Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/AS215967.roa
File: AS215967.roa (raw, json)
Hash identifier: 3NM0RHZbuBC/VOu+6pvLmGo4dICQ0yrDknu20TEVXDo=
Subject key identifier: 3E:E3:22:16:79:FF:7D:A2:F6:DF:6F:5E:F7:27:48:19:FB:AE:FC:1A
Certificate issuer: /CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Certificate serial: 4B04EED6F65C4C42DAC0775F5421D5981AC3DBBD
Authority key identifier: D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/AS215967.roa
Signing time: Wed 20 Dec 2023 16:22:23 +0000
ROA not before: Wed 20 Dec 2023 16:17:23 +0000
ROA not after: Wed 18 Dec 2024 16:22:23 +0000
asID: 215967
IP address blocks: 2a13:df80:6810::/48 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:04:ee:d6:f6:5c:4c:42:da:c0:77:5f:54:21:d5:98:1a:c3:db:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Validity
Not Before: Dec 20 16:17:23 2023 GMT
Not After : Dec 18 16:22:23 2024 GMT
Subject: CN=3EE3221679FF7DA2F6DF6F5EF7274819FBAEFC1A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:66:f7:76:ee:e0:34:95:8d:08:07:ab:32:b1:
ed:96:15:5d:e6:5d:e1:6a:6e:71:b7:9d:9f:0e:fd:
67:e0:46:1f:71:68:a8:d8:86:0f:0a:36:fd:ef:0b:
a4:25:dc:a3:5f:bd:a3:cc:e3:1b:21:0c:92:47:ab:
f6:35:7d:3f:0d:2b:9e:b1:02:99:96:02:84:26:fa:
fb:86:c9:4e:25:46:1b:e2:d9:3c:9d:a6:67:c6:a5:
91:cd:cb:f5:38:25:24:2c:32:ca:f4:42:75:84:06:
a7:f9:3a:56:ba:26:d3:34:a5:fb:ba:3c:13:32:f4:
94:ee:76:55:6a:a6:08:13:74:9a:62:77:f3:54:2f:
c7:33:e1:0d:a2:6c:fb:75:5a:9d:5d:56:21:9a:a5:
6d:aa:e6:58:ac:5a:7d:48:69:2a:fd:12:ff:86:fd:
b6:5f:67:8c:68:e3:19:d0:ac:4b:f1:09:a8:bd:bf:
3d:1f:78:87:08:cb:c3:70:84:f3:ad:eb:cc:aa:c1:
89:5e:c6:f9:c3:f2:61:17:48:a8:39:4d:74:53:da:
d9:83:d6:62:41:8e:1a:99:ec:20:f2:2c:7f:bc:51:
69:ae:fe:68:ea:18:9f:5c:bf:da:ef:31:a2:c5:70:
dc:78:94:6e:39:c8:be:f2:53:bb:13:6e:f4:18:eb:
a2:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:E3:22:16:79:FF:7D:A2:F6:DF:6F:5E:F7:27:48:19:FB:AE:FC:1A
X509v3 Authority Key Identifier:
keyid:D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/D5C3D5E70FC9AD10BA90D45DC66454E9E3A146A8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/AS215967.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:df80:6810::/48
Signature Algorithm: sha256WithRSAEncryption
55:43:72:49:c2:03:b9:a6:e9:e3:4c:42:a2:ec:75:76:e7:b2:
34:f6:6a:1f:6e:d7:db:04:8e:06:f4:9c:c5:fc:89:46:f7:61:
b7:d9:71:e1:57:a1:bc:49:52:74:b3:0a:fe:33:94:d6:46:c8:
c8:b4:19:06:22:ac:ec:fa:7b:78:51:d5:07:6b:74:d1:62:ff:
64:a3:dd:18:4b:da:4e:81:62:c4:fd:0c:5e:05:60:bc:9b:a8:
e4:a0:14:ce:3c:6c:8f:8d:ea:7d:4f:3b:88:d1:7d:cf:3c:65:
38:49:40:26:bf:9f:31:f9:14:db:25:08:3f:4e:ac:92:d8:37:
4f:6f:11:be:67:47:60:9c:72:e6:1b:f1:4e:48:ed:c2:bb:d3:
db:66:8c:e8:76:86:6b:ce:a9:96:44:94:50:16:0b:15:fb:93:
48:79:2b:02:0c:34:82:c9:5e:13:c6:6d:11:bc:44:59:3e:d2:
67:c8:f5:8c:9a:6e:3e:8f:c0:e2:11:c9:ed:95:01:03:fb:71:
e9:66:ab:59:bb:a5:89:90:db:c8:00:f8:59:1e:35:a2:48:4b:
a4:10:ff:83:54:4b:82:37:2f:88:7a:13:97:54:87:9f:74:95:
e9:e0:4f:63:64:60:57:f4:10:c9:70:e2:ec:bc:01:b4:af:60:
8d:4a:ef:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:08 2024 by rpki-client on console-fra.rpki-client.org