Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638373a3a2f33322d3332203d3e203537383730.roa
File: 326131333a646638373a3a2f33322d3332203d3e203537383730.roa (raw, json)
Hash identifier: Oiz+tNm4HPy3zbsKSvZ67zyJV6mhajC/zS01yZthq+U=
Subject key identifier: AC:B7:F6:FA:B0:CE:BB:67:39:61:DD:28:98:63:07:BC:46:A9:76:72
Certificate issuer: /CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Certificate serial: 69A69EDC768E415DEA25FE639C19650A957BB420
Authority key identifier: D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638373a3a2f33322d3332203d3e203537383730.roa
Signing time: Mon 17 Jul 2023 15:56:01 +0000
ROA not before: Mon 17 Jul 2023 15:51:01 +0000
ROA not after: Mon 15 Jul 2024 15:56:01 +0000
asID: 57870
IP address blocks: 2a13:df87::/32 maxlen: 32
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:a6:9e:dc:76:8e:41:5d:ea:25:fe:63:9c:19:65:0a:95:7b:b4:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Validity
Not Before: Jul 17 15:51:01 2023 GMT
Not After : Jul 15 15:56:01 2024 GMT
Subject: CN=ACB7F6FAB0CEBB673961DD28986307BC46A97672
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:13:5c:25:46:3d:37:3f:90:bd:6a:11:62:1e:
26:fd:bd:36:7f:17:1a:ea:5a:23:81:52:7a:db:e5:
24:25:31:19:d9:65:96:16:f6:30:b0:e2:41:ff:21:
f1:02:75:ee:24:59:2a:a0:c2:77:4e:9c:22:69:e5:
1b:31:13:15:70:fb:0e:f3:b6:04:7a:9b:25:7f:45:
d6:c3:c9:c7:23:e9:ef:28:04:67:c8:58:cb:aa:b5:
36:68:4b:10:69:56:92:1a:fd:0a:db:8e:c3:ce:81:
80:47:b1:b3:63:64:b2:26:5a:2f:e2:c7:16:1f:82:
bf:6d:90:e2:1d:86:91:66:0c:bc:e4:38:f5:1f:c8:
e9:3f:1c:d6:ea:ed:37:c1:a2:60:3b:c4:40:83:20:
c1:c8:19:49:d2:d4:df:1f:1c:cf:b4:95:a2:f5:88:
95:fc:fc:1f:a6:02:7b:a8:d1:92:b6:2d:0a:b1:63:
06:c5:f8:aa:e1:8d:eb:b0:a8:de:e1:c0:46:62:09:
b0:03:27:0e:7b:56:5b:53:bd:d2:69:66:47:79:9e:
14:33:b7:fd:37:1b:6b:00:57:05:b0:23:3e:55:e5:
91:b3:d5:04:05:23:71:91:75:6e:4b:25:14:9c:3d:
b5:58:2b:3e:a8:a2:c1:84:bd:18:49:6f:41:d3:12:
bf:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:B7:F6:FA:B0:CE:BB:67:39:61:DD:28:98:63:07:BC:46:A9:76:72
X509v3 Authority Key Identifier:
keyid:D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/D5C3D5E70FC9AD10BA90D45DC66454E9E3A146A8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638373a3a2f33322d3332203d3e203537383730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:df87::/32
Signature Algorithm: sha256WithRSAEncryption
bc:f8:7e:ea:6a:69:53:03:b8:d4:6c:7b:91:18:b8:f5:58:1d:
d7:f9:b0:11:99:a4:9d:39:5b:77:1d:f6:67:41:1f:ac:61:30:
ff:df:bc:cb:4e:fb:e1:a0:74:ff:27:c3:06:9c:45:37:13:4d:
8a:7d:8e:d7:84:3c:47:a5:d2:92:cd:ca:3c:17:0c:2b:cf:88:
57:66:e6:66:b7:56:6e:fb:bc:44:62:81:ee:8c:e1:2a:89:69:
cc:c8:1c:88:41:37:a5:2e:49:81:da:6e:ca:f0:d7:36:fa:87:
89:b7:94:b1:98:97:2c:e6:94:4c:fe:96:8b:24:50:af:4c:37:
9c:dc:3c:b1:85:be:45:b5:46:5f:96:85:6c:c1:8f:79:4c:a7:
cd:8e:b9:73:94:ca:b0:2f:59:0b:5f:3d:0a:1a:67:25:83:7f:
5f:70:d4:06:f2:72:51:c6:53:d2:81:a5:1f:62:77:60:26:f5:
61:c8:09:11:f0:5c:92:97:26:60:a9:cb:70:d7:22:90:fc:c5:
91:2f:e2:8c:b3:36:4c:f8:1c:f4:e0:bb:38:4f:02:85:31:86:
75:22:e8:3c:0f:84:ff:ef:81:d5:67:55:ff:1e:c2:25:b1:4c:
3e:49:73:1c:5b:51:c4:e0:e9:a3:be:27:f1:c7:0d:7a:be:c7:
46:e8:a3:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:53 2024 by rpki-client on console-ams.rpki-client.org