Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/326131343a373538313a643130303a3a2f34302d3438203d3e203533363637.roa
File: 326131343a373538313a643130303a3a2f34302d3438203d3e203533363637.roa (raw, json)
Hash identifier: wu4NApOfezgLJjsC2U+bzWwjgdcgVOBFq6UL7NyfBkc=
Subject key identifier: 45:AD:1B:D0:B0:96:28:C8:A7:E1:1D:5D:86:F5:3E:8D:23:51:94:D5
Certificate issuer: /CN=1F4C828276A9966865AB2B59533D1CB1BEC890BB
Certificate serial: 0C68EBA8FE01C19A91CC282AD640E64BE6DB7A4A
Authority key identifier: 1F:4C:82:82:76:A9:96:68:65:AB:2B:59:53:3D:1C:B1:BE:C8:90:BB
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/326131343a373538313a643130303a3a2f34302d3438203d3e203533363637.roa
Signing time: Tue 25 Jun 2024 14:22:38 +0000
ROA not before: Tue 25 Jun 2024 14:17:38 +0000
ROA not after: Tue 24 Jun 2025 14:22:38 +0000
asID: 53667
IP address blocks: 2a14:7581:d100::/40 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:68:eb:a8:fe:01:c1:9a:91:cc:28:2a:d6:40:e6:4b:e6:db:7a:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1F4C828276A9966865AB2B59533D1CB1BEC890BB
Validity
Not Before: Jun 25 14:17:38 2024 GMT
Not After : Jun 24 14:22:38 2025 GMT
Subject: CN=45AD1BD0B09628C8A7E11D5D86F53E8D235194D5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:8a:b0:ae:97:cd:0f:0b:69:f2:e6:01:2d:66:
a7:fe:94:dc:f1:19:9b:56:a9:28:45:84:41:0d:9b:
f2:35:06:be:31:2e:45:49:a2:6c:ee:82:cc:e6:3c:
e0:10:03:be:d3:06:c2:de:6a:1d:de:b3:f8:ba:e2:
22:54:c8:c0:fe:1d:72:dd:67:e4:ad:89:a3:4e:22:
09:70:72:80:c4:10:72:eb:f2:73:63:91:15:3e:d9:
86:0d:ff:f5:44:b3:97:49:f9:5f:71:9a:e2:4e:61:
0f:4e:09:ca:0e:94:b4:d6:4c:62:50:aa:70:4d:19:
0f:e5:dd:4f:cb:ae:77:6c:28:30:5b:ae:65:a7:11:
fe:32:69:e3:e7:57:27:3e:e8:41:aa:e5:42:fc:3b:
86:07:5e:13:3f:32:4b:60:69:6a:d1:cc:37:d8:5a:
3d:59:05:f9:35:06:98:54:d8:da:1f:9a:de:0c:dd:
41:f8:bd:06:13:22:ae:4f:5b:61:8d:e2:d8:6e:23:
d8:1a:28:e3:ea:ad:d8:92:08:b7:d3:b7:3b:f5:55:
60:64:cc:e0:bb:ea:47:7a:07:61:03:a2:13:73:69:
18:30:57:2f:cc:61:f1:51:45:65:75:6e:09:cf:b8:
37:67:0f:dd:0b:75:ff:10:e7:e0:17:40:96:fb:23:
43:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:AD:1B:D0:B0:96:28:C8:A7:E1:1D:5D:86:F5:3E:8D:23:51:94:D5
X509v3 Authority Key Identifier:
keyid:1F:4C:82:82:76:A9:96:68:65:AB:2B:59:53:3D:1C:B1:BE:C8:90:BB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/326131343a373538313a643130303a3a2f34302d3438203d3e203533363637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:d100::/40
Signature Algorithm: sha256WithRSAEncryption
48:dc:7e:95:29:54:52:bf:06:21:35:ba:13:43:bf:c1:81:6e:
65:a9:0e:1f:03:8a:5b:73:e8:e0:8e:82:6c:69:36:b5:55:5f:
38:7e:59:9e:87:5d:48:21:0e:70:cb:5a:78:37:ee:ea:35:9e:
14:05:86:33:e0:1f:2c:74:cf:f3:18:aa:d4:b9:b4:25:42:b5:
ce:78:b0:21:5e:96:fc:0c:99:03:a2:33:b8:cc:b6:fc:9b:a1:
d9:23:1c:8b:b0:1c:84:1f:bc:c1:5c:9e:ae:32:f2:c9:be:ff:
45:fc:36:35:ee:62:65:20:14:bd:c0:7d:0d:7a:04:c5:1a:a6:
46:52:d7:71:bf:64:02:07:91:29:0f:49:21:67:eb:d9:37:b4:
08:5a:7a:09:1a:ae:14:6f:d3:15:51:88:ba:ae:13:98:4c:7a:
14:c3:72:d0:e4:f8:ae:43:84:8c:91:a9:a0:85:43:13:11:b1:
46:30:50:4b:03:3a:ff:0e:aa:ba:49:19:b2:df:d8:ca:2b:7b:
0a:f6:1d:01:b8:7f:15:74:5b:30:7b:16:b7:94:8c:df:a7:6f:
69:2d:d4:bc:86:51:bf:1f:60:3b:5c:83:0a:14:f7:e1:ff:ee:
b9:9d:2f:6b:5f:4f:65:bc:9e:aa:74:c0:11:f6:bc:63:10:0d:
02:9a:c7:fa
-----BEGIN CERTIFICATE-----
MIIFeDCCBGCgAwIBAgIUDGjrqP4BwZqRzCgq1kDmS+bbekowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMUY0QzgyODI3NkE5OTY2ODY1QUIyQjU5NTMzRDFDQjFC
RUM4OTBCQjAeFw0yNDA2MjUxNDE3MzhaFw0yNTA2MjQxNDIyMzhaMDMxMTAvBgNV
BAMTKDQ1QUQxQkQwQjA5NjI4QzhBN0UxMUQ1RDg2RjUzRThEMjM1MTk0RDUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXirCul80PC2ny5gEtZqf+lNzx
GZtWqShFhEENm/I1Br4xLkVJomzugszmPOAQA77TBsLeah3es/i64iJUyMD+HXLd
Z+StiaNOIglwcoDEEHLr8nNjkRU+2YYN//VEs5dJ+V9xmuJOYQ9OCcoOlLTWTGJQ
qnBNGQ/l3U/LrndsKDBbrmWnEf4yaePnVyc+6EGq5UL8O4YHXhM/MktgaWrRzDfY
Wj1ZBfk1BphU2Nofmt4M3UH4vQYTIq5PW2GN4thuI9gaKOPqrdiSCLfTtzv1VWBk
zOC76kd6B2EDohNzaRgwVy/MYfFRRWV1bgnPuDdnD90Ldf8Q5+AXQJb7I0ObAgMB
AAGjggKCMIICfjAdBgNVHQ4EFgQURa0b0LCWKMin4R1dhvU+jSNRlNUwHwYDVR0j
BBgwFoAUH0yCgnaplmhlqytZUz0csb7IkLswDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYjU5YzEwNmMtNTNiNC00ZTkyLTlmYmEtZDYwODI3YjVi
ZGI4LzAvMUY0QzgyODI3NkE5OTY2ODY1QUIyQjU5NTMzRDFDQjFCRUM4OTBCQi5j
cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu
Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy
OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8xRjRDODI4Mjc2QTk5NjY4NjVBQjJCNTk1
MzNEMUNCMUJFQzg5MEJCLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF
BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9iNTljMTA2Yy01M2I0LTRlOTItOWZiYS1kNjA4MjdiNWJkYjgvMC8zMjYxMzEz
NDNhMzczNTM4MzEzYTY0MzEzMDMwM2EzYTJmMzQzMDJkMzQzODIwM2QzZTIwMzUz
MzM2MzYzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcB
BwEB/wQSMBAwDgQCAAIwCAMGACoUdYHRMA0GCSqGSIb3DQEBCwUAA4IBAQBI3H6V
KVRSvwYhNboTQ7/BgW5lqQ4fA4pbc+jgjoJsaTa1VV84flmeh11IIQ5wy1p4N+7q
NZ4UBYYz4B8sdM/zGKrUubQlQrXOeLAhXpb8DJkDojO4zLb8m6HZIxyLsByEH7zB
XJ6uMvLJvv9F/DY17mJlIBS9wH0NegTFGqZGUtdxv2QCB5EpD0khZ+vZN7QIWnoJ
Gq4Ub9MVUYi6rhOYTHoUw3LQ5PiuQ4SMkamghUMTEbFGMFBLAzr/Dqq6SRmy39jK
K3sK9h0BuH8VdFswexa3lIzfp29pLdS8hlG/H2A7XIMKFPfh/+65nS9rX09lvJ6q
dMAR9rxjEA0Cmsf6
-----END CERTIFICATE-----
Generated at Mon Sep 23 15:22:08 2024 by rpki-client on console-fra.rpki-client.org