Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638363a623030623a3a2f34382d3438203d3e203537383730.roa
File: 326131333a646638363a623030623a3a2f34382d3438203d3e203537383730.roa (raw, json)
Hash identifier: d4IkpRM9oo3pmN4J5J12Na0d21JeCVcBl5k95Wvnr5Q=
Subject key identifier: 72:4E:74:27:EE:1F:7F:EA:EA:93:33:59:9E:01:91:14:46:7E:D8:87
Certificate issuer: /CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Certificate serial: 6369FD7DEDBB221F08634F7CC7284FAA433C2D33
Authority key identifier: D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638363a623030623a3a2f34382d3438203d3e203537383730.roa
Signing time: Fri 16 Jun 2023 20:08:43 +0000
ROA not before: Fri 16 Jun 2023 20:03:43 +0000
ROA not after: Fri 14 Jun 2024 20:08:43 +0000
asID: 57870
IP address blocks: 2a13:df86:b00b::/48 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:69:fd:7d:ed:bb:22:1f:08:63:4f:7c:c7:28:4f:aa:43:3c:2d:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Validity
Not Before: Jun 16 20:03:43 2023 GMT
Not After : Jun 14 20:08:43 2024 GMT
Subject: CN=724E7427EE1F7FEAEA9333599E019114467ED887
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:08:dc:27:86:2b:89:33:f9:6d:fa:9c:dc:bf:
1c:f1:9b:fa:0d:6d:82:4e:db:b9:64:98:cf:c6:89:
7e:8d:5e:99:0f:05:e8:c9:4c:67:5d:71:07:d6:cb:
df:02:17:db:5f:74:d5:52:6a:f8:a5:cb:7a:4c:e7:
58:62:c3:2f:38:21:b9:38:52:5e:44:81:e5:fe:f6:
e7:d5:1f:6a:c4:30:6c:b9:59:8c:fe:04:28:9c:b4:
e0:58:23:34:17:4b:45:97:e0:bf:06:23:6c:ef:ef:
42:c9:2e:91:50:59:38:9e:d3:58:f2:f0:0b:2d:f4:
f6:13:59:4d:d4:89:3d:55:c2:97:49:8e:de:ff:e2:
99:a0:6e:6f:01:d1:31:f9:33:0a:6d:97:b2:14:4d:
f5:50:48:b5:4f:59:46:00:02:d0:54:59:ba:86:a2:
fd:ec:51:70:72:d7:36:7a:8b:f4:1e:7d:4b:4b:68:
11:67:c1:d7:46:31:f6:95:80:21:be:0f:2f:6d:35:
e6:7d:49:7e:bf:ef:68:4c:2d:6d:b7:29:61:bc:82:
3d:83:c7:56:22:25:4c:17:65:a2:00:28:76:7f:d0:
cf:95:4c:51:88:6a:d2:dc:f7:ee:05:4b:77:8b:b8:
52:5c:48:4d:84:b2:52:20:71:15:60:4c:d2:48:1a:
f4:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:4E:74:27:EE:1F:7F:EA:EA:93:33:59:9E:01:91:14:46:7E:D8:87
X509v3 Authority Key Identifier:
keyid:D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/D5C3D5E70FC9AD10BA90D45DC66454E9E3A146A8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638363a623030623a3a2f34382d3438203d3e203537383730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:df86:b00b::/48
Signature Algorithm: sha256WithRSAEncryption
62:4e:0c:84:9d:49:e1:8f:e0:c6:1f:c0:bd:a3:10:f2:67:0c:
70:bb:da:9e:ff:66:c8:4b:a5:f1:a9:fd:41:ca:32:46:dd:c4:
ab:8f:1d:f8:df:33:05:a6:9a:68:6b:db:86:74:d4:e3:54:63:
73:e5:42:04:43:77:bc:4d:61:df:e1:14:09:fe:7a:9b:63:ae:
94:3a:ff:64:0c:98:9f:88:bc:87:b2:ca:e1:d2:8e:42:c7:e2:
f7:03:43:8f:e1:39:12:06:73:64:70:e7:ec:4a:92:ea:10:5d:
26:35:9d:45:7f:4f:66:47:00:c1:a2:bf:49:73:c7:2c:c5:3f:
78:24:45:f8:26:7f:7c:c3:96:4b:20:14:38:36:9d:00:c5:12:
6d:85:00:f6:75:e7:cb:1a:b2:8d:0f:0b:36:40:58:13:9c:c0:
7a:48:09:0e:2f:1f:54:18:f6:85:f2:64:88:71:6e:a6:da:ce:
9b:ce:1f:7c:af:2b:0d:b9:aa:b3:d0:68:16:f5:73:b3:6e:f8:
fb:45:e0:28:5a:af:19:40:10:47:7f:07:08:cd:25:f4:1d:af:
33:73:d9:d0:36:45:6e:e4:43:28:0b:8b:e2:a0:cd:57:2e:25:
7f:9a:08:5a:d2:e2:71:09:f6:82:48:ad:84:f0:b8:c1:fb:98:
b1:5e:6a:76
-----BEGIN CERTIFICATE-----
MIIFPjCCBCagAwIBAgIUY2n9fe27Ih8IY098xyhPqkM8LTMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZDVjM2Q1ZTcwZmM5YWQxMGJhOTBkNDVkYzY2NDU0ZTll
M2ExNDZhODAeFw0yMzA2MTYyMDAzNDNaFw0yNDA2MTQyMDA4NDNaMDMxMTAvBgNV
BAMTKDcyNEU3NDI3RUUxRjdGRUFFQTkzMzM1OTlFMDE5MTE0NDY3RUQ4ODcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDCNwnhiuJM/lt+pzcvxzxm/oN
bYJO27lkmM/GiX6NXpkPBejJTGddcQfWy98CF9tfdNVSavily3pM51hiwy84Ibk4
Ul5EgeX+9ufVH2rEMGy5WYz+BCictOBYIzQXS0WX4L8GI2zv70LJLpFQWTie01jy
8Ast9PYTWU3UiT1VwpdJjt7/4pmgbm8B0TH5Mwptl7IUTfVQSLVPWUYAAtBUWbqG
ov3sUXBy1zZ6i/QefUtLaBFnwddGMfaVgCG+Dy9tNeZ9SX6/72hMLW23KWG8gj2D
x1YiJUwXZaIAKHZ/0M+VTFGIatLc9+4FS3eLuFJcSE2EslIgcRVgTNJIGvQZAgMB
AAGjggJIMIICRDAdBgNVHQ4EFgQUck50J+4ff+rqkzNZngGRFEZ+2IcwHwYDVR0j
BBgwFoAU1cPV5w/JrRC6kNRdxmRU6eOhRqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMDQwMzJjOGYtMWQ1Ny00YzNiLTkwNDMtYTBlN2ZlYmYx
NjdkLzAvRDVDM0Q1RTcwRkM5QUQxMEJBOTBENDVEQzY2NDU0RTlFM0ExNDZBOC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzFjUFY1d19KclJDNmtOUmR4bVJVNmVP
aFJxZy5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMDQwMzJjOGYt
MWQ1Ny00YzNiLTkwNDMtYTBlN2ZlYmYxNjdkLzAvMzI2MTMxMzMzYTY0NjYzODM2
M2E2MjMwMzA2MjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzczODM3MzAucm9h
MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8E
AgACMAkDBwAqE9+GsAswDQYJKoZIhvcNAQELBQADggEBAGJODISdSeGP4MYfwL2j
EPJnDHC72p7/ZshLpfGp/UHKMkbdxKuPHfjfMwWmmmhr24Z01ONUY3PlQgRDd7xN
Yd/hFAn+eptjrpQ6/2QMmJ+IvIeyyuHSjkLH4vcDQ4/hORIGc2Rw5+xKkuoQXSY1
nUV/T2ZHAMGiv0lzxyzFP3gkRfgmf3zDlksgFDg2nQDFEm2FAPZ158saso0PCzZA
WBOcwHpICQ4vH1QY9oXyZIhxbqbazpvOH3yvKw25qrPQaBb1c7Nu+PtF4CharxlA
EEd/BwjNJfQdrzNz2dA2RW7kQygLi+KgzVcuJX+aCFrS4nEJ9oJIrYTwuMH7mLFe
anY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:53 2024 by rpki-client on console-ams.rpki-client.org