Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bc90f4f6-f2c4-4882-91cf-9b8f0b38d7da/1/326130373a353463313a333830303a3a2f34302d3430203d3e203437323732.roa
File: 326130373a353463313a333830303a3a2f34302d3430203d3e203437323732.roa (raw, json)
Hash identifier: 1A2/5y4OBLPAMsQj/6+q22xyO5fi3syRpT1U4pQus/U=
Subject key identifier: CA:B4:14:DF:DE:D8:E1:93:F8:B7:A4:11:08:AE:D2:07:DC:3C:50:10
Certificate issuer: /CN=CEE50F8654426B5A60EE8C52A9AE958F8D77B848
Certificate serial: 708E0FD0D24BF5C087BDB8307FE50E836040B62C
Authority key identifier: CE:E5:0F:86:54:42:6B:5A:60:EE:8C:52:A9:AE:95:8F:8D:77:B8:48
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/CEE50F8654426B5A60EE8C52A9AE958F8D77B848.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bc90f4f6-f2c4-4882-91cf-9b8f0b38d7da/1/326130373a353463313a333830303a3a2f34302d3430203d3e203437323732.roa
Signing time: Tue 24 Oct 2023 18:29:32 +0000
ROA not before: Tue 24 Oct 2023 18:24:32 +0000
ROA not after: Tue 22 Oct 2024 18:29:32 +0000
asID: 47272
IP address blocks: 2a07:54c1:3800::/40 maxlen: 40
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:8e:0f:d0:d2:4b:f5:c0:87:bd:b8:30:7f:e5:0e:83:60:40:b6:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CEE50F8654426B5A60EE8C52A9AE958F8D77B848
Validity
Not Before: Oct 24 18:24:32 2023 GMT
Not After : Oct 22 18:29:32 2024 GMT
Subject: CN=CAB414DFDED8E193F8B7A41108AED207DC3C5010
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:e6:10:66:ec:21:6b:2d:57:46:8a:e0:4a:fa:
b6:f3:4b:d6:f0:8c:53:9c:fa:7d:9b:50:03:29:cb:
1c:14:fe:60:1a:a1:8c:b8:5d:10:ce:ce:8d:05:01:
dc:63:1a:9a:52:f0:9e:4e:d2:c9:df:20:a0:02:03:
b3:a4:6f:5f:4a:9b:51:21:3b:63:83:67:f0:70:be:
e2:f1:5f:e9:c2:29:df:90:fd:70:eb:9c:7b:b5:6c:
d6:05:30:d4:be:2c:f7:a0:1f:41:07:23:b2:51:94:
52:d1:cc:2f:da:6d:71:67:cf:98:e5:4a:11:31:fc:
5f:b1:df:e1:04:68:78:2d:6a:f3:bf:34:7f:1f:b2:
20:37:79:5d:c5:bc:8b:1f:25:8b:b1:26:c9:db:0c:
d6:b2:41:e0:1b:d8:1b:ab:64:5c:b8:90:64:06:8b:
05:92:19:ef:0a:99:46:07:33:4c:ae:e3:87:10:1a:
bc:24:eb:e4:62:3a:fa:ee:ab:00:26:d6:c1:b1:0b:
16:92:2a:0f:51:9b:f9:f8:88:2e:d1:94:ab:7e:77:
85:65:b0:5b:36:fd:63:4e:64:9c:70:31:cd:1b:2f:
68:d5:84:34:cd:70:11:e8:97:7d:b1:c2:77:21:b4:
64:ce:02:61:ba:d9:a5:fc:a6:68:b2:ef:30:7f:fb:
21:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:B4:14:DF:DE:D8:E1:93:F8:B7:A4:11:08:AE:D2:07:DC:3C:50:10
X509v3 Authority Key Identifier:
keyid:CE:E5:0F:86:54:42:6B:5A:60:EE:8C:52:A9:AE:95:8F:8D:77:B8:48
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/bc90f4f6-f2c4-4882-91cf-9b8f0b38d7da/1/CEE50F8654426B5A60EE8C52A9AE958F8D77B848.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/CEE50F8654426B5A60EE8C52A9AE958F8D77B848.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bc90f4f6-f2c4-4882-91cf-9b8f0b38d7da/1/326130373a353463313a333830303a3a2f34302d3430203d3e203437323732.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:54c1:3800::/40
Signature Algorithm: sha256WithRSAEncryption
09:de:0d:c3:27:ba:f7:9b:22:e5:2a:2b:27:aa:22:47:f3:5e:
34:eb:82:22:1e:78:b0:18:98:f8:04:39:96:c6:10:9d:34:9c:
b7:44:5b:c0:3a:5c:f4:35:34:04:46:8c:08:f1:14:8d:8b:22:
16:41:61:8f:1b:22:87:65:ec:55:f9:c1:02:13:96:6c:91:54:
f1:24:9d:8d:44:6d:79:6e:8c:88:39:2a:88:b9:f3:9e:48:64:
25:7d:04:94:5b:16:ef:16:ba:e0:5b:59:b7:8f:31:5d:43:ba:
8d:08:dc:a0:0e:8e:77:14:93:d9:80:3a:d6:11:11:20:c4:63:
1d:ab:4c:c2:02:9b:ca:98:9f:73:d3:d1:68:43:d4:0a:9b:e1:
87:a9:f6:b0:fd:0a:01:f9:c8:49:85:93:ff:a8:dc:f2:eb:b4:
0f:9a:5c:3d:6e:ad:7f:59:37:a5:9a:8e:2c:0a:1a:bf:69:1e:
db:a9:7b:cb:42:76:0e:1a:ec:c0:a7:6b:02:08:f0:38:6a:d4:
19:cc:7e:80:85:cd:79:b8:f3:9d:77:6e:46:fa:aa:d6:4f:7e:
bd:94:70:41:ac:19:57:cd:bc:f2:1f:be:d4:fa:b5:c9:83:1d:
fc:87:7d:4a:56:48:08:e4:32:48:a4:38:49:b3:3d:7f:4c:69:
32:67:59:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:17 2024 by rpki-client on console-fra.rpki-client.org