Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638373a313030303a3a2f33362d3438203d3e203630393030.roa
File: 326131333a646638373a313030303a3a2f33362d3438203d3e203630393030.roa (raw, json)
Hash identifier: WVtKv0YB4TL5zNCZTYsaQZ6KdfHi++7As/A3HZvf1Z8=
Subject key identifier: A8:25:CA:61:02:DA:04:AF:4B:32:D5:57:2F:B5:0D:CC:37:9E:53:AB
Certificate issuer: /CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Certificate serial: 250E0E3DD449735BBA0D91311067D1EE9F88EDE6
Authority key identifier: D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638373a313030303a3a2f33362d3438203d3e203630393030.roa
Signing time: Mon 17 Jul 2023 13:58:28 +0000
ROA not before: Mon 17 Jul 2023 13:53:28 +0000
ROA not after: Mon 15 Jul 2024 13:58:28 +0000
asID: 60900
IP address blocks: 2a13:df87:1000::/36 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:0e:0e:3d:d4:49:73:5b:ba:0d:91:31:10:67:d1:ee:9f:88:ed:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Validity
Not Before: Jul 17 13:53:28 2023 GMT
Not After : Jul 15 13:58:28 2024 GMT
Subject: CN=A825CA6102DA04AF4B32D5572FB50DCC379E53AB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:53:80:ac:b5:cb:3a:64:09:5b:b5:3d:95:80:
29:ab:68:60:0c:c5:05:3d:2f:c9:66:41:34:fe:b4:
d8:b4:98:f1:3b:4e:0c:6d:01:57:d8:62:b0:1b:3c:
bf:5b:80:36:8c:02:93:8f:10:40:2c:c2:ce:3b:04:
86:71:a6:df:4f:4a:d2:95:bd:4c:b8:93:07:91:7e:
cf:05:83:db:50:8a:4d:e6:88:bf:d1:e2:9b:24:68:
56:61:4a:fa:65:f0:e2:14:ae:60:5c:d5:38:8f:f6:
fe:51:93:66:c0:5d:ae:2a:ee:49:43:37:0e:31:8d:
26:35:07:76:df:a6:74:6c:98:1d:56:69:62:b7:ff:
a3:d9:45:eb:32:ef:2a:dc:3b:1e:3f:11:8c:ca:6c:
37:96:53:02:0c:80:d8:e0:09:b1:89:8d:6f:00:81:
00:56:8c:04:38:06:3b:03:05:16:20:e6:bf:bf:01:
a5:87:0b:27:29:9e:46:47:9e:80:b4:63:f9:af:ba:
0e:b5:8e:b0:cd:4f:3e:2c:83:5a:02:29:89:06:35:
7a:4b:21:bc:d0:38:f1:25:05:cd:c4:b8:02:fa:80:
01:cb:d3:01:97:1e:c4:81:30:5c:ea:26:21:b1:bd:
bf:de:7b:c0:79:58:39:ff:fb:4f:37:1e:c0:d8:c2:
02:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:25:CA:61:02:DA:04:AF:4B:32:D5:57:2F:B5:0D:CC:37:9E:53:AB
X509v3 Authority Key Identifier:
keyid:D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/D5C3D5E70FC9AD10BA90D45DC66454E9E3A146A8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638373a313030303a3a2f33362d3438203d3e203630393030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:df87:1000::/36
Signature Algorithm: sha256WithRSAEncryption
19:9b:67:70:7d:db:b6:cc:0b:aa:28:e7:a0:80:8a:cf:96:14:
48:fe:30:f6:dc:a3:ce:45:91:2f:ef:4a:f0:51:92:75:7b:c2:
e9:2a:e8:ec:0c:1f:1f:b8:29:bc:99:d3:6d:3b:cd:28:d2:80:
43:87:2d:10:08:ab:0f:72:4f:ee:d8:f5:c3:4d:ab:62:8b:84:
80:df:97:32:09:aa:a4:53:98:d8:f9:38:be:c8:6b:a1:ae:c5:
b5:b1:44:2d:44:19:f1:c4:9a:c2:92:ce:1b:a2:89:50:33:78:
ee:ee:4c:9b:c0:09:c1:9b:4b:f7:b5:12:bc:e7:a4:0c:b2:6c:
e4:43:0e:0f:dd:7c:74:c1:84:3a:a0:45:8f:c6:c7:60:95:55:
e1:d2:d3:1f:e5:c8:df:52:5d:da:07:64:20:ce:fe:21:b0:46:
c3:49:4c:56:ec:77:38:39:35:b1:a7:78:2a:20:71:1b:68:2a:
3b:c1:05:09:b7:1a:4d:35:6d:ac:1c:6d:ee:e2:fc:70:e3:1d:
41:13:ef:59:e9:4b:7c:84:9c:6e:ce:de:0e:df:c5:01:cc:44:
0d:b8:f0:fa:cd:1f:3b:30:7d:bc:22:22:d1:ba:2d:1c:1b:b8:
82:c2:dd:e9:0d:95:e6:3c:52:a0:c6:25:c5:d2:d9:da:25:58:
a6:db:bf:c6
-----BEGIN CERTIFICATE-----
MIIFPTCCBCWgAwIBAgIUJQ4OPdRJc1u6DZExEGfR7p+I7eYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZDVjM2Q1ZTcwZmM5YWQxMGJhOTBkNDVkYzY2NDU0ZTll
M2ExNDZhODAeFw0yMzA3MTcxMzUzMjhaFw0yNDA3MTUxMzU4MjhaMDMxMTAvBgNV
BAMTKEE4MjVDQTYxMDJEQTA0QUY0QjMyRDU1NzJGQjUwRENDMzc5RTUzQUIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfU4Cstcs6ZAlbtT2VgCmraGAM
xQU9L8lmQTT+tNi0mPE7TgxtAVfYYrAbPL9bgDaMApOPEEAsws47BIZxpt9PStKV
vUy4kweRfs8Fg9tQik3miL/R4pskaFZhSvpl8OIUrmBc1TiP9v5Rk2bAXa4q7klD
Nw4xjSY1B3bfpnRsmB1WaWK3/6PZResy7yrcOx4/EYzKbDeWUwIMgNjgCbGJjW8A
gQBWjAQ4BjsDBRYg5r+/AaWHCycpnkZHnoC0Y/mvug61jrDNTz4sg1oCKYkGNXpL
IbzQOPElBc3EuAL6gAHL0wGXHsSBMFzqJiGxvb/ee8B5WDn/+083HsDYwgKfAgMB
AAGjggJHMIICQzAdBgNVHQ4EFgQUqCXKYQLaBK9LMtVXL7UNzDeeU6swHwYDVR0j
BBgwFoAU1cPV5w/JrRC6kNRdxmRU6eOhRqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMDQwMzJjOGYtMWQ1Ny00YzNiLTkwNDMtYTBlN2ZlYmYx
NjdkLzAvRDVDM0Q1RTcwRkM5QUQxMEJBOTBENDVEQzY2NDU0RTlFM0ExNDZBOC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzFjUFY1d19KclJDNmtOUmR4bVJVNmVP
aFJxZy5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMDQwMzJjOGYt
MWQ1Ny00YzNiLTkwNDMtYTBlN2ZlYmYxNjdkLzAvMzI2MTMxMzMzYTY0NjYzODM3
M2EzMTMwMzAzMDNhM2EyZjMzMzYyZDM0MzgyMDNkM2UyMDM2MzAzOTMwMzAucm9h
MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4E
AgACMAgDBgQqE9+HEDANBgkqhkiG9w0BAQsFAAOCAQEAGZtncH3btswLqijnoICK
z5YUSP4w9tyjzkWRL+9K8FGSdXvC6Sro7AwfH7gpvJnTbTvNKNKAQ4ctEAirD3JP
7tj1w02rYouEgN+XMgmqpFOY2Pk4vshroa7FtbFELUQZ8cSawpLOG6KJUDN47u5M
m8AJwZtL97USvOekDLJs5EMOD918dMGEOqBFj8bHYJVV4dLTH+XI31Jd2gdkIM7+
IbBGw0lMVux3ODk1sad4KiBxG2gqO8EFCbcaTTVtrBxt7uL8cOMdQRPvWelLfISc
bs7eDt/FAcxEDbjw+s0fOzB9vCIi0botHBu4gsLd6Q2V5jxSoMYlxdLZ2iVYptu/
xg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:08 2024 by rpki-client on console-fra.rpki-client.org