Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/AS212716.roa
File: AS212716.roa (raw, json)
Hash identifier: u7W9gkpaQwlX4K+o+Fh8hcCkCHF2yzl1Oty0QwSN2q4=
Subject key identifier: 5D:58:49:BB:48:16:B5:23:D2:D7:41:32:CE:76:BA:5A:EC:C4:65:30
Certificate issuer: /CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Certificate serial: 05BD933A481692AD5AB9750D1F161792982F6645
Authority key identifier: D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/AS212716.roa
Signing time: Wed 20 Dec 2023 16:21:31 +0000
ROA not before: Wed 20 Dec 2023 16:16:31 +0000
ROA not after: Wed 18 Dec 2024 16:21:31 +0000
asID: 212716
IP address blocks: 2a13:df80:54::/48 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:bd:93:3a:48:16:92:ad:5a:b9:75:0d:1f:16:17:92:98:2f:66:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Validity
Not Before: Dec 20 16:16:31 2023 GMT
Not After : Dec 18 16:21:31 2024 GMT
Subject: CN=5D5849BB4816B523D2D74132CE76BA5AECC46530
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:9d:f6:e0:24:7c:08:0d:1d:a8:5f:45:42:9c:
1a:e3:20:26:5c:58:85:06:2f:60:94:ca:a4:6e:c5:
a5:25:d5:07:e3:04:4f:be:7c:dd:08:f8:35:8b:41:
6e:e4:c7:7f:25:d3:47:82:77:d8:c9:fc:b9:78:31:
61:ac:e9:87:55:1c:22:c1:6d:42:c1:92:10:f7:5e:
68:38:62:43:ae:c3:ca:35:3c:1f:98:4c:31:34:c5:
35:16:3e:b4:77:22:4a:2f:9e:86:f6:4a:45:94:7a:
82:d1:15:19:3a:ad:07:c1:55:29:7e:86:1d:bc:97:
75:69:0a:7d:f9:f9:98:fc:9e:2f:c0:ec:8d:12:ed:
3f:73:49:e0:dd:59:f6:b7:29:06:0e:df:84:ac:27:
e5:a4:5b:a4:a9:41:91:91:39:32:7e:08:a7:cb:48:
fb:a3:d0:77:3c:42:36:1a:71:42:af:16:00:5c:89:
8b:ab:53:31:31:74:ce:13:56:9e:db:1c:fe:cf:f5:
f6:87:72:2d:98:9e:5e:72:25:b0:5a:f0:85:56:78:
6e:f7:36:50:71:eb:fc:84:59:ee:36:5f:3b:73:9b:
13:81:4b:e2:2f:3a:12:41:47:da:43:58:de:8a:af:
82:06:fa:06:a6:37:38:84:3d:cd:87:4e:ca:10:9a:
a5:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:58:49:BB:48:16:B5:23:D2:D7:41:32:CE:76:BA:5A:EC:C4:65:30
X509v3 Authority Key Identifier:
keyid:D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/D5C3D5E70FC9AD10BA90D45DC66454E9E3A146A8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/AS212716.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:df80:54::/48
Signature Algorithm: sha256WithRSAEncryption
9c:cd:49:40:fc:a1:6d:b5:c0:93:c6:aa:ce:3b:0a:65:df:b0:
4a:a7:ef:34:75:9d:5d:60:f6:4e:81:8b:d7:d8:94:37:a1:d2:
f8:26:69:01:32:32:29:34:b6:10:f8:7e:8a:2b:5f:a4:86:a5:
06:ff:ae:d9:40:32:10:b8:6d:02:37:84:48:db:9d:be:82:79:
ca:ba:4f:aa:1e:2e:d1:fb:b4:69:1c:0f:5f:d5:cb:a3:9b:25:
bd:8c:3a:97:3f:96:ae:98:98:7a:3f:60:75:61:b9:73:06:1d:
6f:34:a8:09:1c:cc:ea:30:28:57:f0:2e:73:0f:a1:d6:54:f7:
b2:73:70:6e:d8:0d:24:6d:3e:3f:b1:32:13:c6:aa:a8:07:dc:
ad:00:19:c4:63:d9:49:86:2f:2a:93:5e:12:c8:10:86:14:db:
91:4a:7b:41:82:d9:ed:f1:1e:b3:8b:99:d1:2b:c8:9a:dc:5d:
8a:e9:a3:7f:b5:3b:74:f7:58:61:9e:64:3c:a1:89:fc:44:5a:
5b:68:de:1f:c5:ab:1c:2e:75:64:1c:8a:19:bb:bc:4a:b4:1e:
11:ee:b6:c2:33:d8:aa:22:10:08:d5:dd:63:98:b1:f0:65:43:
ca:1f:29:f5:3d:46:42:94:41:06:c1:e8:2a:b5:81:eb:3e:2d:
2e:d1:84:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:53 2024 by rpki-client on console-ams.rpki-client.org