Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638353a653430303a3a2f33382d3438203d3e20323030323430.roa
File: 326131333a646638353a653430303a3a2f33382d3438203d3e20323030323430.roa (raw, json)
Hash identifier: FK77PGJAT8aWavWj4wwXw28wOkf02FSIoFQYcNXhTfE=
Subject key identifier: E0:0A:27:DD:57:B7:CB:18:54:47:2D:E9:47:8C:7E:74:3A:72:65:7B
Certificate issuer: /CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Certificate serial: 1A28D00945794EF3847429D78C5751D59D4B3432
Authority key identifier: D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638353a653430303a3a2f33382d3438203d3e20323030323430.roa
Signing time: Wed 06 Dec 2023 10:45:12 +0000
ROA not before: Wed 06 Dec 2023 10:40:12 +0000
ROA not after: Wed 04 Dec 2024 10:45:12 +0000
asID: 200240
IP address blocks: 2a13:df85:e400::/38 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:28:d0:09:45:79:4e:f3:84:74:29:d7:8c:57:51:d5:9d:4b:34:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Validity
Not Before: Dec 6 10:40:12 2023 GMT
Not After : Dec 4 10:45:12 2024 GMT
Subject: CN=E00A27DD57B7CB1854472DE9478C7E743A72657B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:60:09:c5:60:73:6a:99:71:61:e1:17:46:77:
00:73:be:c6:b0:a8:9a:21:b9:7c:5a:f8:c8:fb:ff:
03:16:fe:1c:45:ef:c2:ef:93:ff:36:b0:c8:44:a9:
3f:58:80:87:43:28:7a:ab:e2:d3:83:0e:23:dd:4d:
ac:c3:ad:71:9b:00:60:b9:31:c0:18:2d:09:a1:ea:
f6:ed:be:85:d3:14:8f:53:bb:51:79:a7:36:30:c9:
16:54:60:4f:79:6a:31:a1:e2:fd:38:df:26:1c:08:
22:73:05:01:a0:79:bb:db:f5:84:e5:3d:31:e4:6f:
cb:cf:05:27:6b:42:04:49:2b:53:b8:f8:5f:a3:46:
fc:ee:1e:8d:18:b6:cb:da:b3:33:87:bd:98:03:b7:
8d:a2:8c:4f:e1:af:ce:46:0c:d3:b4:cd:4f:0b:03:
54:87:76:b0:54:2a:58:26:30:b9:03:ba:37:83:a1:
33:66:71:a6:60:e9:fa:00:94:09:dd:95:31:88:2d:
9f:59:26:41:35:03:8e:6b:10:7e:44:5d:96:d6:ec:
c6:ae:a0:a6:b7:0d:0d:ed:b6:1f:be:b8:63:b4:b4:
7e:a9:fa:97:24:49:d4:d4:75:70:0a:ee:6b:21:ce:
32:5e:c5:bd:76:95:58:dd:d4:bc:52:7a:af:ba:b7:
47:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:0A:27:DD:57:B7:CB:18:54:47:2D:E9:47:8C:7E:74:3A:72:65:7B
X509v3 Authority Key Identifier:
keyid:D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/D5C3D5E70FC9AD10BA90D45DC66454E9E3A146A8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638353a653430303a3a2f33382d3438203d3e20323030323430.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:df85:e400::/38
Signature Algorithm: sha256WithRSAEncryption
a8:7a:0a:a0:e5:a8:95:50:82:29:d4:94:1a:65:6e:02:66:7d:
33:fa:49:e1:77:5d:9a:1f:3a:32:af:4f:5c:05:ac:81:07:5f:
55:86:19:4f:e4:ea:73:0b:db:eb:d9:7d:bd:a8:79:d5:fd:4f:
c6:9a:b0:d5:11:bc:4f:00:4f:11:e4:6c:d5:3f:70:ea:09:18:
e2:c3:2e:e5:57:0a:53:c0:c2:55:2e:f8:80:98:10:b5:7a:7d:
57:5d:f2:54:b7:de:5b:d2:1f:25:b5:92:53:63:5f:b3:8a:b5:
84:bc:b5:d3:ab:3f:2b:fb:d7:45:2a:95:e3:14:d4:0b:74:88:
7f:a8:25:ec:62:b9:f4:28:18:bb:4e:0b:12:fc:c2:75:06:e5:
a6:d5:cc:5d:84:c3:28:87:fa:52:1c:b3:1c:d6:ab:0c:57:38:
1f:49:49:8e:76:7a:88:88:94:5e:24:b1:1b:5d:ab:6c:67:63:
d8:85:90:52:f4:ca:20:4b:a8:f1:ef:1f:ae:41:ec:a8:68:ea:
76:ac:cd:da:db:62:fe:43:db:8d:60:c9:52:fc:7f:a4:c1:92:
c5:a9:45:f7:75:91:54:dc:a4:38:03:0d:90:79:91:4c:b7:39:
0b:d4:b8:3f:8f:8b:3d:de:d2:81:ed:c5:d9:e8:43:b8:3d:a3:
86:fb:04:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:08 2024 by rpki-client on console-fra.rpki-client.org