Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638343a623030623a3a2f34382d3438203d3e203537383730.roa
File: 326131333a646638343a623030623a3a2f34382d3438203d3e203537383730.roa (raw, json)
Hash identifier: I2yDCAZz8URxVptPi2XA+Ri1qAE1QvsZMVrrhNoEIHM=
Subject key identifier: D3:63:17:2F:2C:CD:38:90:41:A2:60:32:FA:2C:78:88:5A:D9:AF:7E
Certificate issuer: /CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Certificate serial: 6703A4E3F797D6AA9FACF5BDE82C823585BE5ED3
Authority key identifier: D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638343a623030623a3a2f34382d3438203d3e203537383730.roa
Signing time: Fri 16 Jun 2023 20:08:39 +0000
ROA not before: Fri 16 Jun 2023 20:03:39 +0000
ROA not after: Fri 14 Jun 2024 20:08:39 +0000
asID: 57870
IP address blocks: 2a13:df84:b00b::/48 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:03:a4:e3:f7:97:d6:aa:9f:ac:f5:bd:e8:2c:82:35:85:be:5e:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Validity
Not Before: Jun 16 20:03:39 2023 GMT
Not After : Jun 14 20:08:39 2024 GMT
Subject: CN=D363172F2CCD389041A26032FA2C78885AD9AF7E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ad:14:85:58:b8:0b:50:8a:4d:e6:c3:dc:d2:
42:a1:6a:d7:18:e3:3d:0d:57:e7:05:50:ab:35:2a:
7a:6c:30:2f:94:8b:87:d7:fc:b7:23:0e:58:d9:da:
5f:0c:65:95:90:e5:51:2c:bb:1c:9f:3e:63:e9:12:
fe:5f:11:70:0e:f3:5c:22:ea:9e:40:86:93:92:23:
2b:26:d9:21:1f:68:2b:00:d0:e7:29:d6:14:1f:97:
5e:b0:b3:ea:9d:fc:e7:af:09:2e:f0:f9:cb:f4:8b:
19:46:e6:ef:6f:a3:99:9e:d5:c9:13:e1:c0:ab:54:
f1:0d:40:0b:27:e6:e4:a2:27:60:bf:d0:cf:d3:c8:
e3:0d:ca:c7:e8:64:4d:0c:18:78:bf:9b:e1:35:dd:
91:da:3d:8d:1e:f7:50:2c:d4:5d:fa:7d:46:52:ce:
b4:fb:8f:84:18:76:ca:40:1b:23:9a:04:42:8c:43:
67:4d:61:c6:13:7b:c2:27:b3:09:f2:ed:9e:d2:be:
61:92:56:35:8b:91:43:50:d2:46:68:bc:c8:1a:f6:
41:66:af:55:f1:13:c6:f9:3f:6d:8a:d3:db:75:45:
63:b0:0e:0b:f8:7e:9b:44:df:fa:bd:43:a1:85:ee:
24:d7:22:de:c2:2f:e9:e3:4a:6e:ba:ae:6a:c7:85:
45:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:63:17:2F:2C:CD:38:90:41:A2:60:32:FA:2C:78:88:5A:D9:AF:7E
X509v3 Authority Key Identifier:
keyid:D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/D5C3D5E70FC9AD10BA90D45DC66454E9E3A146A8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638343a623030623a3a2f34382d3438203d3e203537383730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:df84:b00b::/48
Signature Algorithm: sha256WithRSAEncryption
8f:a2:91:f9:1e:0d:43:52:2d:f5:93:ab:23:02:be:b1:6d:aa:
a1:46:83:ed:9a:d6:1b:ac:3e:a6:21:92:be:e9:b6:9a:65:b0:
36:25:58:a8:49:54:14:fe:30:de:4a:d2:cd:fc:b7:e1:44:3d:
ac:6e:56:f1:e1:7f:f5:2c:15:df:1d:90:eb:e2:5d:5d:6f:1c:
19:53:da:c3:cb:eb:76:3a:da:59:6f:1c:be:36:be:71:45:9b:
09:1b:76:9e:f2:40:9c:0f:d0:f5:6a:e2:c0:03:66:e1:c2:8f:
9f:37:fd:c5:1b:c8:9a:e4:68:5e:2b:71:e3:01:31:fc:ce:a1:
e5:a9:88:21:f0:3d:62:b5:45:87:55:b1:eb:a4:30:ca:0b:e2:
ae:d3:d3:2d:15:7a:34:a1:e1:c9:c9:e4:7a:c2:7f:00:cf:ae:
3f:f2:a5:d3:7e:57:94:7f:07:51:6b:db:a7:f4:a0:49:45:a3:
63:a5:2b:b7:e7:06:15:ab:3c:3f:24:2b:a1:a5:17:7b:25:75:
72:f8:56:7b:61:81:64:ca:8c:29:86:3a:c2:c0:29:56:7d:25:
7a:03:a0:31:89:f1:23:ea:0a:b4:5d:1f:48:39:c6:64:30:0c:
9c:92:b0:0a:9a:19:11:e3:1a:f0:42:b4:52:ce:8b:89:d6:97:
b0:db:f6:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:08 2024 by rpki-client on console-fra.rpki-client.org