Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638363a3a2f33322d3332203d3e203537383730.roa
File: 326131333a646638363a3a2f33322d3332203d3e203537383730.roa (raw, json)
Hash identifier: XYEA/oS1lvZ1XN1qZboCznvgJU1lJmbOlRE9oIv2b8w=
Subject key identifier: 88:93:63:4E:BB:BC:D1:3A:B7:72:94:88:25:C9:4D:B9:12:79:3E:E8
Certificate issuer: /CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Certificate serial: 72026656D235EFA34A030B875D2BBA987935159D
Authority key identifier: D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638363a3a2f33322d3332203d3e203537383730.roa
Signing time: Fri 16 Jun 2023 20:08:40 +0000
ROA not before: Fri 16 Jun 2023 20:03:40 +0000
ROA not after: Fri 14 Jun 2024 20:08:40 +0000
asID: 57870
IP address blocks: 2a13:df86::/32 maxlen: 32
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:02:66:56:d2:35:ef:a3:4a:03:0b:87:5d:2b:ba:98:79:35:15:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Validity
Not Before: Jun 16 20:03:40 2023 GMT
Not After : Jun 14 20:08:40 2024 GMT
Subject: CN=8893634EBBBCD13AB772948825C94DB912793EE8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:2f:c7:42:b8:c7:5e:01:59:7b:03:bb:fa:bd:
31:9c:0f:c7:d3:66:d1:21:08:c6:3d:19:6f:98:0f:
61:f7:9a:15:8c:9d:cc:2c:bf:13:45:27:0d:0a:68:
f2:77:3f:67:39:5d:51:c3:97:d2:d8:87:cd:6f:62:
25:d6:2f:49:c6:3f:23:62:d9:b5:f2:af:de:e6:62:
d6:0f:19:0a:cb:18:9e:ee:21:58:83:2f:38:f8:b8:
c1:04:d8:94:6f:46:41:b4:f5:33:99:29:68:0c:0f:
3f:63:25:92:c5:f8:98:8f:f9:df:1d:4f:b6:6a:41:
ce:88:71:57:b5:9d:78:0c:7a:e6:ba:77:fb:48:c6:
57:c1:d2:30:66:af:d2:6c:a5:64:ea:7a:f0:61:01:
51:5e:fe:22:f5:69:90:28:55:23:23:88:54:5d:b5:
73:d6:45:27:fb:2c:7a:c9:cb:e5:9b:f6:95:fd:f2:
7b:8b:61:e0:7f:a2:f0:8c:d8:47:e1:22:9f:ca:ac:
f5:49:47:70:21:53:2d:d8:3e:ec:1c:50:ab:77:5a:
eb:2e:a4:31:4d:f0:90:e5:fd:3d:a7:3c:c6:b4:2e:
e6:d0:38:ac:6a:8e:96:7a:4e:1e:de:c2:3b:4b:d8:
dd:b8:62:e4:a5:fe:89:61:44:12:09:ff:78:35:db:
2c:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:93:63:4E:BB:BC:D1:3A:B7:72:94:88:25:C9:4D:B9:12:79:3E:E8
X509v3 Authority Key Identifier:
keyid:D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/D5C3D5E70FC9AD10BA90D45DC66454E9E3A146A8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638363a3a2f33322d3332203d3e203537383730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:df86::/32
Signature Algorithm: sha256WithRSAEncryption
c8:f4:99:87:0c:25:b7:67:66:7d:52:47:7a:d3:a1:54:77:f4:
55:f8:41:24:4b:4f:20:10:89:ee:ef:86:22:37:b3:f6:23:3f:
bc:9c:c2:51:c6:7b:8e:95:ba:04:9e:90:d4:78:f9:40:7b:96:
b6:7a:1f:89:2c:ad:8e:28:19:96:f3:32:27:33:cd:a2:5f:bc:
5b:73:68:c0:39:f3:05:90:ea:95:a6:a9:db:05:35:1b:8c:52:
cd:2e:f1:a1:05:c1:96:9b:0b:ea:bf:99:95:d7:6e:38:b9:db:
88:19:1b:72:20:6c:7e:e3:04:d5:ea:58:23:39:00:bf:cc:50:
fc:a3:1d:7a:b4:96:f5:a7:9f:62:99:70:0b:7a:93:8d:89:3a:
21:2d:07:5b:f9:30:dc:a4:0a:45:d1:c2:f5:93:85:6c:e4:9b:
14:a6:b9:12:fd:81:03:24:06:19:75:d3:b0:a9:03:c6:5c:4d:
d5:6d:8e:15:6a:a1:64:5f:75:4f:36:c1:3f:0e:fb:0f:7f:83:
fd:81:a6:2a:23:0a:4f:28:8a:ee:b3:4a:6c:4f:34:09:06:60:
8a:dd:d5:42:b4:5c:90:57:1f:9c:e5:9a:3d:01:f8:a1:7d:bd:
79:4d:ca:c0:5c:ab:26:b7:02:28:34:c3:a4:e1:69:cf:94:40:
89:6e:4f:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:53 2024 by rpki-client on console-ams.rpki-client.org