Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bc90f4f6-f2c4-4882-91cf-9b8f0b38d7da/1/326130373a353463313a333830303a3a2f34302d3438203d3e2030.roa
File: 326130373a353463313a333830303a3a2f34302d3438203d3e2030.roa (raw, json)
Hash identifier: uHfPRNDrLyZ6E+2hGbOG1escINpka9gy1Ott5LImB64=
Subject key identifier: 99:27:D9:D7:32:AE:E3:4E:A6:8C:AA:28:85:77:41:0B:D2:37:6C:0E
Certificate issuer: /CN=CEE50F8654426B5A60EE8C52A9AE958F8D77B848
Certificate serial: 0495FB40D02FA61C7BB0E84DB9853F127A2303D6
Authority key identifier: CE:E5:0F:86:54:42:6B:5A:60:EE:8C:52:A9:AE:95:8F:8D:77:B8:48
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/CEE50F8654426B5A60EE8C52A9AE958F8D77B848.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bc90f4f6-f2c4-4882-91cf-9b8f0b38d7da/1/326130373a353463313a333830303a3a2f34302d3438203d3e2030.roa
Signing time: Fri 22 Sep 2023 17:30:45 +0000
ROA not before: Fri 22 Sep 2023 17:25:45 +0000
ROA not after: Fri 20 Sep 2024 17:30:45 +0000
asID: 0
IP address blocks: 2a07:54c1:3800::/40 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:95:fb:40:d0:2f:a6:1c:7b:b0:e8:4d:b9:85:3f:12:7a:23:03:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CEE50F8654426B5A60EE8C52A9AE958F8D77B848
Validity
Not Before: Sep 22 17:25:45 2023 GMT
Not After : Sep 20 17:30:45 2024 GMT
Subject: CN=9927D9D732AEE34EA68CAA288577410BD2376C0E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:44:21:79:bf:f0:75:cb:d7:eb:82:9f:d9:e0:
da:2d:72:70:f3:e2:54:0e:23:f5:39:e8:7b:f7:a2:
30:d3:43:cb:9b:cf:a3:b6:32:e6:97:84:a8:20:54:
a0:b9:ef:b8:41:26:75:0c:4c:d7:05:97:0c:9b:76:
f7:65:a4:5c:d0:40:92:b5:50:9b:2c:21:02:5b:c0:
1b:21:c5:1f:e3:8a:83:fb:e5:91:2a:60:e2:f9:67:
7e:51:98:41:c4:0b:f8:f3:07:56:b9:40:72:ed:f6:
f5:df:22:55:a9:bd:05:30:ea:44:70:46:cb:b2:2a:
d2:1d:dd:3c:d2:b9:f6:42:ac:52:78:1e:d6:c4:f3:
bc:55:45:c2:04:9b:18:aa:0c:70:e0:c7:f6:9b:47:
2b:be:9a:81:e1:71:5e:d2:86:c0:5f:94:4b:ba:6a:
65:df:b0:26:34:83:a3:36:5f:fd:7b:3d:2d:bf:3f:
dc:a9:a7:86:b1:10:ed:56:a3:1a:0a:c9:de:d2:46:
bb:20:da:80:a0:24:b3:3d:3f:b0:d4:14:4d:20:13:
89:d5:a0:39:24:07:ab:89:e4:2c:21:4b:09:2e:82:
7f:42:48:1a:02:13:26:d7:a1:e6:33:ff:ca:0f:4d:
45:67:cf:b5:02:12:2c:f4:b3:5b:4b:64:f4:27:5b:
de:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:27:D9:D7:32:AE:E3:4E:A6:8C:AA:28:85:77:41:0B:D2:37:6C:0E
X509v3 Authority Key Identifier:
keyid:CE:E5:0F:86:54:42:6B:5A:60:EE:8C:52:A9:AE:95:8F:8D:77:B8:48
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/bc90f4f6-f2c4-4882-91cf-9b8f0b38d7da/1/CEE50F8654426B5A60EE8C52A9AE958F8D77B848.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/CEE50F8654426B5A60EE8C52A9AE958F8D77B848.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bc90f4f6-f2c4-4882-91cf-9b8f0b38d7da/1/326130373a353463313a333830303a3a2f34302d3438203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:54c1:3800::/40
Signature Algorithm: sha256WithRSAEncryption
34:16:a8:bc:b8:39:50:c7:56:f0:30:73:43:31:72:ee:22:43:
cc:b9:a7:c6:49:ef:49:e6:74:43:ad:35:6d:4c:3c:8b:c0:e9:
d2:6d:05:55:58:04:bb:dc:56:cb:49:ca:55:c4:8d:6e:c1:9c:
c1:68:56:71:ce:47:24:84:17:2a:c0:9d:33:8f:4f:ef:ee:38:
f4:d5:35:65:3c:55:e6:74:1c:26:60:ee:65:d7:5e:1e:0d:2d:
e8:82:50:ea:10:77:e9:94:c7:ec:0b:b5:13:f3:10:6c:3d:5e:
27:76:b8:ea:6a:e9:3e:d3:bc:49:a4:d3:99:65:b9:cd:53:59:
d4:b5:dd:70:53:c5:d4:4e:e2:94:e2:c0:b6:2c:59:f4:dc:dc:
c8:c5:9c:70:fc:dc:da:59:0b:40:00:a1:52:f8:7d:c1:2d:a1:
ba:d9:18:e3:ca:06:58:a6:a1:fb:3b:0b:56:b9:94:8e:82:ba:
df:41:80:3a:66:a4:e0:55:da:63:c1:f5:48:3c:2b:32:71:63:
21:7f:7e:ba:f9:e2:45:34:27:7b:b9:dc:76:0a:2c:d9:2a:40:
a3:29:1b:2d:f9:11:fc:d8:ad:dc:f5:c6:9c:ea:ad:6a:d1:09:
1c:1b:00:1c:10:7a:c0:06:67:1a:4e:80:62:c7:0c:2a:03:bd:
52:1f:9b:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:17 2024 by rpki-client on console-fra.rpki-client.org