Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/AS216324.roa
File: AS216324.roa (raw, json)
Hash identifier: 4wQ1vHrxoI/Hao9sTh1UfpDjSepUuGsZ5W3SYBKCvhQ=
Subject key identifier: 16:EB:E8:F5:45:B2:C8:D8:1D:61:77:93:DA:9E:33:14:8A:B1:92:9E
Certificate issuer: /CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Certificate serial: 276654B75A35B218C003A24DE6EAA51A02641B26
Authority key identifier: D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/AS216324.roa
Signing time: Wed 21 Feb 2024 10:44:30 +0000
ROA not before: Wed 21 Feb 2024 10:39:30 +0000
ROA not after: Wed 19 Feb 2025 10:44:30 +0000
asID: 216324
IP address blocks: 2a13:df85:b100::/40 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:66:54:b7:5a:35:b2:18:c0:03:a2:4d:e6:ea:a5:1a:02:64:1b:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Validity
Not Before: Feb 21 10:39:30 2024 GMT
Not After : Feb 19 10:44:30 2025 GMT
Subject: CN=16EBE8F545B2C8D81D617793DA9E33148AB1929E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:c1:1a:df:f8:eb:1e:68:1e:3a:ad:7c:df:de:
c8:17:1a:a7:4e:e7:91:5e:c8:46:f1:f5:e2:9e:48:
a0:b7:df:e5:2c:b1:63:35:b0:da:85:a6:c0:6c:9b:
ff:ac:31:62:e0:b4:69:8d:9f:83:a8:09:dc:a0:cf:
f7:b9:21:7e:a8:13:47:ec:2f:98:3d:43:17:14:cd:
b6:6b:d1:24:d6:d2:e5:85:39:17:e4:c8:c6:b6:f5:
9c:1c:f2:05:c7:1e:86:d9:e2:0a:4b:63:2f:e3:3f:
cf:98:21:f1:b1:e0:ef:bb:ec:d5:b5:93:08:98:af:
91:fb:36:16:64:c6:2c:1e:46:74:07:31:66:d8:5f:
e7:3e:79:90:25:e2:8d:0b:70:36:a0:75:e2:b9:0a:
43:87:95:79:65:05:2b:24:d9:1c:b8:83:fd:eb:e1:
e4:40:12:c0:a9:d4:30:2d:1a:5b:03:17:ce:49:4a:
b8:79:58:19:1d:21:c5:48:77:8c:d3:54:ea:24:d3:
8f:fe:3b:a8:c8:78:80:30:8a:0b:fd:50:b1:33:06:
2e:b5:d5:79:4f:0d:2c:f3:90:7a:41:44:db:5b:32:
62:a3:ad:4c:7e:9f:cb:60:c5:c7:d9:5c:e8:81:08:
34:3f:b0:33:f5:c7:9c:3d:3b:5f:c7:6f:d4:e0:63:
0a:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:EB:E8:F5:45:B2:C8:D8:1D:61:77:93:DA:9E:33:14:8A:B1:92:9E
X509v3 Authority Key Identifier:
keyid:D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/D5C3D5E70FC9AD10BA90D45DC66454E9E3A146A8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/AS216324.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:df85:b100::/40
Signature Algorithm: sha256WithRSAEncryption
51:73:fa:9a:54:eb:49:9c:01:47:73:63:08:30:3d:ed:be:01:
bf:be:c2:38:ce:c8:da:49:9c:00:9e:f8:10:06:c6:e2:40:fb:
e7:e9:7c:eb:0a:51:ea:cd:b7:fd:5c:3a:73:95:00:8f:d3:44:
58:d4:5f:de:6e:9d:28:8f:fa:6c:34:ce:f2:a5:78:c8:3f:27:
e5:66:b7:7d:f6:b2:ec:f2:7c:54:8e:48:e1:a5:c8:cd:53:ac:
b3:2d:6a:c6:58:84:07:82:c3:6d:51:1e:dc:53:f5:2d:74:13:
02:22:63:22:3f:51:02:27:23:a4:7c:ab:2a:dc:59:6b:4c:60:
66:f5:7e:d4:0b:20:bd:f9:62:96:6a:85:99:27:88:89:f1:21:
72:39:e9:31:b4:9c:80:44:97:0f:8e:db:5a:35:de:71:51:55:
99:5f:54:53:56:22:86:46:0a:f9:a3:2b:65:b3:e4:ae:b9:da:
19:8c:35:c4:53:61:b8:a0:58:b8:a7:e4:6f:7e:8e:b9:98:42:
ca:2d:7d:2d:77:fd:9e:96:bc:4a:10:3e:25:80:2d:aa:b9:c4:
44:ef:85:04:e8:0d:8c:da:ca:d3:76:0c:73:1b:f0:7b:3c:b2:
ed:7a:54:fb:5b:d4:26:4c:85:d1:45:dd:7f:80:ae:83:e3:e8:
a1:a3:16:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:08 2024 by rpki-client on console-fra.rpki-client.org