Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/326131343a373538313a643330303a3a2f34302d3430203d3e2037353435.roa
File: 326131343a373538313a643330303a3a2f34302d3430203d3e2037353435.roa (raw, json)
Hash identifier: LBwr2IIvIEK5xOuNpQkeW83enlWLrYAsIaYysvPQEas=
Subject key identifier: 97:BD:0E:E4:1D:D8:30:5C:6C:98:71:68:CB:08:3C:FD:E6:A2:E8:D8
Certificate issuer: /CN=1F4C828276A9966865AB2B59533D1CB1BEC890BB
Certificate serial: 042E59987B3BC3813A226CF3923881BF3212840F
Authority key identifier: 1F:4C:82:82:76:A9:96:68:65:AB:2B:59:53:3D:1C:B1:BE:C8:90:BB
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/326131343a373538313a643330303a3a2f34302d3430203d3e2037353435.roa
Signing time: Wed 26 Jun 2024 01:24:46 +0000
ROA not before: Wed 26 Jun 2024 01:19:46 +0000
ROA not after: Wed 25 Jun 2025 01:24:46 +0000
asID: 7545
IP address blocks: 2a14:7581:d300::/40 maxlen: 40
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:2e:59:98:7b:3b:c3:81:3a:22:6c:f3:92:38:81:bf:32:12:84:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1F4C828276A9966865AB2B59533D1CB1BEC890BB
Validity
Not Before: Jun 26 01:19:46 2024 GMT
Not After : Jun 25 01:24:46 2025 GMT
Subject: CN=97BD0EE41DD8305C6C987168CB083CFDE6A2E8D8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:fa:24:49:1a:cf:f2:05:d2:ad:57:53:31:53:
a6:32:54:10:be:5b:0d:b2:a2:d5:a3:9a:43:cf:23:
e0:fb:20:2e:63:13:0b:65:fa:33:47:ef:2e:5e:6a:
51:93:82:6e:ed:c6:29:25:ee:09:6c:2c:3d:83:e1:
9f:cf:db:65:94:64:de:0b:d8:d3:8c:ce:e1:5e:c1:
7c:56:1d:61:74:10:24:71:ee:18:bf:be:64:97:5a:
15:71:33:24:01:6c:57:c6:0a:c0:4e:cd:f3:6f:7f:
95:f3:00:95:ec:50:a8:67:45:bc:61:e0:75:8b:5a:
77:7b:fa:ef:7a:4b:86:78:03:fb:09:1b:0c:46:c2:
5f:a8:37:f7:f5:c0:75:d9:30:91:46:69:b2:5e:8e:
ea:fe:57:83:01:2e:d1:d7:09:cf:c3:32:ef:ba:72:
27:78:7a:57:81:24:95:d9:18:f6:6c:f2:a4:cd:21:
62:c0:ae:c4:03:9d:7b:53:58:ae:56:9e:f4:b1:45:
ea:0b:0c:29:83:67:be:29:fa:3f:ea:7d:6e:79:31:
65:10:15:d5:12:86:3a:8d:76:c9:fb:64:af:b3:06:
d2:3d:f2:d6:e2:1c:01:66:3c:cc:2b:85:cf:0a:23:
05:9a:98:f2:b8:33:74:42:69:ca:7c:65:e2:90:bf:
d8:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:BD:0E:E4:1D:D8:30:5C:6C:98:71:68:CB:08:3C:FD:E6:A2:E8:D8
X509v3 Authority Key Identifier:
keyid:1F:4C:82:82:76:A9:96:68:65:AB:2B:59:53:3D:1C:B1:BE:C8:90:BB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/326131343a373538313a643330303a3a2f34302d3430203d3e2037353435.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:d300::/40
Signature Algorithm: sha256WithRSAEncryption
8e:8b:12:fe:6b:32:2f:16:7f:d3:57:ca:a3:f9:fe:11:67:b1:
ab:df:34:99:c4:02:e1:ac:57:b9:f4:73:f9:51:cf:37:e3:d9:
5e:14:5a:69:41:68:90:5d:cc:3b:e4:39:f4:5a:9c:f0:36:98:
d9:42:a0:3c:75:c3:77:7e:b6:2c:fc:ca:3d:34:93:f1:42:20:
8a:1f:a0:2f:7c:86:c0:c0:8f:78:2f:5d:e9:50:2c:14:a1:17:
ef:0e:4a:8b:ea:6b:fc:25:a1:ba:45:3b:62:20:0a:2c:04:8c:
b3:a2:7e:c3:4c:1e:1f:94:df:44:15:70:4a:8c:ba:fd:a9:19:
3f:26:e6:55:48:bc:b0:5b:7e:bf:1d:ba:aa:e9:3f:ac:b0:00:
e7:b4:e5:56:73:24:ab:8f:6e:3e:f8:cd:a3:75:eb:7e:28:2a:
44:c1:b3:f6:6a:eb:47:01:b2:39:8c:1a:09:23:e0:53:3a:68:
ab:03:64:49:17:6a:9a:c6:43:1c:dc:f7:21:5d:38:02:ac:e8:
6b:9a:6c:ae:a4:b1:ca:a9:7f:3d:2a:89:7e:4b:59:b2:03:bb:
5f:39:8f:95:b3:40:c6:36:cc:de:fd:37:cb:d1:1a:35:8d:30:
d0:c3:93:74:ed:fb:1c:8d:a2:9a:eb:91:f4:23:71:84:60:a0:
83:45:9f:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 23 15:22:08 2024 by rpki-client on console-fra.rpki-client.org