Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/326131343a373538313a643030303a3a2f34312d3431203d3e203337393838.roa
File: 326131343a373538313a643030303a3a2f34312d3431203d3e203337393838.roa (raw, json)
Hash identifier: WILaErOtYEwaER07cW7IGwEP87dFlbxnPw+ZhGtPeTA=
Subject key identifier: E2:12:C1:A0:42:7B:F7:BE:EC:08:0E:04:28:E4:1C:8A:A9:92:26:E9
Certificate issuer: /CN=1F4C828276A9966865AB2B59533D1CB1BEC890BB
Certificate serial: 389118F426633077EE1B482325F7D63209ADD483
Authority key identifier: 1F:4C:82:82:76:A9:96:68:65:AB:2B:59:53:3D:1C:B1:BE:C8:90:BB
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/326131343a373538313a643030303a3a2f34312d3431203d3e203337393838.roa
Signing time: Tue 25 Jun 2024 14:12:59 +0000
ROA not before: Tue 25 Jun 2024 14:07:59 +0000
ROA not after: Tue 24 Jun 2025 14:12:59 +0000
asID: 37988
IP address blocks: 2a14:7581:d000::/41 maxlen: 41
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:91:18:f4:26:63:30:77:ee:1b:48:23:25:f7:d6:32:09:ad:d4:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1F4C828276A9966865AB2B59533D1CB1BEC890BB
Validity
Not Before: Jun 25 14:07:59 2024 GMT
Not After : Jun 24 14:12:59 2025 GMT
Subject: CN=E212C1A0427BF7BEEC080E0428E41C8AA99226E9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:46:cc:ad:f3:0f:31:2a:3f:a1:37:42:20:41:
08:6f:24:53:6a:4b:60:10:43:cc:9e:54:06:b6:8e:
a2:9b:76:5c:67:dd:37:d8:97:71:bc:ad:99:48:32:
9f:ab:0e:dd:e8:cf:34:1c:7a:cd:fa:6d:a8:db:23:
c3:37:11:21:ff:59:27:bc:ae:5a:1a:e4:dd:96:be:
59:c6:a2:a1:d0:74:97:74:f6:26:8e:af:93:8f:38:
40:30:7b:3c:1f:88:dd:3b:6a:76:0b:1e:76:75:fa:
4b:23:17:46:42:10:04:1e:b6:f0:15:e9:81:5c:3a:
45:9d:60:5e:6e:01:b3:1c:b1:33:f7:7a:be:ee:94:
1d:7f:46:72:15:32:68:e4:11:96:92:2b:ed:46:1d:
a0:d5:48:dc:0b:2a:ea:15:7b:24:9e:e6:a2:fc:1a:
f4:9a:a8:4d:ea:03:76:6c:52:53:35:d9:76:17:87:
24:05:f1:e3:dd:35:1f:75:53:df:98:cc:cc:af:89:
1f:86:00:57:a9:ea:fe:65:95:1b:80:ff:5b:d5:30:
7e:c4:78:f3:21:dc:42:36:52:fb:c3:66:ab:f7:b1:
cb:6d:c6:66:2d:02:bf:4a:35:98:99:9e:d0:8e:43:
71:e9:78:1a:86:a3:b0:e9:dd:61:12:58:a1:26:09:
d1:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:12:C1:A0:42:7B:F7:BE:EC:08:0E:04:28:E4:1C:8A:A9:92:26:E9
X509v3 Authority Key Identifier:
keyid:1F:4C:82:82:76:A9:96:68:65:AB:2B:59:53:3D:1C:B1:BE:C8:90:BB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/326131343a373538313a643030303a3a2f34312d3431203d3e203337393838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:d000::/41
Signature Algorithm: sha256WithRSAEncryption
9d:71:27:9e:24:c7:04:61:1d:d7:49:b3:37:87:e1:be:f9:d3:
d4:92:f7:b4:b8:ef:0d:4c:a1:4b:98:b9:37:83:d9:2a:2e:0e:
9e:bd:93:2a:3a:9b:a4:64:c8:34:c5:9e:c1:15:58:d0:2b:ab:
f7:a0:99:0e:cd:d9:9c:da:43:32:dd:42:a3:ce:ee:6b:e8:c2:
9e:c3:81:81:7c:22:d8:c0:16:18:36:00:1b:a2:75:7f:a4:30:
df:bc:df:8b:c9:55:0b:6d:ac:28:12:64:ec:6c:b7:d2:94:7b:
d4:eb:96:34:13:0a:3b:3b:b2:04:54:fe:f5:54:eb:af:94:d2:
e3:68:cf:42:7b:f7:08:41:93:7b:9a:a9:87:46:cd:3d:ea:3c:
02:78:03:17:09:11:cd:a5:ab:a3:3e:d6:cd:8a:48:2e:f2:e6:
fa:8d:68:39:fc:fe:6b:19:79:13:96:16:ae:7e:d3:14:27:b5:
7f:df:07:6f:d3:98:2d:c9:f9:0c:e1:ee:5e:7d:ef:4b:df:8d:
e8:e6:a6:4c:cc:63:6b:b2:94:80:54:a5:62:48:b0:8a:3a:0b:
0b:f2:e0:c0:84:c5:42:2d:a6:b4:4d:c6:ab:64:dd:9c:ba:64:
0f:32:19:80:61:7c:79:a8:60:af:65:fc:40:74:07:ce:99:90:
9f:12:96:f6
-----BEGIN CERTIFICATE-----
MIIFeTCCBGGgAwIBAgIUOJEY9CZjMHfuG0gjJffWMgmt1IMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMUY0QzgyODI3NkE5OTY2ODY1QUIyQjU5NTMzRDFDQjFC
RUM4OTBCQjAeFw0yNDA2MjUxNDA3NTlaFw0yNTA2MjQxNDEyNTlaMDMxMTAvBgNV
BAMTKEUyMTJDMUEwNDI3QkY3QkVFQzA4MEUwNDI4RTQxQzhBQTk5MjI2RTkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3Rsyt8w8xKj+hN0IgQQhvJFNq
S2AQQ8yeVAa2jqKbdlxn3TfYl3G8rZlIMp+rDt3ozzQces36bajbI8M3ESH/WSe8
rloa5N2WvlnGoqHQdJd09iaOr5OPOEAwezwfiN07anYLHnZ1+ksjF0ZCEAQetvAV
6YFcOkWdYF5uAbMcsTP3er7ulB1/RnIVMmjkEZaSK+1GHaDVSNwLKuoVeySe5qL8
GvSaqE3qA3ZsUlM12XYXhyQF8ePdNR91U9+YzMyviR+GAFep6v5llRuA/1vVMH7E
ePMh3EI2UvvDZqv3scttxmYtAr9KNZiZntCOQ3HpeBqGo7Dp3WESWKEmCdFbAgMB
AAGjggKDMIICfzAdBgNVHQ4EFgQU4hLBoEJ7977sCA4EKOQciqmSJukwHwYDVR0j
BBgwFoAUH0yCgnaplmhlqytZUz0csb7IkLswDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYjU5YzEwNmMtNTNiNC00ZTkyLTlmYmEtZDYwODI3YjVi
ZGI4LzAvMUY0QzgyODI3NkE5OTY2ODY1QUIyQjU5NTMzRDFDQjFCRUM4OTBCQi5j
cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu
Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy
OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8xRjRDODI4Mjc2QTk5NjY4NjVBQjJCNTk1
MzNEMUNCMUJFQzg5MEJCLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF
BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9iNTljMTA2Yy01M2I0LTRlOTItOWZiYS1kNjA4MjdiNWJkYjgvMC8zMjYxMzEz
NDNhMzczNTM4MzEzYTY0MzAzMDMwM2EzYTJmMzQzMTJkMzQzMTIwM2QzZTIwMzMz
NzM5MzgzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB
BwEB/wQTMBEwDwQCAAIwCQMHByoUdYHQADANBgkqhkiG9w0BAQsFAAOCAQEAnXEn
niTHBGEd10mzN4fhvvnT1JL3tLjvDUyhS5i5N4PZKi4Onr2TKjqbpGTINMWewRVY
0Cur96CZDs3ZnNpDMt1Co87ua+jCnsOBgXwi2MAWGDYAG6J1f6Qw37zfi8lVC22s
KBJk7Gy30pR71OuWNBMKOzuyBFT+9VTrr5TS42jPQnv3CEGTe5qph0bNPeo8AngD
FwkRzaWroz7WzYpILvLm+o1oOfz+axl5E5YWrn7TFCe1f98Hb9OYLcn5DOHuXn3v
S9+N6OamTMxja7KUgFSlYkiwijoLC/LgwITFQi2mtE3Gq2TdnLpkDzIZgGF8eahg
r2X8QHQHzpmQnxKW9g==
-----END CERTIFICATE-----
Generated at Mon Sep 23 15:22:08 2024 by rpki-client on console-fra.rpki-client.org