Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/570d55e9-040b-4eb0-9055-4b1e63a88a66/2/326130663a383563313a3336313a3a2f34382d3438203d3e20323135363035.roa
File: 326130663a383563313a3336313a3a2f34382d3438203d3e20323135363035.roa (raw, json)
Hash identifier: 6vZXQuJuT00/MBVMFdZvlxILF2MZNANLam86lfliy/E=
Subject key identifier: DA:D2:CA:BC:8C:63:5F:83:29:50:16:23:2D:21:11:D2:77:D1:92:B1
Certificate issuer: /CN=76423146648CF6AC626CCD0654C5B50EBEA94787
Certificate serial: 58E2D28A81D72FFF1CF77A712DF9CF38C192897A
Authority key identifier: 76:42:31:46:64:8C:F6:AC:62:6C:CD:06:54:C5:B5:0E:BE:A9:47:87
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/76423146648CF6AC626CCD0654C5B50EBEA94787.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/570d55e9-040b-4eb0-9055-4b1e63a88a66/2/326130663a383563313a3336313a3a2f34382d3438203d3e20323135363035.roa
Signing time: Fri 01 Mar 2024 16:38:10 +0000
ROA not before: Fri 01 Mar 2024 16:33:10 +0000
ROA not after: Fri 28 Feb 2025 16:38:10 +0000
asID: 215605
IP address blocks: 2a0f:85c1:361::/48 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:e2:d2:8a:81:d7:2f:ff:1c:f7:7a:71:2d:f9:cf:38:c1:92:89:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76423146648CF6AC626CCD0654C5B50EBEA94787
Validity
Not Before: Mar 1 16:33:10 2024 GMT
Not After : Feb 28 16:38:10 2025 GMT
Subject: CN=DAD2CABC8C635F83295016232D2111D277D192B1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:bb:af:a7:5b:83:bc:a9:57:b3:56:16:66:7d:
ca:57:7e:e9:c8:cf:d3:27:30:95:50:05:07:47:16:
e9:7f:fe:03:cd:c6:a3:48:86:76:a8:cc:d3:99:3d:
c9:4a:2f:7a:ab:b0:d2:da:67:58:84:3a:89:43:83:
30:d3:fd:48:21:66:3b:41:65:24:d7:2c:6e:1b:ca:
b2:f6:a1:c1:3c:f2:b4:7d:f0:e3:ca:00:75:d9:12:
7f:a5:14:51:f0:5d:9b:91:7d:a8:e2:90:c4:6c:54:
cc:4c:ac:b7:2e:6e:43:d2:01:28:32:a7:e6:30:35:
39:9b:09:f0:22:e8:c0:e9:cd:87:a4:71:ff:81:bc:
ae:f9:c8:e2:e9:9e:3f:89:99:ed:6b:3d:49:c7:42:
18:e6:18:d0:1b:58:b8:c0:60:3b:09:02:29:c6:35:
fe:8f:60:af:cb:2e:75:ee:20:88:d9:27:97:09:c9:
59:1a:bc:8a:16:f2:eb:f3:71:b5:f3:ca:c7:6b:97:
39:3f:72:22:e5:8d:07:1f:5f:f0:0d:7a:56:ab:c6:
86:57:a2:b7:90:ef:85:24:33:7c:c3:78:2d:bd:5a:
28:31:d7:61:be:48:76:73:d8:8a:6c:82:3f:cd:e4:
4d:9c:50:86:ef:85:c0:cd:9f:37:10:91:f8:1b:ea:
8f:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:D2:CA:BC:8C:63:5F:83:29:50:16:23:2D:21:11:D2:77:D1:92:B1
X509v3 Authority Key Identifier:
keyid:76:42:31:46:64:8C:F6:AC:62:6C:CD:06:54:C5:B5:0E:BE:A9:47:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/570d55e9-040b-4eb0-9055-4b1e63a88a66/2/76423146648CF6AC626CCD0654C5B50EBEA94787.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/76423146648CF6AC626CCD0654C5B50EBEA94787.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/570d55e9-040b-4eb0-9055-4b1e63a88a66/2/326130663a383563313a3336313a3a2f34382d3438203d3e20323135363035.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:361::/48
Signature Algorithm: sha256WithRSAEncryption
42:8d:67:5f:72:d2:fe:cd:b9:09:a0:9f:a9:03:4d:f9:40:b5:
59:53:03:a2:88:0e:8a:90:64:77:7b:84:62:6f:27:9e:3e:9c:
c5:bb:98:df:b8:9d:71:cb:73:b4:ce:5f:ca:b5:e7:1d:de:97:
18:94:ba:02:66:3e:fc:c0:e6:9c:8f:e7:24:a1:90:1d:e9:73:
10:69:ae:05:1a:2b:f6:e4:b1:87:33:4f:d2:39:73:bc:68:a1:
a7:6b:5d:b0:c3:c8:94:3b:ae:4b:d9:4b:fc:44:e7:fc:ce:df:
0f:39:8c:5e:6f:c1:dd:3c:4b:e5:5f:b8:cb:57:ac:93:a6:52:
ab:ef:6c:a0:3c:74:f1:fc:bd:dd:ac:c4:67:8a:82:4e:db:6f:
39:b7:07:79:a0:57:b0:44:c2:51:36:9b:68:69:06:21:43:f1:
82:bb:73:f3:3b:1c:ee:8a:29:5b:dc:3d:de:1a:6b:c4:c2:19:
83:c5:b8:d8:0f:73:49:18:d3:f8:66:c2:34:c1:8b:a2:b3:48:
dc:7e:19:cd:ff:cf:2d:d5:4c:94:30:10:d6:75:ac:99:2e:d3:
52:c2:16:19:08:66:fe:80:3c:5e:67:02:80:3d:32:d6:65:5f:
65:14:2e:1e:96:f7:a0:33:fe:90:70:b0:40:50:05:0e:70:b1:
40:a3:c6:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:16 2024 by rpki-client on console-fra.rpki-client.org