Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638313a3a2f33322d3438203d3e20313938393233.roa
File: 326131333a646638313a3a2f33322d3438203d3e20313938393233.roa (raw, json)
Hash identifier: CDGWjiT2s4bLQKTrhj/vQZrRpUIIxD7B9xFMRTBQJYw=
Subject key identifier: C0:32:5C:26:AD:C0:54:65:3E:16:26:C2:2A:A7:7A:56:D3:38:32:66
Certificate issuer: /CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Certificate serial: 4CB080A2B14B9E7624742781CB8D893C7436B33B
Authority key identifier: D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638313a3a2f33322d3438203d3e20313938393233.roa
Signing time: Tue 01 Aug 2023 09:51:24 +0000
ROA not before: Tue 01 Aug 2023 09:46:24 +0000
ROA not after: Tue 30 Jul 2024 09:51:24 +0000
asID: 198923
IP address blocks: 2a13:df81::/32 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:b0:80:a2:b1:4b:9e:76:24:74:27:81:cb:8d:89:3c:74:36:b3:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Validity
Not Before: Aug 1 09:46:24 2023 GMT
Not After : Jul 30 09:51:24 2024 GMT
Subject: CN=C0325C26ADC054653E1626C22AA77A56D3383266
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b8:89:07:d5:9b:3f:75:a1:a5:82:c4:64:51:
8e:78:2e:f8:99:4e:bd:46:18:29:7c:4c:64:45:72:
e3:cd:36:a9:5a:73:2a:06:ed:78:50:02:bc:49:45:
ed:69:41:54:a1:a5:49:d3:9a:d6:a4:76:b7:57:a5:
81:38:04:8b:59:1a:d5:4f:e1:ed:0c:af:64:18:87:
28:da:ab:7d:1a:fd:57:f5:a7:2d:b2:96:73:f2:37:
56:00:39:8d:3e:57:22:1b:bb:fe:a8:d9:06:e5:85:
a6:a2:d6:59:ec:22:7c:97:d5:80:b6:7c:84:9f:09:
1b:79:d1:05:ec:54:15:84:14:85:76:42:1f:bb:0a:
b6:eb:0d:91:e0:46:17:d0:3c:82:b1:e6:e3:a5:0f:
a8:32:3a:cd:66:7e:e0:da:76:1d:9f:6e:7c:d8:01:
5e:0d:eb:30:71:c6:1a:95:d8:88:e6:fb:47:c8:b5:
26:0c:bb:3a:97:4f:66:f5:48:f4:47:63:4f:bd:5d:
ca:f8:0d:8f:33:25:2d:b3:bd:77:79:72:d2:40:e7:
72:36:12:21:ec:45:ae:bd:e0:e4:db:eb:7e:01:28:
b3:76:90:f6:df:59:da:4f:f5:bf:f6:9c:79:6e:2d:
4d:fe:3a:95:23:a1:a7:ef:80:9f:d8:44:74:bd:9e:
33:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:32:5C:26:AD:C0:54:65:3E:16:26:C2:2A:A7:7A:56:D3:38:32:66
X509v3 Authority Key Identifier:
keyid:D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/D5C3D5E70FC9AD10BA90D45DC66454E9E3A146A8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638313a3a2f33322d3438203d3e20313938393233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:df81::/32
Signature Algorithm: sha256WithRSAEncryption
55:b7:f3:08:2b:f7:87:38:8f:56:2d:44:a1:5d:06:5a:c2:18:
39:d3:a9:9f:89:ac:50:dc:a2:69:00:ba:9b:04:aa:4b:71:14:
1f:ec:ab:9f:ef:2a:0b:6f:6d:d1:cf:01:24:d8:af:86:86:bc:
d3:94:b7:e7:6d:ac:82:c1:ed:e9:b8:52:b9:65:7d:d5:4a:7f:
60:93:74:3e:fe:3f:fc:01:4a:07:72:14:37:4a:af:a5:df:90:
e9:7e:b7:75:e7:cd:f6:4b:94:86:1c:92:48:82:55:10:f5:f2:
e9:48:4b:30:b5:41:41:b5:f0:b1:e8:8d:66:83:5c:d7:51:69:
0c:75:14:ae:00:e1:3a:b7:78:1f:c8:8b:c5:89:42:02:82:28:
5b:cb:44:87:57:7e:fd:be:0c:8b:a3:96:97:b4:b1:47:c9:fd:
48:82:67:0d:e2:7c:e1:69:12:a4:2b:17:38:c6:19:50:45:a1:
90:e1:48:e0:86:2d:6f:c9:48:9d:4a:3a:89:00:5a:cd:65:9e:
ce:f8:0d:08:bb:3d:8e:64:a0:0c:67:5e:34:5f:09:e0:c9:47:
ad:54:dc:ad:0c:79:83:fc:0b:70:24:53:c3:df:5b:ee:d3:c0:
cd:b0:e7:c0:c4:47:3f:7f:53:d5:89:64:21:fb:e1:f5:67:30:
c3:6c:5b:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:53 2024 by rpki-client on console-ams.rpki-client.org