Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638303a63303a3a2f34342d3438203d3e20313938353835.roa
File: 326131333a646638303a63303a3a2f34342d3438203d3e20313938353835.roa (raw, json)
Hash identifier: jAsPxlHmyP0VuQCp1aXtNkS5DI5wac93IT6IPs74IwY=
Subject key identifier: BD:70:84:CF:E8:20:0A:77:49:4B:2C:1B:98:8B:A5:93:CF:AD:90:A5
Certificate issuer: /CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Certificate serial: 1A6EFCAD5C97EFDD5C515A3227F2D3E8E971B681
Authority key identifier: D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638303a63303a3a2f34342d3438203d3e20313938353835.roa
Signing time: Thu 16 Nov 2023 17:28:53 +0000
ROA not before: Thu 16 Nov 2023 17:23:53 +0000
ROA not after: Thu 14 Nov 2024 17:28:53 +0000
asID: 198585
IP address blocks: 2a13:df80:c0::/44 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:6e:fc:ad:5c:97:ef:dd:5c:51:5a:32:27:f2:d3:e8:e9:71:b6:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Validity
Not Before: Nov 16 17:23:53 2023 GMT
Not After : Nov 14 17:28:53 2024 GMT
Subject: CN=BD7084CFE8200A77494B2C1B988BA593CFAD90A5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:5b:57:64:3c:18:ea:e0:70:63:d2:22:bc:8e:
d7:18:db:86:79:bc:01:81:f7:10:44:87:e4:3b:92:
8d:ee:7b:94:bf:99:2c:bc:93:90:74:85:47:2f:b8:
3f:af:89:ab:fe:4f:be:bb:b5:23:d0:95:dd:f5:9c:
44:79:94:0e:26:58:9e:71:55:96:e6:bf:7a:37:74:
b8:04:35:90:18:0c:2a:62:70:d6:06:fb:7f:8f:31:
3e:12:18:de:71:6e:f2:ed:1d:58:c2:cf:43:0e:37:
5e:6b:8c:89:67:19:46:b3:cb:e5:2d:ea:aa:bf:a5:
7b:25:db:78:89:19:81:69:b9:f3:d8:d4:95:5b:f6:
92:d5:d8:ba:3f:d5:10:29:e2:54:6f:34:dd:77:61:
32:3d:77:04:6c:ba:28:74:95:01:f9:d8:5c:e4:b0:
89:83:c8:2f:7e:29:f6:c3:51:a0:89:18:fd:c7:a9:
cb:dd:15:c6:97:d6:27:b5:9a:eb:26:8f:e8:c2:9f:
28:be:e0:90:b4:52:9f:ce:c4:21:ca:f9:b6:24:e0:
4f:a4:1c:75:17:21:6d:cd:53:78:49:e3:ef:f2:d4:
06:c0:e5:25:b1:a8:00:4f:28:bf:26:b4:58:d3:a3:
fa:83:c6:5e:c0:f4:01:6f:72:02:62:5b:8c:04:82:
f4:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:70:84:CF:E8:20:0A:77:49:4B:2C:1B:98:8B:A5:93:CF:AD:90:A5
X509v3 Authority Key Identifier:
keyid:D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/D5C3D5E70FC9AD10BA90D45DC66454E9E3A146A8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638303a63303a3a2f34342d3438203d3e20313938353835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:df80:c0::/44
Signature Algorithm: sha256WithRSAEncryption
5e:52:55:32:d4:60:b1:f5:59:5f:04:47:df:ca:f7:18:25:f6:
5b:3c:e3:b1:c6:d8:e6:53:69:0c:db:26:3d:14:44:01:0b:74:
71:72:b7:5a:3b:85:75:f3:1a:73:64:81:89:62:9a:e9:c4:f1:
e0:c9:9c:b5:76:04:81:32:c8:b7:ce:32:36:56:22:29:4a:fa:
92:67:fe:65:d1:12:68:c5:3b:d8:d0:ef:0b:92:ba:ea:13:50:
7a:cb:db:36:31:df:22:d9:e2:cf:0b:f3:79:de:d9:47:66:72:
26:e4:35:5e:c1:33:a4:80:ee:4b:72:e0:bc:ff:b4:26:7c:36:
d7:6c:9c:3d:8e:e6:3f:86:c3:7b:97:65:68:fa:f6:e1:50:7b:
4a:cc:9a:cd:30:7e:06:2b:fd:24:a1:b6:42:26:72:d0:c3:c7:
b6:75:62:d1:a4:fd:7b:21:e0:9a:72:f5:23:e5:44:61:3e:be:
c0:cf:26:f9:94:23:f8:c3:d3:f6:e6:20:2d:7d:6c:96:80:f2:
16:4b:0d:b5:3f:cd:f8:eb:31:98:85:fa:2a:78:2a:06:46:e5:
77:c6:cf:68:a8:13:27:70:8c:9a:43:52:08:7e:7e:a6:f6:54:
4a:60:ce:e1:cb:c9:1a:58:ce:6f:69:ac:8f:93:59:ea:b9:2b:
d4:c9:1f:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:08 2024 by rpki-client on console-fra.rpki-client.org