Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b0c75df9-5b92-48c0-bbda-a43bd19ef7d3/1/326130613a363034343a623330313a3a2f34382d3438203d3e20323134383039.roa
File: 326130613a363034343a623330313a3a2f34382d3438203d3e20323134383039.roa (raw, json)
Hash identifier: c9e8lN1yDhlQsFdYc1nk0vWon5CK9TImVIc489i7AsI=
Subject key identifier: 25:72:55:1F:0A:97:EA:B1:2E:24:ED:60:4E:29:75:CE:89:E3:24:F2
Certificate issuer: /CN=5FED2AFCA7C9FBDEAC83527A15BE547D7B63C296
Certificate serial: 670852A9BF74E5235C253BAD2BD273A8272248B0
Authority key identifier: 5F:ED:2A:FC:A7:C9:FB:DE:AC:83:52:7A:15:BE:54:7D:7B:63:C2:96
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/5FED2AFCA7C9FBDEAC83527A15BE547D7B63C296.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b0c75df9-5b92-48c0-bbda-a43bd19ef7d3/1/326130613a363034343a623330313a3a2f34382d3438203d3e20323134383039.roa
Signing time: Sun 11 Aug 2024 10:39:01 +0000
ROA not before: Sun 11 Aug 2024 10:34:01 +0000
ROA not after: Sun 10 Aug 2025 10:39:01 +0000
asID: 214809
IP address blocks: 2a0a:6044:b301::/48 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:08:52:a9:bf:74:e5:23:5c:25:3b:ad:2b:d2:73:a8:27:22:48:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5FED2AFCA7C9FBDEAC83527A15BE547D7B63C296
Validity
Not Before: Aug 11 10:34:01 2024 GMT
Not After : Aug 10 10:39:01 2025 GMT
Subject: CN=2572551F0A97EAB12E24ED604E2975CE89E324F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:6f:a0:58:47:db:23:d6:80:32:5f:5e:96:cb:
e5:2f:9c:a5:3c:98:ac:93:fc:ab:5c:f6:3b:a2:b0:
ec:bd:66:5f:17:5d:8a:ec:56:cb:c4:37:2d:c3:d3:
96:82:82:10:6f:34:4b:47:a1:ce:54:1a:f4:ad:12:
3e:de:8f:22:a3:b8:ed:67:43:c2:b4:86:c1:67:64:
60:e6:f7:89:66:01:5b:90:71:3b:24:99:59:bc:51:
70:70:bf:3f:6c:cf:56:f6:02:e0:cc:06:83:a8:ca:
45:da:e1:60:aa:7c:3a:a6:47:a1:7e:4e:4d:db:24:
20:d0:65:f2:6e:15:49:e8:cb:30:2b:1b:1b:b0:cf:
1e:8b:7e:a4:24:e3:cd:69:b5:eb:83:d1:ca:fd:91:
55:dc:ec:d0:18:6d:f7:94:27:a4:1d:a4:38:ca:d2:
65:1b:24:02:3d:7b:dc:62:81:aa:4a:4c:ed:24:1b:
f7:a1:df:5f:73:61:f8:24:d6:12:1b:5f:8b:e5:eb:
28:f2:af:50:86:b8:13:6d:fb:1f:df:29:0c:e3:1b:
e7:91:50:92:fb:b6:13:8f:c8:a8:e2:34:d3:f3:0d:
18:2f:ae:cb:fb:4d:da:f8:7f:e0:ad:df:a4:76:4c:
c8:d7:50:df:08:7c:22:0d:e8:0f:27:bf:c3:4b:65:
6e:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:72:55:1F:0A:97:EA:B1:2E:24:ED:60:4E:29:75:CE:89:E3:24:F2
X509v3 Authority Key Identifier:
keyid:5F:ED:2A:FC:A7:C9:FB:DE:AC:83:52:7A:15:BE:54:7D:7B:63:C2:96
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b0c75df9-5b92-48c0-bbda-a43bd19ef7d3/1/5FED2AFCA7C9FBDEAC83527A15BE547D7B63C296.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/5FED2AFCA7C9FBDEAC83527A15BE547D7B63C296.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b0c75df9-5b92-48c0-bbda-a43bd19ef7d3/1/326130613a363034343a623330313a3a2f34382d3438203d3e20323134383039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6044:b301::/48
Signature Algorithm: sha256WithRSAEncryption
53:d0:e4:f7:1e:0c:13:b7:3e:19:50:2e:df:8c:be:a3:91:53:
00:61:49:18:ff:64:2d:8a:26:e7:60:e7:2a:79:64:57:15:9f:
9d:24:61:82:cd:94:cb:90:89:df:d0:6f:06:4f:1e:16:16:57:
c5:08:e8:2b:3b:9a:b5:93:0b:a4:d2:a7:cd:34:4d:ee:81:b3:
3b:c7:57:df:75:85:f0:2c:09:c8:02:09:0e:d3:e1:93:d1:46:
b9:99:c8:36:25:c0:40:db:9b:27:a9:1a:c7:d8:49:a9:a7:09:
08:f2:4b:51:82:f5:5d:c7:a0:d5:94:e4:7d:cf:87:00:77:cf:
de:bb:99:2d:c0:5d:a5:f3:d5:7f:3d:5e:05:88:2b:3f:cd:8c:
14:7c:8e:e8:ce:55:ce:aa:82:bd:7e:ed:e9:13:1d:be:ea:af:
82:44:5d:fb:03:43:86:05:e2:54:9b:57:2a:81:e0:49:55:55:
2f:ba:c4:6b:ef:9b:ca:de:8f:fd:4a:51:1d:60:d4:17:f8:6c:
68:3c:b7:9b:19:3d:e4:5c:e6:60:b1:d7:5a:6c:e3:07:d7:ec:
70:ae:b5:b1:59:b5:66:c0:00:da:e7:b7:35:6a:40:b5:11:23:
e7:dd:fe:cd:2a:49:1e:91:b5:8a:2d:d6:43:34:91:45:bc:df:
63:ae:ec:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 24 07:23:05 2024 by rpki-client on console-fra.rpki-client.org