Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638353a656330303a3a2f33382d3438203d3e203434343837.roa
File: 326131333a646638353a656330303a3a2f33382d3438203d3e203434343837.roa (raw, json)
Hash identifier: XOEPsQj5su8EA/VxwgTH9myqsugX2VxGufV2G3nrQtk=
Subject key identifier: 8D:34:A0:F9:91:91:CB:80:18:96:30:72:F4:B8:0F:51:D2:C9:33:31
Certificate issuer: /CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Certificate serial: 45816F316FEE67679AF02817F647B35098C70349
Authority key identifier: D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638353a656330303a3a2f33382d3438203d3e203434343837.roa
Signing time: Sat 16 Dec 2023 23:19:23 +0000
ROA not before: Sat 16 Dec 2023 23:14:23 +0000
ROA not after: Sat 14 Dec 2024 23:19:23 +0000
asID: 44487
IP address blocks: 2a13:df85:ec00::/38 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:81:6f:31:6f:ee:67:67:9a:f0:28:17:f6:47:b3:50:98:c7:03:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Validity
Not Before: Dec 16 23:14:23 2023 GMT
Not After : Dec 14 23:19:23 2024 GMT
Subject: CN=8D34A0F99191CB8018963072F4B80F51D2C93331
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:09:7f:d0:48:80:44:bf:c5:2a:1a:df:0b:00:
24:1a:92:4b:83:4d:77:ec:23:dd:ed:e8:eb:fc:c4:
b5:a3:ab:48:b7:8e:40:63:d1:ec:5d:78:4b:f1:b1:
20:f4:d5:f3:b6:5b:c5:86:d4:28:f7:46:0e:85:1c:
61:72:5d:2b:69:3a:1d:e9:9e:5f:19:5c:56:20:7d:
de:0d:19:a6:ac:88:8b:e6:f8:3c:90:de:e2:14:5f:
d4:53:97:c5:43:08:9c:3f:70:f3:ad:52:42:7e:b2:
25:10:ff:86:ff:e1:3e:07:a6:e0:df:24:91:e0:96:
e5:65:b5:6b:49:45:66:7b:cb:3b:07:f1:9d:c5:57:
28:15:8e:fe:54:5b:67:34:17:19:0b:26:84:82:60:
2b:0b:66:25:98:aa:7d:7b:6e:bb:a9:35:1b:51:0e:
24:ea:2f:de:ed:9d:fa:df:69:89:03:8f:ed:e3:16:
1a:1b:73:72:ed:89:07:10:53:cf:02:59:2b:73:37:
e5:af:14:b4:c1:69:f6:e1:ce:89:4a:1e:8e:80:de:
0a:72:0e:ba:85:20:47:90:e0:a5:91:53:e3:de:bf:
f1:ed:71:d7:ef:ea:48:96:4e:5b:87:d7:70:17:a0:
eb:2f:d1:e1:ff:c1:57:08:c8:0c:51:ae:74:36:ee:
d0:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:34:A0:F9:91:91:CB:80:18:96:30:72:F4:B8:0F:51:D2:C9:33:31
X509v3 Authority Key Identifier:
keyid:D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/D5C3D5E70FC9AD10BA90D45DC66454E9E3A146A8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638353a656330303a3a2f33382d3438203d3e203434343837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:df85:ec00::/38
Signature Algorithm: sha256WithRSAEncryption
4a:6f:39:07:85:fc:2c:45:9f:70:c9:89:bd:eb:6c:02:96:27:
32:c9:b0:38:6f:7b:26:de:7a:ae:b5:4f:59:75:03:f0:f1:52:
99:cf:52:a4:ef:73:99:97:99:c7:ca:d0:65:67:52:78:e0:26:
e3:c6:8b:1e:26:71:b7:e0:f6:f3:20:2d:c5:46:68:bb:df:86:
fc:fe:57:8c:a0:41:36:35:8a:5c:cc:2e:13:dc:e6:4c:c2:72:
b6:12:77:53:ac:e5:76:dd:3b:03:21:d8:74:6a:99:dc:21:a4:
92:7d:92:09:01:ae:e2:c6:c6:f9:70:f9:33:42:37:f2:ff:5b:
f5:ae:1e:49:97:28:59:df:96:95:3e:71:d1:99:dd:1f:5b:67:
83:23:55:b7:31:00:0d:6c:50:32:91:33:db:24:ee:9e:98:5e:
4a:b6:9e:68:c6:ff:8d:93:cb:8f:47:f3:eb:8a:8e:db:43:cb:
b2:b6:ab:97:cd:6e:fe:23:80:a9:47:61:ee:79:a0:05:1a:df:
8a:73:87:94:54:26:3c:1c:ee:ff:de:53:8a:77:dd:b7:13:f7:
0c:bf:01:3d:98:6b:14:e3:62:1d:6a:88:e9:4b:85:4c:d7:a1:
52:3a:41:3f:c5:02:93:7f:12:54:4a:60:c6:5e:ab:99:06:25:
4a:0e:b6:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:08 2024 by rpki-client on console-fra.rpki-client.org