Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638323a3a2f33322d3438203d3e203537383730.roa
File: 326131333a646638323a3a2f33322d3438203d3e203537383730.roa (raw, json)
Hash identifier: 5sNRqLJ8OexbIYL1cRA/eHeBQLkjZvADMC1Lklr1+eI=
Subject key identifier: 07:53:4D:35:CF:DC:40:52:23:05:49:F9:ED:BF:AF:68:5C:85:C7:FA
Certificate issuer: /CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Certificate serial: 7E009F6600AA51D5291F89322152BB1141C4840B
Authority key identifier: D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638323a3a2f33322d3438203d3e203537383730.roa
Signing time: Sat 05 Aug 2023 16:26:14 +0000
ROA not before: Sat 05 Aug 2023 16:21:14 +0000
ROA not after: Sat 03 Aug 2024 16:26:14 +0000
asID: 57870
IP address blocks: 2a13:df82::/32 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:00:9f:66:00:aa:51:d5:29:1f:89:32:21:52:bb:11:41:c4:84:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Validity
Not Before: Aug 5 16:21:14 2023 GMT
Not After : Aug 3 16:26:14 2024 GMT
Subject: CN=07534D35CFDC4052230549F9EDBFAF685C85C7FA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:58:12:07:9b:b4:b9:eb:f3:f4:3a:c9:50:78:
ee:c7:fa:e9:7e:da:83:a0:d8:3d:fb:14:b5:35:14:
97:1f:a5:87:29:b8:5b:fa:2e:6f:c3:61:fc:69:16:
13:e6:d4:ad:00:d8:01:1f:ac:e4:b6:85:ed:c8:42:
da:ba:50:a0:31:34:10:23:ff:e1:15:1f:1e:77:5f:
03:ed:df:34:3f:96:11:08:70:89:cc:08:16:6d:39:
1c:83:c7:a2:81:12:b5:85:fb:17:0f:47:a4:11:0a:
03:9d:16:e3:49:a6:3c:ee:f5:05:ac:66:ee:fb:f6:
2e:3d:e3:85:53:93:37:b1:49:66:58:8b:6d:5c:96:
b5:75:61:60:a5:73:a7:5e:1e:06:2b:8f:e3:24:ff:
39:94:85:c8:da:b2:b2:61:32:94:95:4b:9f:1c:3e:
75:f8:1c:46:47:b8:a3:e2:42:ad:46:11:d8:fb:d6:
ed:a9:db:30:94:a3:4f:1c:12:ee:63:54:7e:96:ec:
05:ce:82:20:61:fc:f7:3f:06:de:41:27:d7:78:91:
19:1d:33:86:3d:6a:8f:cd:b6:83:39:9d:63:f2:1e:
47:fd:bc:a7:a9:a3:2f:f3:32:7e:52:db:d3:0a:90:
51:e5:cf:93:07:e5:28:0a:73:96:f5:64:05:79:86:
53:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:53:4D:35:CF:DC:40:52:23:05:49:F9:ED:BF:AF:68:5C:85:C7:FA
X509v3 Authority Key Identifier:
keyid:D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/D5C3D5E70FC9AD10BA90D45DC66454E9E3A146A8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638323a3a2f33322d3438203d3e203537383730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:df82::/32
Signature Algorithm: sha256WithRSAEncryption
28:eb:93:fd:dd:6d:7f:11:b5:81:a6:b1:8d:f9:61:d1:d6:98:
07:4a:e5:bf:8b:1a:a7:0c:b8:c2:06:7d:d8:cd:1e:48:e7:e8:
6b:a0:f8:85:f5:34:b1:5e:dc:1e:5b:7a:1e:c0:0b:05:aa:57:
ef:86:be:58:59:83:13:d8:fe:fb:22:8b:c0:a5:1b:bb:b7:d4:
60:2e:4e:90:6f:b5:45:55:a1:62:3a:f2:d6:a6:51:41:20:c3:
67:5a:ee:4e:81:78:bd:f5:95:21:c9:0e:be:7b:0e:a7:fd:9d:
d1:be:15:92:a3:30:e3:b1:85:28:a2:0c:3b:24:ea:0d:40:f3:
c2:cb:bb:5e:d2:22:61:4a:cc:70:16:e5:82:7e:c1:23:cc:44:
c8:7a:df:ee:1d:a7:cc:b0:8d:87:11:cf:b3:09:64:70:be:d7:
d3:0f:00:ad:8b:50:9a:69:2f:11:c0:cf:d1:d9:46:fb:dc:9c:
f1:49:1f:05:21:26:e4:de:28:f0:18:1b:21:77:6b:4c:3c:86:
6c:83:e3:ae:21:7d:46:b5:fe:c6:ad:5e:02:10:31:ee:b2:c6:
a9:da:ec:48:8b:6b:8f:db:75:74:ef:e7:fc:3b:08:cd:32:18:
53:56:74:c2:40:b9:a5:64:1e:8e:2c:af:f0:93:fb:0b:29:2b:
eb:1f:4e:12
-----BEGIN CERTIFICATE-----
MIIFMjCCBBqgAwIBAgIUfgCfZgCqUdUpH4kyIVK7EUHEhAswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZDVjM2Q1ZTcwZmM5YWQxMGJhOTBkNDVkYzY2NDU0ZTll
M2ExNDZhODAeFw0yMzA4MDUxNjIxMTRaFw0yNDA4MDMxNjI2MTRaMDMxMTAvBgNV
BAMTKDA3NTM0RDM1Q0ZEQzQwNTIyMzA1NDlGOUVEQkZBRjY4NUM4NUM3RkEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7WBIHm7S56/P0OslQeO7H+ul+
2oOg2D37FLU1FJcfpYcpuFv6Lm/DYfxpFhPm1K0A2AEfrOS2he3IQtq6UKAxNBAj
/+EVHx53XwPt3zQ/lhEIcInMCBZtORyDx6KBErWF+xcPR6QRCgOdFuNJpjzu9QWs
Zu779i4944VTkzexSWZYi21clrV1YWClc6deHgYrj+Mk/zmUhcjasrJhMpSVS58c
PnX4HEZHuKPiQq1GEdj71u2p2zCUo08cEu5jVH6W7AXOgiBh/Pc/Bt5BJ9d4kRkd
M4Y9ao/NtoM5nWPyHkf9vKepoy/zMn5S29MKkFHlz5MH5SgKc5b1ZAV5hlNpAgMB
AAGjggI8MIICODAdBgNVHQ4EFgQUB1NNNc/cQFIjBUn57b+vaFyFx/owHwYDVR0j
BBgwFoAU1cPV5w/JrRC6kNRdxmRU6eOhRqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMDQwMzJjOGYtMWQ1Ny00YzNiLTkwNDMtYTBlN2ZlYmYx
NjdkLzAvRDVDM0Q1RTcwRkM5QUQxMEJBOTBENDVEQzY2NDU0RTlFM0ExNDZBOC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzFjUFY1d19KclJDNmtOUmR4bVJVNmVP
aFJxZy5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMDQwMzJjOGYt
MWQ1Ny00YzNiLTkwNDMtYTBlN2ZlYmYxNjdkLzAvMzI2MTMxMzMzYTY0NjYzODMy
M2EzYTJmMzMzMjJkMzQzODIwM2QzZTIwMzUzNzM4MzczMC5yb2EwGAYDVR0gAQH/
BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACoT
34IwDQYJKoZIhvcNAQELBQADggEBACjrk/3dbX8RtYGmsY35YdHWmAdK5b+LGqcM
uMIGfdjNHkjn6Gug+IX1NLFe3B5beh7ACwWqV++GvlhZgxPY/vsii8ClG7u31GAu
TpBvtUVVoWI68tamUUEgw2da7k6BeL31lSHJDr57Dqf9ndG+FZKjMOOxhSiiDDsk
6g1A88LLu17SImFKzHAW5YJ+wSPMRMh63+4dp8ywjYcRz7MJZHC+19MPAK2LUJpp
LxHAz9HZRvvcnPFJHwUhJuTeKPAYGyF3a0w8hmyD464hfUa1/satXgIQMe6yxqna
7EiLa4/bdXTv5/w7CM0yGFNWdMJAuaVkHo4sr/CT+wspK+sfThI=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:53 2024 by rpki-client on console-ams.rpki-client.org