Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b0c75df9-5b92-48c0-bbda-a43bd19ef7d3/1/326130613a363034343a623330323a3a2f34382d3438203d3e20323134383039.roa
File: 326130613a363034343a623330323a3a2f34382d3438203d3e20323134383039.roa (raw, json)
Hash identifier: db1eq79eOZ3U5DUBogWiUwGe9EdwBIT0cCWJueZwN94=
Subject key identifier: 43:19:31:08:62:86:9B:D5:ED:31:5E:ED:64:29:BE:B8:2F:0D:AF:84
Certificate issuer: /CN=5FED2AFCA7C9FBDEAC83527A15BE547D7B63C296
Certificate serial: 412981C1CD1DC651A3E68ED087092EB0CD0B3AFD
Authority key identifier: 5F:ED:2A:FC:A7:C9:FB:DE:AC:83:52:7A:15:BE:54:7D:7B:63:C2:96
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/5FED2AFCA7C9FBDEAC83527A15BE547D7B63C296.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b0c75df9-5b92-48c0-bbda-a43bd19ef7d3/1/326130613a363034343a623330323a3a2f34382d3438203d3e20323134383039.roa
Signing time: Sun 11 Aug 2024 10:39:25 +0000
ROA not before: Sun 11 Aug 2024 10:34:25 +0000
ROA not after: Sun 10 Aug 2025 10:39:25 +0000
asID: 214809
IP address blocks: 2a0a:6044:b302::/48 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:29:81:c1:cd:1d:c6:51:a3:e6:8e:d0:87:09:2e:b0:cd:0b:3a:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5FED2AFCA7C9FBDEAC83527A15BE547D7B63C296
Validity
Not Before: Aug 11 10:34:25 2024 GMT
Not After : Aug 10 10:39:25 2025 GMT
Subject: CN=4319310862869BD5ED315EED6429BEB82F0DAF84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:9c:15:af:1f:a8:c4:32:2a:53:21:61:58:85:
22:95:59:b4:6d:61:50:87:5a:ae:e5:70:e0:32:35:
73:ae:19:4e:80:c8:27:28:ba:e3:e7:aa:53:06:c6:
50:65:3a:ca:50:8d:1c:0b:c8:d5:85:33:21:c6:be:
7c:b4:49:09:f5:43:d1:ea:a1:86:ac:8f:9f:90:e7:
ba:85:98:8d:5c:d2:98:65:17:ba:80:8a:90:c6:10:
5a:b9:2e:7b:82:66:47:41:4b:eb:df:06:87:e4:61:
be:db:2f:d7:4a:0a:97:63:4f:94:eb:f3:9e:c8:c7:
0a:2b:ba:c4:17:27:6d:5a:ce:e1:8d:c8:d4:11:db:
7d:a1:ab:be:a6:74:d8:2a:26:79:47:fb:6f:95:19:
7d:32:0b:f7:d2:c7:c2:fb:9a:32:b2:b4:0f:ba:a9:
f7:31:5b:52:d4:2a:98:e5:ae:76:d2:ec:64:35:d3:
e8:cb:8d:76:72:a3:b2:ec:ae:a5:76:ad:71:7c:4c:
ca:9a:f6:c6:dd:87:97:3e:a0:0a:19:91:0d:de:c8:
ae:97:35:8a:49:23:25:21:af:42:e1:f3:d9:e6:42:
2e:f7:d3:4c:bb:54:f5:5c:bb:93:e2:89:da:95:58:
cb:c1:d7:71:3a:b5:ac:06:c9:1d:bf:e7:e6:90:f3:
e6:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:19:31:08:62:86:9B:D5:ED:31:5E:ED:64:29:BE:B8:2F:0D:AF:84
X509v3 Authority Key Identifier:
keyid:5F:ED:2A:FC:A7:C9:FB:DE:AC:83:52:7A:15:BE:54:7D:7B:63:C2:96
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b0c75df9-5b92-48c0-bbda-a43bd19ef7d3/1/5FED2AFCA7C9FBDEAC83527A15BE547D7B63C296.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/5FED2AFCA7C9FBDEAC83527A15BE547D7B63C296.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b0c75df9-5b92-48c0-bbda-a43bd19ef7d3/1/326130613a363034343a623330323a3a2f34382d3438203d3e20323134383039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6044:b302::/48
Signature Algorithm: sha256WithRSAEncryption
97:4e:de:3e:b8:83:46:50:86:13:c5:5e:9d:46:ac:9b:7e:7d:
9b:54:66:69:50:9a:a8:d8:48:24:32:88:83:b2:16:93:bf:bf:
c6:f1:ae:8a:fc:62:89:a8:31:71:85:02:0d:1c:22:d9:3f:53:
04:09:84:b8:ea:ea:31:7d:b7:c9:4f:9c:6d:e2:a2:66:91:d3:
c5:78:4a:e1:75:b7:2c:4a:cf:7a:f3:6b:fe:61:43:62:4a:f6:
08:df:38:45:7a:e7:87:f7:f3:fe:fb:51:1d:60:7b:b5:f9:9d:
8c:09:aa:87:5b:07:68:2e:e6:d0:ce:be:4d:71:82:7e:55:cf:
d5:4d:bf:a9:64:1b:0e:98:22:a8:25:00:af:23:12:ae:d7:49:
1c:be:07:cf:51:3e:7e:1a:4d:d0:da:79:22:d9:6f:1f:be:0f:
a8:cf:61:5c:a8:82:9b:71:dd:76:0c:28:39:92:a2:df:51:af:
82:da:11:e2:4e:5e:71:9b:8a:76:4a:d8:2f:2d:ec:15:ec:e3:
db:0c:68:cf:11:3b:82:47:db:06:ac:4c:17:b0:cd:7b:32:78:
e1:ea:18:17:72:f2:ae:2a:95:21:72:ad:08:19:91:dc:ec:1c:
00:cd:ca:72:60:fb:dc:fd:bf:04:99:a3:1e:b3:c7:ab:cf:57:
2f:b4:b2:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 24 07:23:05 2024 by rpki-client on console-fra.rpki-client.org