f:be:0d:71:76:e5:ce:98:3b:fd:dd:bc:2b:
66:ba:7c:22:ef:4d:e6:30:d6:8f:46:89:06:1f:66:63:81:16:
4a:04:43:66:3e:7a:b4:9f:72:92:6b:c6:f9:c1:48:9e:36:f1:
43:92:5a:f6:2f:31:36:e9:94:87:44:8d:3f:b4:8e:97:c9:fe:
d9:ce:c1:0c:a4:97:82:28:70:70:57:87:c3:3a:e4:37:19:24:
f1:3a:28:86:0f:20:77:b4:ba:c1:d4:0c:bc:27:9c:00:80:95:
a5:56:5c:e7:ab:19:35:fd:a2:f6:98:9e:d6:48:2d:eb:05:9a:
6b:7d:56:cb:b9:c7:44:e5:d7:dd:80:e4:2d:13:28:ad:40:99:
5b:5f:60:3c:63:27:71:41:16:83:4c:03:c0:1d:d3:6b:bb:79:
90:94:a3:93:7a:91:48:f4:50:67:20:ad:c5:b7:39:1c:60:38:
ee:f2:21:8c:b3:0f:f9:72:a1:c6:91:a9:f7:39:f1:33:db:36:
af:de:d0:65:54:39:c7:b4:df:8f:c5:22:84:2f:f6:7b:d9:54:
f1:ad:38:d8:d8:af:33:62:e1:32:69:c9:31:7d:a0:7f:fd:7f:
dd:21:a1:88:e7:03:09:29:d6:54:a2:c0:e4:bf:76:00:61:a2:
4e:58:28:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:08 2024 by rpki-client on console-fra.rpki-client.org