Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1d20be4c-8db3-45e1-8169-0f2e4084132c/1/326130353a646663313a313438303a3a2f34312d3431203d3e20323134393330.roa
File: 326130353a646663313a313438303a3a2f34312d3431203d3e20323134393330.roa (raw, json)
Hash identifier: DisLBeD5UYoHuVO4itXlxTDbjFdQ+cuiB6NlT84wLk8=
Subject key identifier: 5B:0E:F0:2C:98:3D:C9:5B:20:F4:C4:2A:88:0A:80:2D:FA:1F:07:85
Certificate issuer: /CN=A845D847B27C18D2A8C43F47EDAAEEAB5CCC0BE1
Certificate serial: 1E9966C6CF3C9CA6EC1D56D3A42A07EED5FD6D54
Authority key identifier: A8:45:D8:47:B2:7C:18:D2:A8:C4:3F:47:ED:AA:EE:AB:5C:CC:0B:E1
Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/A845D847B27C18D2A8C43F47EDAAEEAB5CCC0BE1.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1d20be4c-8db3-45e1-8169-0f2e4084132c/1/326130353a646663313a313438303a3a2f34312d3431203d3e20323134393330.roa
Signing time: Thu 20 Jun 2024 11:11:49 +0000
ROA not before: Thu 20 Jun 2024 11:06:49 +0000
ROA not after: Thu 19 Jun 2025 11:11:49 +0000
asID: 214930
IP address blocks: 2a05:dfc1:1480::/41 maxlen: 41
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:99:66:c6:cf:3c:9c:a6:ec:1d:56:d3:a4:2a:07:ee:d5:fd:6d:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A845D847B27C18D2A8C43F47EDAAEEAB5CCC0BE1
Validity
Not Before: Jun 20 11:06:49 2024 GMT
Not After : Jun 19 11:11:49 2025 GMT
Subject: CN=5B0EF02C983DC95B20F4C42A880A802DFA1F0785
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:ce:61:d2:6a:b0:99:1a:bf:68:8e:4a:fe:51:
4e:9f:96:b0:94:45:a3:b0:b3:3f:b7:c1:95:b8:79:
29:06:14:c2:ab:c1:62:56:f9:1d:a6:ac:d2:a0:c9:
89:fa:ba:f9:97:fc:9c:50:04:c4:60:e8:53:4e:2b:
4e:fb:94:e3:6e:5e:35:77:53:38:3d:4f:18:99:32:
5d:59:9b:6d:e1:36:1c:f1:8a:d6:e1:98:95:a4:77:
3a:0f:3c:02:82:9a:6d:ed:2d:1a:54:b4:34:3c:3d:
50:60:d8:02:d5:54:5c:d7:6e:2c:63:8f:2a:64:1a:
ba:87:36:ef:3d:2f:c9:0c:71:76:e1:d8:a5:8b:4e:
71:e0:6a:1c:96:9d:64:19:15:3c:12:20:dd:dd:0d:
14:8e:c5:77:bc:3c:e6:31:7c:82:74:33:09:64:cd:
38:87:35:c3:17:09:90:7d:16:87:1b:d5:57:cd:d7:
55:99:4b:8a:c2:39:25:15:31:49:8b:c6:65:f5:59:
c7:c0:3f:7a:2e:73:a7:39:df:d3:2e:99:80:17:e4:
15:d0:71:07:6d:e5:b4:41:ef:c9:31:18:24:f9:20:
60:16:60:43:39:38:e5:92:3e:77:4b:15:74:70:77:
e5:5b:37:90:3e:4d:50:c7:14:aa:2a:a9:82:fc:af:
b9:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:0E:F0:2C:98:3D:C9:5B:20:F4:C4:2A:88:0A:80:2D:FA:1F:07:85
X509v3 Authority Key Identifier:
keyid:A8:45:D8:47:B2:7C:18:D2:A8:C4:3F:47:ED:AA:EE:AB:5C:CC:0B:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1d20be4c-8db3-45e1-8169-0f2e4084132c/1/A845D847B27C18D2A8C43F47EDAAEEAB5CCC0BE1.crl
Authority Information Access:
CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/A845D847B27C18D2A8C43F47EDAAEEAB5CCC0BE1.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1d20be4c-8db3-45e1-8169-0f2e4084132c/1/326130353a646663313a313438303a3a2f34312d3431203d3e20323134393330.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:1480::/41
Signature Algorithm: sha256WithRSAEncryption
3a:fe:d0:a7:bb:76:cf:28:23:11:a9:2a:02:43:a3:4a:68:bb:
7c:75:7e:68:ab:da:52:70:cf:00:bf:69:ef:c7:00:16:e3:1b:
fc:a0:a5:dd:dd:ac:b2:89:c7:79:9f:ee:6a:65:f9:5c:f5:8a:
7c:8f:f7:70:92:9c:d1:b1:74:39:f8:ed:8c:4c:a3:2a:3c:f6:
86:2e:65:b6:ae:30:5b:08:48:74:bf:8b:aa:3a:be:6f:1a:fb:
6d:7f:06:46:f1:c8:bb:95:a8:e5:ba:36:86:b0:56:22:71:38:
c3:72:a0:99:87:4e:c3:fa:25:00:94:65:65:a4:8a:7d:1a:30:
7a:a0:80:c4:3a:1b:53:60:ea:12:e0:1a:f7:42:ee:58:63:b2:
20:9b:75:1d:4d:62:78:61:12:ef:13:98:e6:70:fa:19:1e:4f:
da:b1:27:55:83:90:79:dd:49:fd:e3:09:d4:26:24:8e:72:8b:
8a:c9:0e:2c:cc:4c:92:d3:88:4c:6b:05:a7:66:05:b8:21:b9:
eb:65:67:79:9a:b9:42:1f:0c:41:61:aa:98:51:f9:c3:d2:34:
9e:af:16:f2:be:6c:d8:cb:b1:a9:f6:61:23:0e:99:18:95:51:
7a:a0:cd:b3:55:0d:25:49:8d:8e:72:5b:3a:fb:7b:df:d2:e2:
d6:46:36:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 14 17:49:49 2024 by rpki-client on console-ams.rpki-client.org