Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638373a323030303a3a2f33362d3336203d3e203630383538.roa
File: 326131333a646638373a323030303a3a2f33362d3336203d3e203630383538.roa (raw, json)
Hash identifier: +phB9A6X0jkLEsplCTBrWsPY0r70vhwRx2doC2u3qMg=
Subject key identifier: EA:E3:22:D0:DD:8F:7E:59:E7:D9:33:E2:1F:38:A5:64:BD:A8:41:9A
Certificate issuer: /CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Certificate serial: 0D9C3BECE0DEA17C736ECD37C6C634FD3CC0C068
Authority key identifier: D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638373a323030303a3a2f33362d3336203d3e203630383538.roa
Signing time: Mon 17 Jul 2023 15:56:12 +0000
ROA not before: Mon 17 Jul 2023 15:51:12 +0000
ROA not after: Mon 15 Jul 2024 15:56:12 +0000
asID: 60858
IP address blocks: 2a13:df87:2000::/36 maxlen: 36
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:9c:3b:ec:e0:de:a1:7c:73:6e:cd:37:c6:c6:34:fd:3c:c0:c0:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Validity
Not Before: Jul 17 15:51:12 2023 GMT
Not After : Jul 15 15:56:12 2024 GMT
Subject: CN=EAE322D0DD8F7E59E7D933E21F38A564BDA8419A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:46:3f:77:cd:0c:7d:f0:49:7e:64:39:b9:9b:
5e:35:a5:bc:b2:79:31:d3:6d:e9:1d:0e:b8:b8:1a:
6f:65:f4:f3:4b:ed:56:e7:05:e2:a5:7e:92:63:8a:
65:2c:5e:4d:0a:5b:80:c1:8c:34:02:a9:c3:47:64:
00:a4:02:9d:e2:12:d2:16:10:85:68:fd:d5:a4:45:
c7:de:af:d1:2d:12:df:b5:16:94:b1:48:c2:1c:a0:
eb:cb:6d:fe:e7:73:84:af:f3:15:6c:e9:31:3c:ad:
f4:9a:6a:22:38:14:4e:35:63:86:5e:50:2e:0b:25:
b5:1d:1e:5e:7a:31:a8:d8:7a:64:1b:43:3b:ba:b7:
5d:8f:88:27:5c:f5:a6:75:92:79:0f:0b:5a:f4:71:
5d:38:d5:62:c6:c7:34:04:28:8a:cf:96:84:f8:36:
1d:be:22:f2:fe:9b:d5:f8:ab:d0:48:b5:e2:ed:a4:
76:6a:20:76:5b:5a:42:97:76:27:65:2a:51:5f:e1:
63:28:ed:26:af:da:3a:d9:1a:32:bc:16:5e:0b:ea:
e9:79:91:b0:b2:9f:55:31:02:0e:4a:53:0a:47:33:
79:f0:ff:47:82:fb:b8:48:5d:c3:fc:ee:b9:45:ec:
bb:dd:7a:6e:ab:94:64:83:53:94:6c:45:2f:95:a7:
eb:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:E3:22:D0:DD:8F:7E:59:E7:D9:33:E2:1F:38:A5:64:BD:A8:41:9A
X509v3 Authority Key Identifier:
keyid:D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/D5C3D5E70FC9AD10BA90D45DC66454E9E3A146A8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638373a323030303a3a2f33362d3336203d3e203630383538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:df87:2000::/36
Signature Algorithm: sha256WithRSAEncryption
95:3d:12:a4:18:59:85:79:28:61:94:5f:95:f2:63:ed:1a:6a:
3e:ad:36:37:08:9a:b2:f2:cc:6b:a1:37:33:e8:00:3d:ed:98:
da:da:6d:96:88:1b:9c:e3:f8:84:f3:72:a9:0d:2d:4d:e6:aa:
f9:02:7e:53:3e:92:eb:84:48:c1:bf:a3:bc:61:30:52:68:8e:
bb:11:b1:d7:de:42:c2:43:c7:b6:49:ba:52:b1:88:a3:98:5e:
f7:99:c5:0e:08:a1:0d:c9:12:e5:3f:4e:44:7c:e9:2c:a5:0c:
c1:3b:b9:a8:11:63:6d:b8:cc:8f:b9:c7:4d:db:e2:81:3b:52:
2c:5d:b3:87:91:23:a6:c0:b2:f9:b8:42:c9:83:92:6e:e0:0e:
be:a2:d9:a8:39:77:64:bd:77:55:71:87:e1:79:bd:2f:e8:e5:
60:da:bc:77:87:29:e6:04:9d:6b:d5:5e:db:69:b6:06:0b:ce:
d0:89:da:e2:be:70:1c:ac:26:3a:b7:8a:18:b0:9e:38:55:ba:
8c:28:14:4f:8f:19:1b:c9:88:9b:d6:e0:bb:6e:a8:8a:48:52:
8f:ea:c7:28:a1:ef:3e:3a:b9:c3:ed:54:ab:7e:03:41:b5:9b:
c0:e2:3d:50:bc:70:65:7b:f2:40:13:42:be:0c:c7:19:da:ef:
8d:b3:64:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:53 2024 by rpki-client on console-ams.rpki-client.org