Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638353a623030623a3a2f34382d3438203d3e203630373433.roa
File: 326131333a646638353a623030623a3a2f34382d3438203d3e203630373433.roa (raw, json)
Hash identifier: 00pqFU1324gB8gX0i8MYF6zk/44fRlMqnvicxY9qqJk=
Subject key identifier: 73:7B:A3:FF:5A:FD:2B:3E:8C:F4:6E:CA:A7:C2:43:03:34:1D:BE:FC
Certificate issuer: /CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Certificate serial: 63EB27D57E3968A1E1A8517036ED7F3B5ECD5AC9
Authority key identifier: D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638353a623030623a3a2f34382d3438203d3e203630373433.roa
Signing time: Fri 16 Jun 2023 20:08:47 +0000
ROA not before: Fri 16 Jun 2023 20:03:47 +0000
ROA not after: Fri 14 Jun 2024 20:08:47 +0000
asID: 60743
IP address blocks: 2a13:df85:b00b::/48 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:eb:27:d5:7e:39:68:a1:e1:a8:51:70:36:ed:7f:3b:5e:cd:5a:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Validity
Not Before: Jun 16 20:03:47 2023 GMT
Not After : Jun 14 20:08:47 2024 GMT
Subject: CN=737BA3FF5AFD2B3E8CF46ECAA7C24303341DBEFC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:09:b8:3f:b2:0f:ff:e8:5f:57:c9:7c:07:db:
11:84:8e:da:b3:4e:2d:3a:35:17:5d:09:ee:b6:3a:
5d:a8:50:18:07:5e:bc:9e:80:9d:e6:75:dd:55:2b:
c4:1b:80:eb:cb:bd:38:12:e2:a0:58:fd:cc:ec:13:
d5:d5:51:7b:87:d8:e3:9f:b9:df:91:f2:d9:43:da:
79:30:01:56:41:90:31:7e:72:be:3c:f6:ae:be:8f:
7a:e2:cd:60:28:c7:bc:d6:f1:f2:35:88:86:ba:ab:
18:b3:0b:09:42:97:29:e1:85:25:37:c5:2c:7c:f0:
b1:e6:b1:d6:93:ec:72:4d:0f:9f:de:b1:dd:5b:37:
69:ef:e2:a2:e7:10:37:f7:d2:51:c3:8a:8a:e0:4c:
1f:23:ed:ca:3c:cf:94:6e:b8:36:d3:d1:11:00:37:
0a:75:56:d8:b4:7d:ca:e5:af:8f:6f:82:6b:3f:c2:
85:01:dd:3f:2e:06:da:75:b2:c3:e1:4b:1f:29:da:
8d:47:6c:c6:c4:05:45:3a:02:0a:81:69:81:29:ff:
07:77:56:37:e3:31:dd:d5:ea:c1:74:e7:33:ef:86:
f5:b7:a2:94:a9:8b:63:00:99:0f:6f:38:75:25:3f:
81:3e:c8:27:84:84:c6:98:45:82:c5:93:8d:7a:1f:
45:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:7B:A3:FF:5A:FD:2B:3E:8C:F4:6E:CA:A7:C2:43:03:34:1D:BE:FC
X509v3 Authority Key Identifier:
keyid:D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/D5C3D5E70FC9AD10BA90D45DC66454E9E3A146A8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638353a623030623a3a2f34382d3438203d3e203630373433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:df85:b00b::/48
Signature Algorithm: sha256WithRSAEncryption
60:e5:ae:b1:11:9c:5d:42:4e:e9:66:02:52:61:7b:55:d3:06:
e9:ae:04:9d:7f:7a:ae:b1:8f:75:20:17:5b:56:48:ba:66:a9:
f9:1d:59:c1:58:0c:57:4f:f6:b5:19:93:54:2a:8c:46:3a:e7:
4b:18:cd:17:31:fd:c8:58:2f:53:4b:df:a3:da:c9:4b:12:40:
ec:77:39:f3:86:28:a7:f6:f7:be:73:5a:f2:9b:21:f7:d6:60:
bb:93:d2:f1:18:d4:35:c0:37:06:6b:4e:20:29:ff:da:ad:c3:
36:bc:d5:b3:23:69:8f:7a:2d:bb:c5:3d:50:fa:31:ff:1f:67:
7c:4a:2d:f0:82:48:e2:f6:32:6e:3f:37:b7:1f:b1:aa:fb:44:
67:e3:ab:ab:9b:b9:63:b3:94:9d:95:3c:56:57:16:6a:9e:9e:
f3:7a:21:2e:2c:d8:74:0b:e5:aa:a7:77:ea:c3:aa:03:bf:b7:
7a:34:db:74:a2:6a:0d:5f:4b:45:6e:7b:83:f5:a9:a6:23:a2:
4a:3a:2b:6d:39:69:7e:d0:0a:2f:f3:5d:9f:29:e2:f5:cf:85:
cb:c8:94:56:81:b1:be:46:19:f0:6d:b4:4b:0f:ae:08:d8:4c:
34:a2:b0:d6:62:8c:84:f4:3a:a3:40:6a:d5:28:93:2c:c7:06:
59:d3:b8:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:08 2024 by rpki-client on console-fra.rpki-client.org