Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638313a3a2f33322d3332203d3e20313938393233.roa
File: 326131333a646638313a3a2f33322d3332203d3e20313938393233.roa (raw, json)
Hash identifier: pTB92buvuOIXn2IlACj3gavMewp1/FYQB676rOP6FPM=
Subject key identifier: 8E:4D:68:79:2D:0A:7F:07:8D:6B:6C:37:63:05:57:CD:15:D3:3D:51
Certificate issuer: /CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Certificate serial: 4CD9B21F86675532F441DF85AB9E654A6A772CC7
Authority key identifier: D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638313a3a2f33322d3332203d3e20313938393233.roa
Signing time: Fri 07 Jul 2023 07:04:27 +0000
ROA not before: Fri 07 Jul 2023 06:59:27 +0000
ROA not after: Fri 05 Jul 2024 07:04:27 +0000
asID: 198923
IP address blocks: 2a13:df81::/32 maxlen: 32
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:d9:b2:1f:86:67:55:32:f4:41:df:85:ab:9e:65:4a:6a:77:2c:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Validity
Not Before: Jul 7 06:59:27 2023 GMT
Not After : Jul 5 07:04:27 2024 GMT
Subject: CN=8E4D68792D0A7F078D6B6C37630557CD15D33D51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:66:95:3f:46:3d:05:25:00:06:50:b1:bd:87:
31:2d:5a:0e:91:9d:b1:1f:93:60:c2:32:9f:ca:28:
65:76:a1:40:bb:29:bc:b1:3e:f4:2f:81:28:52:90:
e1:1e:1b:ab:f0:d6:0e:d9:b5:32:17:42:cc:10:13:
4d:b9:d0:22:80:7a:01:74:28:ba:72:a2:8d:fe:17:
80:c3:85:90:17:d6:7a:8a:0f:42:16:79:b7:d9:24:
fd:c2:1f:a0:44:52:19:39:7b:ea:7b:5f:27:0d:db:
d3:6c:e7:35:a5:a2:25:a3:d4:cf:39:2f:87:6d:09:
99:07:99:50:59:67:fe:86:f4:47:93:5c:f0:99:74:
89:44:64:7e:be:86:b9:86:be:e3:b0:10:8f:03:09:
e4:e9:df:2a:e8:46:30:87:50:e7:55:02:13:97:0b:
de:0d:69:1b:41:df:38:73:d0:f3:80:7d:4c:b5:1f:
b4:ce:9c:2b:93:76:b4:ce:7c:29:5c:ed:51:2c:cb:
56:71:18:27:14:b4:7c:82:11:b7:77:28:f2:1f:52:
21:bd:ef:ed:67:37:1a:af:17:f4:84:f9:a7:90:9d:
d3:a3:48:17:42:4a:eb:36:86:c6:05:d8:48:1e:42:
f7:8e:6d:ca:0c:9c:94:f5:22:e7:c1:5a:06:f6:52:
e2:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:4D:68:79:2D:0A:7F:07:8D:6B:6C:37:63:05:57:CD:15:D3:3D:51
X509v3 Authority Key Identifier:
keyid:D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/D5C3D5E70FC9AD10BA90D45DC66454E9E3A146A8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638313a3a2f33322d3332203d3e20313938393233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:df81::/32
Signature Algorithm: sha256WithRSAEncryption
59:7e:c4:d6:97:0f:64:2a:02:30:9e:07:ba:30:c4:fa:34:66:
b3:f0:be:d4:e3:2f:c6:04:e6:d0:94:db:01:e2:e2:a4:2f:6e:
c4:e5:3e:17:f1:49:c2:cf:a6:85:6d:da:f2:58:20:35:2a:4d:
8d:4a:50:4a:47:fe:fd:35:5d:44:24:60:48:1f:8d:63:26:ea:
fd:c3:1d:59:4d:21:d5:c3:a3:f2:41:b3:81:ba:ef:c4:17:ea:
28:53:de:00:2f:5b:77:46:81:e0:62:e0:fd:f6:90:ad:0b:46:
08:85:b6:a5:bb:49:9e:78:b8:4c:95:67:8d:9c:51:37:60:73:
e1:76:c8:ff:64:f8:dd:49:70:e5:19:5d:78:63:85:8a:c0:af:
47:fd:e5:42:84:c3:1c:0a:06:ba:68:11:cd:bf:b2:08:ef:50:
bf:79:32:65:5a:f0:a9:8a:76:f8:fa:a9:53:e8:29:c9:3d:fc:
84:1d:14:f4:0f:b6:a8:ee:82:d7:45:26:16:04:a0:5a:b5:94:
1d:eb:e7:e4:ad:2f:ea:13:26:a0:d1:b7:0a:0a:9f:21:e6:63:
80:dc:3a:d7:97:ef:18:f5:13:89:8d:b6:d0:5c:0c:da:a3:0e:
58:a0:5b:1c:5b:fa:21:a5:93:85:08:84:89:d8:2a:0f:c7:0d:
e6:b9:c8:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:08 2024 by rpki-client on console-fra.rpki-client.org