Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638353a3a2f33322d3332203d3e203537383730.roa
File: 326131333a646638353a3a2f33322d3332203d3e203537383730.roa (raw, json)
Hash identifier: xbAU4fhqhwythx51px6GGWGpClQ1pnh2i9L/MqYnw7M=
Subject key identifier: CF:49:50:2B:4D:FB:C0:63:88:2E:DF:FC:39:4B:FF:15:7D:93:7C:50
Certificate issuer: /CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Certificate serial: 74BE039B1D6280C2D9B8C0DEB56AC625F1690B53
Authority key identifier: D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638353a3a2f33322d3332203d3e203537383730.roa
Signing time: Fri 16 Jun 2023 20:08:47 +0000
ROA not before: Fri 16 Jun 2023 20:03:47 +0000
ROA not after: Fri 14 Jun 2024 20:08:47 +0000
asID: 57870
IP address blocks: 2a13:df85::/32 maxlen: 32
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:be:03:9b:1d:62:80:c2:d9:b8:c0:de:b5:6a:c6:25:f1:69:0b:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Validity
Not Before: Jun 16 20:03:47 2023 GMT
Not After : Jun 14 20:08:47 2024 GMT
Subject: CN=CF49502B4DFBC063882EDFFC394BFF157D937C50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ba:2b:c0:fa:bb:03:4e:73:56:e6:e3:9e:1e:
05:81:64:c7:e0:5a:07:64:9a:3d:cb:a5:df:02:3e:
c7:83:eb:f6:82:cb:1c:f7:6e:2b:f3:4d:f8:29:8b:
13:36:2f:7c:8d:0b:7b:3e:ea:95:47:c1:1b:48:73:
0a:ab:73:e9:c2:91:af:6e:46:cf:45:45:ae:5b:8b:
4f:b4:8c:7f:89:70:fa:9d:67:eb:53:bd:1f:80:b2:
43:50:8c:9b:9f:fd:d9:81:5b:a3:3d:cc:5e:0a:62:
d7:0c:dd:f3:96:8e:66:a3:ca:0a:d6:5b:d2:51:ee:
4e:83:ff:52:99:65:ad:a2:b0:84:33:c5:8d:66:a3:
03:7e:75:6a:48:30:34:db:12:23:92:2b:cd:03:23:
2d:7b:54:f3:8b:58:05:b5:6c:a3:f6:9c:0d:52:57:
39:3d:32:d9:b9:5a:e7:82:ba:5f:67:2d:97:66:ef:
18:75:0e:db:2b:7e:b4:f6:b8:47:73:e4:17:63:69:
ef:f0:f5:62:a0:52:0f:4d:9b:f4:a9:70:e3:05:61:
e7:2d:7c:3f:6a:10:3a:93:51:fb:00:25:c7:ff:b9:
d9:95:19:15:50:6e:df:1b:b7:d0:10:24:dd:23:10:
da:7e:9a:32:13:b7:1f:4e:6a:55:e6:80:80:55:b9:
38:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:49:50:2B:4D:FB:C0:63:88:2E:DF:FC:39:4B:FF:15:7D:93:7C:50
X509v3 Authority Key Identifier:
keyid:D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/D5C3D5E70FC9AD10BA90D45DC66454E9E3A146A8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638353a3a2f33322d3332203d3e203537383730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:df85::/32
Signature Algorithm: sha256WithRSAEncryption
c3:3d:9a:9f:53:3a:f1:0b:91:2f:e6:bd:c0:77:7f:fa:ae:1f:
36:11:9e:a2:3a:d3:2c:a2:ce:99:87:80:74:04:26:6c:85:70:
b8:c3:9a:9a:f1:7a:7a:fa:54:5c:4e:8a:2e:72:01:68:8f:ca:
07:bb:f2:b1:98:89:cb:9b:34:3a:8e:4f:4b:a1:4a:75:04:79:
26:20:cf:e6:6d:8d:c5:2a:8d:c5:bc:78:e5:f1:cb:d8:23:10:
9a:03:aa:29:f0:30:32:c7:e2:71:a4:93:01:74:d7:3d:bf:fb:
42:ef:b4:24:65:76:fc:cb:c1:cd:56:43:0b:2a:df:cb:df:3a:
7d:8d:25:25:f7:27:4f:9c:15:81:a6:5d:27:79:fa:cb:40:a0:
3f:a0:e4:b5:b9:f3:0f:25:3e:87:4c:d6:02:e1:e4:7a:af:a9:
1b:68:c3:2f:0f:7f:fd:d9:2d:58:9e:66:2e:dc:b5:0c:5a:08:
81:64:dd:93:12:3c:8a:e7:f3:1f:f0:79:42:e8:f9:c9:50:9e:
f6:e1:a2:3e:21:c3:b1:63:46:0c:b2:2a:b1:2e:eb:16:cb:e6:
1d:f0:6a:e9:cd:a5:b8:00:be:5a:3a:47:44:89:f4:93:f9:cd:
7f:29:59:fb:0a:2d:c9:61:b3:73:1c:33:6c:f3:6f:c2:6b:14:
59:34:6e:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:08 2024 by rpki-client on console-fra.rpki-client.org