Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/24db6e0e-696c-4f89-8d48-274559700af5/0/326130613a363034343a623030303a3a2f34302d3430203d3e2030.roa
File: 326130613a363034343a623030303a3a2f34302d3430203d3e2030.roa (raw, json)
Hash identifier: WoEoodpHHPQjYZ1nurqcWGEgzZiv+31vPY0yRIsxoMQ=
Subject key identifier: 0A:A6:CF:2D:35:BF:8B:09:1F:A8:1D:90:BF:C0:9B:77:9C:EF:74:B3
Certificate issuer: /CN=BD1C19CEEB0C3F6F8474048AEDC8CD02C56FC6AB
Certificate serial: 608C573309AB993A35329D476384AA3F51109BA7
Authority key identifier: BD:1C:19:CE:EB:0C:3F:6F:84:74:04:8A:ED:C8:CD:02:C5:6F:C6:AB
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/BD1C19CEEB0C3F6F8474048AEDC8CD02C56FC6AB.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/24db6e0e-696c-4f89-8d48-274559700af5/0/326130613a363034343a623030303a3a2f34302d3430203d3e2030.roa
Signing time: Wed 05 Jun 2024 09:34:48 +0000
ROA not before: Wed 05 Jun 2024 09:29:48 +0000
ROA not after: Wed 04 Jun 2025 09:34:48 +0000
asID: 0
IP address blocks: 2a0a:6044:b000::/40 maxlen: 40
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:8c:57:33:09:ab:99:3a:35:32:9d:47:63:84:aa:3f:51:10:9b:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BD1C19CEEB0C3F6F8474048AEDC8CD02C56FC6AB
Validity
Not Before: Jun 5 09:29:48 2024 GMT
Not After : Jun 4 09:34:48 2025 GMT
Subject: CN=0AA6CF2D35BF8B091FA81D90BFC09B779CEF74B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:cf:01:b5:e7:02:3c:00:32:72:b5:f4:d8:9f:
eb:42:63:b7:69:47:2b:7c:ca:5c:fe:54:46:a3:fe:
ec:3e:1a:d6:64:1a:b7:4f:be:7d:bc:b0:c8:fd:f9:
3e:ba:fe:97:25:19:14:af:56:b1:7d:6a:b6:7b:bb:
5d:d6:98:7e:c1:7f:f5:06:ad:41:44:b0:e1:46:83:
10:f7:19:4d:b5:87:2f:28:d3:98:98:10:d9:67:bb:
d7:7b:0f:d7:27:9a:29:91:f3:04:56:52:6e:d8:c8:
49:2c:ae:3b:20:b0:72:9d:5a:de:0d:19:10:d8:b5:
78:e9:43:02:2c:16:53:68:7a:90:45:1b:e5:fe:c4:
df:d4:92:f6:96:f4:f3:3c:08:3a:b4:99:09:74:d1:
35:c7:a5:ec:d3:f9:3c:5a:d2:ee:fa:4a:aa:ea:55:
1c:51:4c:55:55:ca:04:f9:c8:4e:df:5d:08:0c:3e:
d0:93:4d:ef:49:02:eb:e5:46:97:02:1d:92:a9:a6:
d6:28:81:29:79:7a:75:41:ad:61:38:90:e5:39:b7:
86:8c:90:50:9e:69:03:e1:55:20:f8:a4:76:92:5e:
84:c0:dd:57:a6:06:39:e3:7f:f9:3e:4a:c6:7f:95:
0e:48:cf:f3:79:5f:e6:ce:ef:51:1b:a6:a0:ff:92:
c4:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:A6:CF:2D:35:BF:8B:09:1F:A8:1D:90:BF:C0:9B:77:9C:EF:74:B3
X509v3 Authority Key Identifier:
keyid:BD:1C:19:CE:EB:0C:3F:6F:84:74:04:8A:ED:C8:CD:02:C5:6F:C6:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/24db6e0e-696c-4f89-8d48-274559700af5/0/BD1C19CEEB0C3F6F8474048AEDC8CD02C56FC6AB.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/BD1C19CEEB0C3F6F8474048AEDC8CD02C56FC6AB.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/24db6e0e-696c-4f89-8d48-274559700af5/0/326130613a363034343a623030303a3a2f34302d3430203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6044:b000::/40
Signature Algorithm: sha256WithRSAEncryption
71:84:1a:45:08:86:2f:27:d7:f4:18:fa:7f:7f:1c:86:f1:2c:
54:5c:73:a0:75:79:f9:97:dd:c0:d6:57:6a:c7:15:62:0a:71:
f6:8c:b2:4d:fb:61:09:bc:df:a6:a2:89:44:a5:f2:e4:8b:08:
2c:f9:6c:f3:45:92:15:5a:5a:5e:a5:70:7e:92:b9:51:0f:b9:
af:33:b1:39:d8:08:1d:c3:8a:60:45:8e:29:17:f7:06:a3:e9:
1d:48:34:c1:e6:82:08:6c:18:b2:bc:44:21:cb:2c:69:c5:a8:
b5:ca:86:df:eb:1f:32:1e:c8:b5:14:f6:43:15:0c:98:2f:05:
ad:18:64:d9:e9:76:1c:a7:83:c3:70:ef:9b:ba:30:d1:4d:8f:
97:e4:61:b4:20:fe:6b:24:39:3d:cf:a1:46:2b:2f:ed:46:24:
5b:eb:19:66:86:a6:5d:2a:f6:2d:3a:14:11:c4:f0:65:b2:1f:
ac:60:a0:97:fd:9e:92:da:10:cd:24:87:a8:da:3f:a5:0e:4b:
b9:40:fc:31:ca:cc:05:2e:61:5f:51:ed:08:8c:ef:f6:3c:9a:
d2:e2:6d:6c:94:79:1a:b6:30:af:4f:00:15:d9:82:e3:e8:e5:
f4:90:d3:d4:78:a2:91:95:29:eb:5c:ef:02:86:4e:16:c8:d6:
ae:d7:36:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 22 18:54:43 2024 by rpki-client on console-fra.rpki-client.org