Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d88b854e-092c-4d79-ac06-af380b08d12b/1/326130613a363034343a376630303a3a2f34302d3438203d3e20323134333933.roa
File: 326130613a363034343a376630303a3a2f34302d3438203d3e20323134333933.roa (raw, json)
Hash identifier: 1uvmuBw4a2dmgbzYLZG0jKMeAUIFyE/DrrY4ylmdizc=
Subject key identifier: 83:EF:E9:B9:18:8D:ED:63:3C:25:D6:3C:85:B5:0D:2B:37:6F:6F:9D
Certificate issuer: /CN=1928ED08371113BCA6F090EFF11C55CDEEE83A31
Certificate serial: 1854D0D796D41C2A498560568193E1246415B1F2
Authority key identifier: 19:28:ED:08:37:11:13:BC:A6:F0:90:EF:F1:1C:55:CD:EE:E8:3A:31
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/1928ED08371113BCA6F090EFF11C55CDEEE83A31.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d88b854e-092c-4d79-ac06-af380b08d12b/1/326130613a363034343a376630303a3a2f34302d3438203d3e20323134333933.roa
Signing time: Mon 26 Aug 2024 13:52:18 +0000
ROA not before: Mon 26 Aug 2024 13:47:18 +0000
ROA not after: Mon 25 Aug 2025 13:52:18 +0000
asID: 214393
IP address blocks: 2a0a:6044:7f00::/40 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:54:d0:d7:96:d4:1c:2a:49:85:60:56:81:93:e1:24:64:15:b1:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1928ED08371113BCA6F090EFF11C55CDEEE83A31
Validity
Not Before: Aug 26 13:47:18 2024 GMT
Not After : Aug 25 13:52:18 2025 GMT
Subject: CN=83EFE9B9188DED633C25D63C85B50D2B376F6F9D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:1d:b5:7a:58:e7:51:ff:22:3d:b0:65:54:05:
92:7a:96:1f:8b:ee:49:0c:29:15:47:ad:72:ab:95:
3a:56:ec:ee:23:e2:b6:81:9b:90:e5:74:90:5c:0f:
49:c5:a1:3c:56:ff:05:49:28:cf:d8:a5:af:6a:85:
37:b7:ba:4f:e3:db:d8:6c:52:8b:8a:f7:d3:07:47:
b2:2c:91:f6:6a:ed:44:cd:37:a4:48:6e:ef:cd:a4:
f0:3b:45:f8:b9:28:72:29:bb:1e:b8:10:06:a8:b2:
7b:6a:4f:08:8b:37:31:ee:2c:c0:67:37:a6:56:92:
2e:37:56:26:fe:52:08:d0:d2:ec:6e:60:8a:3a:17:
b1:92:2a:c1:1e:f4:6e:a6:d2:13:ef:b3:5c:2c:1d:
9c:75:20:1e:09:84:e2:cc:a4:6e:10:6f:b1:e8:59:
98:2b:a1:77:56:2c:c9:6b:9c:ac:d4:0a:e6:60:44:
91:98:eb:b3:ee:28:79:c2:ea:f3:dd:1c:94:00:5e:
03:72:b2:d4:ca:5d:2d:59:aa:10:37:20:80:50:83:
7a:82:0d:c6:87:73:d9:bb:7e:c9:ce:5a:b5:7d:e0:
b0:6e:dc:47:46:9d:fe:d0:78:1f:21:c8:36:79:de:
89:db:0a:8c:59:bc:d9:5e:29:3a:22:4b:00:ab:1b:
a6:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:EF:E9:B9:18:8D:ED:63:3C:25:D6:3C:85:B5:0D:2B:37:6F:6F:9D
X509v3 Authority Key Identifier:
keyid:19:28:ED:08:37:11:13:BC:A6:F0:90:EF:F1:1C:55:CD:EE:E8:3A:31
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d88b854e-092c-4d79-ac06-af380b08d12b/1/1928ED08371113BCA6F090EFF11C55CDEEE83A31.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/1928ED08371113BCA6F090EFF11C55CDEEE83A31.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d88b854e-092c-4d79-ac06-af380b08d12b/1/326130613a363034343a376630303a3a2f34302d3438203d3e20323134333933.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6044:7f00::/40
Signature Algorithm: sha256WithRSAEncryption
58:dd:5b:43:9a:38:ff:af:1b:12:2b:2e:c8:66:f6:14:a7:18:
1e:1d:78:82:aa:9b:b8:0a:17:b7:c8:9c:5b:d0:df:12:53:36:
72:81:19:8c:58:a7:c0:06:7e:57:d9:57:2f:09:3c:3b:fe:69:
10:48:91:cd:da:fd:5d:e4:f2:3f:fb:88:bf:25:ea:ae:bf:4f:
5b:31:9d:c3:42:94:76:dc:2a:d3:13:4f:45:bd:68:79:dc:ab:
69:9f:06:95:e3:14:84:d3:3b:22:f9:ca:cb:da:6f:a9:33:25:
96:f1:4a:a9:c2:e7:2d:49:a9:86:1c:fa:e8:0a:61:93:f1:d2:
d6:ec:2a:f4:57:d8:1d:3e:43:8e:93:51:ab:98:21:a8:f2:ab:
cc:7e:c4:6f:1f:1a:15:13:26:66:7f:8f:29:ce:b4:46:0b:69:
cd:e7:e2:14:f5:bb:b4:5a:bb:02:b9:af:37:52:79:0e:b6:56:
d9:4d:0a:b0:15:8b:a2:34:2e:10:d6:87:ed:4f:a0:2f:ac:9f:
ef:7f:d3:4d:89:39:ad:a9:9d:61:a2:a0:9d:62:60:7d:9b:72:
ac:a4:ec:6c:23:ac:4d:84:c7:b2:23:1d:f2:94:d1:fa:e0:81:
85:05:1c:74:f0:bf:50:13:25:8e:c9:eb:2f:d6:40:9f:ed:52:
de:41:79:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 29 22:37:37 2024 by rpki-client on console-ams.rpki-client.org