Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/AS216341.roa
File: AS216341.roa (raw, json)
Hash identifier: DCgaA2Yckos2zriuooOiI2l8VpMPHIgqkbtO/bkmD6I=
Subject key identifier: 4B:AC:84:FB:30:43:AE:C7:81:5D:C4:A1:E6:D8:38:60:2F:D0:74:7F
Certificate issuer: /CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Certificate serial: 446E7F2184AF535452E2A04B9B67C43E82DFB743
Authority key identifier: D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/AS216341.roa
Signing time: Wed 20 Dec 2023 16:21:43 +0000
ROA not before: Wed 20 Dec 2023 16:16:43 +0000
ROA not after: Wed 18 Dec 2024 16:21:43 +0000
asID: 216341
IP address blocks: 2a13:df80:3805::/48 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:6e:7f:21:84:af:53:54:52:e2:a0:4b:9b:67:c4:3e:82:df:b7:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5c3d5e70fc9ad10ba90d45dc66454e9e3a146a8
Validity
Not Before: Dec 20 16:16:43 2023 GMT
Not After : Dec 18 16:21:43 2024 GMT
Subject: CN=4BAC84FB3043AEC7815DC4A1E6D838602FD0747F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:74:3b:4c:3e:38:f0:ce:79:f4:e3:d8:3e:7f:
31:4b:b5:93:f7:3e:27:5f:1c:83:38:7a:50:0d:e2:
66:99:19:8a:e9:6b:39:0c:16:9f:de:9c:e3:d2:ca:
04:f6:60:fe:aa:ae:e5:1a:56:2c:79:e7:d8:cd:56:
98:84:d9:9c:b3:88:b8:6a:20:5f:aa:40:b2:ff:81:
15:1c:ee:88:8d:ef:5e:4e:ed:63:bc:0f:b5:da:cd:
0b:28:e9:1d:1f:b8:ad:8a:87:3c:01:7e:5a:13:14:
29:6b:9c:d1:11:cb:bf:12:21:4c:52:df:87:e3:d9:
99:96:37:4f:16:7d:9f:aa:a5:6e:0a:43:93:29:0f:
2a:a6:63:ce:02:22:57:5e:65:e5:28:7c:19:fb:52:
0c:91:15:e0:0f:b6:92:8e:f2:66:89:09:b4:b4:72:
e5:d3:20:f4:ad:46:7b:e6:9c:fd:0a:7f:6f:38:5a:
bc:0e:05:18:0e:62:34:36:e8:47:85:c1:02:de:98:
36:27:dc:cd:f6:a1:ef:fa:18:8f:3b:2d:98:30:05:
09:fa:fb:1d:70:c5:81:af:ac:05:f0:b3:e8:80:c0:
b3:f6:ae:cf:de:96:b7:16:e0:78:06:23:65:02:0a:
30:a7:72:b4:8a:70:24:77:31:fe:c9:d1:01:0d:f0:
45:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:AC:84:FB:30:43:AE:C7:81:5D:C4:A1:E6:D8:38:60:2F:D0:74:7F
X509v3 Authority Key Identifier:
keyid:D5:C3:D5:E7:0F:C9:AD:10:BA:90:D4:5D:C6:64:54:E9:E3:A1:46:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/D5C3D5E70FC9AD10BA90D45DC66454E9E3A146A8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1cPV5w_JrRC6kNRdxmRU6eOhRqg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/AS216341.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:df80:3805::/48
Signature Algorithm: sha256WithRSAEncryption
57:fb:2a:cd:86:65:29:7a:f2:2d:90:0a:63:35:6b:c3:29:41:
c5:c8:0c:bf:a6:47:46:e7:f1:70:7a:e4:a7:ac:48:92:a5:1b:
06:a6:6c:bb:e1:fc:70:6f:e8:c0:8a:a8:37:5b:7c:88:f6:c5:
46:46:d2:32:4b:44:7f:30:08:8f:c4:ff:ea:be:74:53:5a:51:
dc:27:75:6c:cd:27:18:9c:55:49:7b:69:0e:29:a5:1d:12:24:
02:d1:9b:97:3d:ec:83:f7:08:a7:5e:76:ce:18:d6:9f:cb:f3:
ff:84:78:93:bb:ab:a9:88:4e:ab:7c:24:3b:a5:18:70:fa:59:
f6:95:0d:0b:6b:05:ae:79:42:67:7e:3f:24:39:53:7a:3e:e0:
cf:da:79:2f:63:71:86:02:a2:42:d1:c5:a2:1f:09:d5:16:12:
10:5e:3c:eb:de:0c:cd:1d:57:36:68:6b:e3:59:b4:3a:18:cb:
35:07:29:22:44:21:28:bb:70:71:8a:73:d0:5e:bb:28:78:4a:
54:7e:b9:a9:04:25:90:7e:f1:44:dd:06:18:53:59:d7:22:cb:
94:41:bb:80:f4:e1:6b:ec:22:08:03:40:57:24:8f:13:03:6a:
aa:75:93:fe:e7:f2:9d:3d:05:a2:ec:38:95:a8:2c:3d:c7:d9:
75:f9:d7:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:53 2024 by rpki-client on console-ams.rpki-client.org