Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638353a3a2f33382d3634203d3e20323136343631.roa
File: 326131333a646638353a3a2f33382d3634203d3e20323136343631.roa (raw, json)
Hash identifier: NnJWADQw+38Fh1h2mbNlvqR//81e+l50OoHZ7bLqCDo=
Subject key identifier: 3C:DA:3F:99:59:24:B0:EB:10:B4:D0:71:3D:86:D6:D4:8F:4E:7B:0A
Certificate issuer: /CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Certificate serial: 1F8B3D5F3F821E67079B51FBE71B1CFFB6AF982A
Authority key identifier: D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638353a3a2f33382d3634203d3e20323136343631.roa
Signing time: Thu 17 Aug 2023 01:31:37 +0000
ROA not before: Thu 17 Aug 2023 01:26:37 +0000
ROA not after: Thu 15 Aug 2024 01:31:37 +0000
asID: 216461
IP address blocks: 2a13:df85::/38 maxlen: 64
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:8b:3d:5f:3f:82:1e:67:07:9b:51:fb:e7:1b:1c:ff:b6:af:98:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Validity
Not Before: Aug 17 01:26:37 2023 GMT
Not After : Aug 15 01:31:37 2024 GMT
Subject: CN=3CDA3F995924B0EB10B4D0713D86D6D48F4E7B0A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:56:7b:dd:65:8d:8a:64:a6:d8:fd:03:1f:9e:
04:80:df:a6:a1:50:ef:04:9c:a8:ac:ae:9f:79:37:
b9:01:db:89:20:5a:f8:39:f4:42:0b:e2:5c:cd:32:
7d:52:c5:7a:ab:64:0f:e4:27:f0:be:da:46:06:b1:
8f:f7:cb:72:92:0e:ff:dc:65:8b:5c:fb:90:5d:81:
3d:69:d9:78:72:2d:48:6c:e8:c3:71:2b:e6:67:e6:
d6:1f:9a:55:9b:d6:2b:22:cc:a5:9f:7b:bf:15:24:
b7:43:82:23:33:2e:9a:10:91:a5:48:d3:1a:75:7f:
5b:b5:ea:e4:b0:62:a3:69:4e:d6:55:3c:a5:ed:31:
c8:28:2a:20:05:c1:7a:6a:2b:12:aa:4c:b4:03:36:
09:21:f4:14:22:b1:b8:51:d2:84:1a:10:2c:bb:39:
aa:d4:27:79:a8:3e:f5:a5:fa:a8:5b:69:fa:69:10:
41:96:6e:7e:5c:b9:49:06:78:97:e5:05:dc:52:12:
62:f4:ef:0f:d5:f2:ac:8b:99:c2:6f:02:49:3b:aa:
40:27:5c:58:0d:41:23:5b:26:36:14:82:73:ad:d2:
f5:89:8a:4e:d8:46:7f:e0:bc:7e:70:c9:31:85:23:
ad:57:81:b0:ca:63:2e:30:23:45:db:46:6a:e8:d9:
32:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:DA:3F:99:59:24:B0:EB:10:B4:D0:71:3D:86:D6:D4:8F:4E:7B:0A
X509v3 Authority Key Identifier:
keyid:D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/D5C3D5E70FC9AD10BA90D45DC66454E9E3A146A8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/326131333a646638353a3a2f33382d3634203d3e20323136343631.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:df85::/38
Signature Algorithm: sha256WithRSAEncryption
c2:57:8a:f4:fb:28:3a:59:da:a3:90:99:3b:66:52:29:9a:1b:
1d:81:65:62:0a:38:3c:28:2f:19:65:4b:94:41:9a:f8:d0:e7:
4c:1b:a1:72:82:66:3e:ba:1d:e8:a0:d5:65:07:b4:19:a5:7b:
79:06:76:87:65:03:8e:33:a2:6b:df:3b:fb:60:ab:fd:a3:ba:
e0:cc:cf:c3:35:29:24:ff:d3:ce:78:60:8c:1f:dd:fe:27:4b:
2e:aa:ae:e4:9b:3b:5b:5d:d1:7c:0a:e4:e5:55:b1:b2:a0:06:
70:58:1d:04:e3:2a:d9:9d:d6:ad:d5:83:31:2c:84:f7:ea:37:
5a:34:88:f3:73:81:fd:9a:06:9c:d0:f9:d3:4d:a7:0f:06:0c:
f7:5a:39:18:07:e2:de:0a:27:c0:cf:97:0d:c9:e0:f4:ec:c3:
d1:c9:6f:ee:f0:3d:18:73:af:c7:a8:56:5e:ad:36:9e:58:f1:
46:7f:77:1d:77:9d:d9:96:fb:e9:c6:f3:87:54:36:79:e3:7b:
0b:8a:37:93:90:f4:2d:e1:e1:08:50:e8:b9:5c:56:ec:4f:57:
16:50:4f:15:eb:6a:3f:e4:f8:a4:c3:b1:fa:ce:f6:16:1c:1f:
b1:38:8f:1b:3a:97:22:76:60:63:c6:6b:59:28:25:10:30:6c:
0a:1d:6e:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:08 2024 by rpki-client on console-fra.rpki-client.org