Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638353a626230303a3a2f34302d3438203d3e203537383730.roa
File: 326131333a646638353a626230303a3a2f34302d3438203d3e203537383730.roa (raw, json)
Hash identifier: Sl9ur8UTeu4RHIWhKdmzaIbZlRfw2ctvIvEbC4YvZSU=
Subject key identifier: 74:7C:61:AA:2A:FA:A0:FC:86:EF:C0:ED:28:03:8C:63:35:DE:A4:0D
Certificate issuer: /CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Certificate serial: 2154B76699C05477219AA7FE9B3519017AD70749
Authority key identifier: D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638353a626230303a3a2f34302d3438203d3e203537383730.roa
Signing time: Sat 16 Dec 2023 23:04:32 +0000
ROA not before: Sat 16 Dec 2023 22:59:32 +0000
ROA not after: Sat 14 Dec 2024 23:04:32 +0000
asID: 57870
IP address blocks: 2a13:df85:bb00::/40 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:54:b7:66:99:c0:54:77:21:9a:a7:fe:9b:35:19:01:7a:d7:07:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Validity
Not Before: Dec 16 22:59:32 2023 GMT
Not After : Dec 14 23:04:32 2024 GMT
Subject: CN=747C61AA2AFAA0FC86EFC0ED28038C6335DEA40D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:75:ad:5b:9e:cd:26:eb:23:46:e7:e0:16:1b:
02:3e:5e:44:cf:1b:82:df:48:68:16:de:e8:fd:19:
17:2e:c4:ae:c7:68:8c:f2:4b:d3:cd:81:3c:eb:ca:
67:5e:ea:bd:b1:68:f7:23:09:7f:5f:44:73:62:5b:
33:02:3a:80:f7:e6:e9:ae:48:90:80:12:0b:86:8b:
f7:9a:03:0b:66:50:24:0f:a1:b9:c2:c2:09:a8:34:
11:4c:23:d6:6a:f0:90:96:37:c4:7c:94:d2:ba:c1:
ab:26:65:da:3d:18:25:f1:08:83:80:94:f4:7b:f7:
26:de:64:38:51:69:12:71:61:b1:48:11:0b:cd:f7:
31:dc:c9:8e:69:7e:f0:2b:af:b2:da:ef:27:d2:d7:
5a:85:a1:5e:05:8f:4a:79:bb:61:49:ef:cb:8a:3f:
27:23:19:1a:e7:a8:42:67:51:de:9c:94:0d:63:44:
3c:e0:5b:ad:cd:d0:33:31:a0:7a:ca:bd:44:ed:e8:
9c:63:7b:7e:df:27:b6:57:93:7e:15:78:37:40:bb:
bf:dd:45:d3:ae:7a:f4:79:86:32:3a:3c:68:b2:56:
cd:18:93:02:64:ea:c7:de:df:6c:72:f0:c8:de:55:
40:fd:50:0f:70:09:63:1e:ef:4c:6b:58:bc:7d:6b:
58:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:7C:61:AA:2A:FA:A0:FC:86:EF:C0:ED:28:03:8C:63:35:DE:A4:0D
X509v3 Authority Key Identifier:
keyid:D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/D5C3D5E70FC9AD10BA90D45DC66454E9E3A146A8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638353a626230303a3a2f34302d3438203d3e203537383730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:df85:bb00::/40
Signature Algorithm: sha256WithRSAEncryption
80:1b:c0:33:b3:ac:36:93:b1:21:04:8d:09:25:4a:d4:38:fb:
37:70:62:3b:75:53:b6:24:77:e5:fe:19:54:94:41:44:dc:6d:
1b:da:24:ba:27:8a:49:09:c1:8b:fe:3f:3f:c5:00:26:c3:e6:
a3:84:78:e6:16:ff:d4:0c:86:92:42:8b:7b:41:27:aa:1c:32:
c9:3e:11:0e:5c:9a:8c:f4:6b:28:7b:91:08:9e:5b:52:e5:72:
6d:f8:31:e9:e0:dd:74:4d:6e:9b:9b:f6:52:ce:58:0c:73:37:
72:39:4f:7c:c4:74:e9:49:70:48:d4:d8:ef:cf:e7:f3:87:bc:
43:e0:30:c1:21:a6:e5:fd:3f:5d:5d:46:5a:ca:5c:be:5e:ae:
bc:eb:1b:5b:dd:e3:06:ee:79:e0:d2:da:4b:84:f1:67:80:92:
c1:e8:42:d6:ba:22:a5:4f:6b:8e:9b:db:a8:f8:d4:77:88:0b:
a9:e2:bf:1c:ed:a3:5f:71:02:5e:80:03:74:01:27:75:23:4a:
a1:a5:97:eb:5b:61:3c:e6:25:17:6d:07:7a:fb:93:e4:a5:1a:
45:10:61:53:a9:81:35:56:95:c0:97:4e:82:6f:44:18:c9:3d:
57:84:18:f6:4a:7d:6f:1d:92:b9:cc:63:bd:c0:4f:89:f3:fe:
d1:7d:3b:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:53 2024 by rpki-client on console-ams.rpki-client.org