Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f536a1e4-3bf0-4352-9061-66694d2bcbd3/0/326130373a353463373a363030353a3a2f34382d3438203d3e20323136333630.roa
File: 326130373a353463373a363030353a3a2f34382d3438203d3e20323136333630.roa (raw, json)
Hash identifier: NjIv1eMlyEwzJi0vlOEd6MJpvMq4M1rK+JuvJ16ubAc=
Subject key identifier: 40:0B:1C:0F:42:13:63:69:28:02:93:24:DE:E0:FA:AF:24:9E:16:6E
Certificate issuer: /CN=F1ABD9429F3A733668CAC698C113A9E343C99B3E
Certificate serial: 1270A1C0556142D06697952ACE0B72BC4AF9AD2A
Authority key identifier: F1:AB:D9:42:9F:3A:73:36:68:CA:C6:98:C1:13:A9:E3:43:C9:9B:3E
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/F1ABD9429F3A733668CAC698C113A9E343C99B3E.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f536a1e4-3bf0-4352-9061-66694d2bcbd3/0/326130373a353463373a363030353a3a2f34382d3438203d3e20323136333630.roa
Signing time: Mon 04 Mar 2024 01:04:27 +0000
ROA not before: Mon 04 Mar 2024 00:59:27 +0000
ROA not after: Mon 03 Mar 2025 01:04:27 +0000
asID: 216360
IP address blocks: 2a07:54c7:6005::/48 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:70:a1:c0:55:61:42:d0:66:97:95:2a:ce:0b:72:bc:4a:f9:ad:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F1ABD9429F3A733668CAC698C113A9E343C99B3E
Validity
Not Before: Mar 4 00:59:27 2024 GMT
Not After : Mar 3 01:04:27 2025 GMT
Subject: CN=400B1C0F4213636928029324DEE0FAAF249E166E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:bc:6f:f5:ff:6d:91:36:f8:b1:15:bb:04:32:
a4:76:b3:fc:39:d9:6a:04:40:db:00:aa:16:77:3b:
06:e3:69:96:3c:d1:3d:42:1c:18:c0:ea:ba:e2:f2:
37:ce:f2:3c:0f:a7:8f:c2:e4:4d:1a:ba:55:1f:85:
32:77:29:f4:e1:2d:a1:60:0c:cf:30:91:9b:fd:07:
90:a8:93:fc:ba:4d:6d:80:37:c1:7b:71:46:d4:86:
b1:e8:48:5f:ad:ce:d6:7e:00:97:61:5b:8e:87:ac:
12:a7:95:0f:62:f0:f1:12:b6:c6:b5:02:23:be:db:
c9:98:29:89:88:74:8b:8b:df:7a:e8:ec:2f:f2:ce:
86:11:4d:90:c5:ec:39:23:24:ad:b6:66:63:f3:22:
b4:f2:ac:bf:36:20:8f:b4:ac:aa:15:28:89:5e:33:
ea:dc:3b:e4:f3:38:18:75:08:c7:13:5f:28:81:bc:
39:3a:63:5c:b0:a7:97:59:13:ee:a4:dc:cb:72:8a:
e8:53:2d:5a:71:6f:cc:30:ed:08:a0:fc:2d:c7:3c:
35:08:34:87:a8:69:c6:c1:ee:72:4a:89:5f:f7:fc:
69:01:80:a2:7d:ff:9e:22:d7:dd:f1:18:5b:98:9e:
5b:c5:10:4a:e7:c2:45:85:2b:5f:3e:46:fe:9c:07:
66:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:0B:1C:0F:42:13:63:69:28:02:93:24:DE:E0:FA:AF:24:9E:16:6E
X509v3 Authority Key Identifier:
keyid:F1:AB:D9:42:9F:3A:73:36:68:CA:C6:98:C1:13:A9:E3:43:C9:9B:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f536a1e4-3bf0-4352-9061-66694d2bcbd3/0/F1ABD9429F3A733668CAC698C113A9E343C99B3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/F1ABD9429F3A733668CAC698C113A9E343C99B3E.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f536a1e4-3bf0-4352-9061-66694d2bcbd3/0/326130373a353463373a363030353a3a2f34382d3438203d3e20323136333630.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:54c7:6005::/48
Signature Algorithm: sha256WithRSAEncryption
cb:1f:45:c9:41:36:b3:47:c1:a5:56:67:54:ff:61:62:d8:85:
e6:06:c6:fb:de:5d:72:23:b4:be:c0:f4:7a:42:60:fe:c4:05:
be:6d:8b:12:6d:91:a8:3e:25:26:e7:9c:d6:7b:e0:cb:bd:fe:
0f:76:6f:d1:bd:21:84:88:d7:0f:47:89:f4:62:d8:ed:0e:98:
ba:62:bd:e8:6e:7d:dc:bc:2c:33:01:70:84:69:d7:3d:9e:16:
d1:0b:ad:f2:b7:24:bc:95:d5:10:a4:48:73:aa:06:07:67:a4:
2a:47:95:ec:ac:38:50:69:12:49:ca:29:8f:69:c8:ea:56:04:
ca:37:1e:8d:a4:2c:be:08:d9:26:78:86:c5:28:ac:09:fc:aa:
43:5e:54:70:c5:d9:74:98:86:25:ee:bc:a5:db:28:66:84:10:
f9:9e:a7:46:1e:e9:f2:a8:31:f7:ee:0f:8d:06:75:d8:19:a3:
33:fc:d6:d9:dc:17:6d:64:b1:2d:67:7c:b6:37:67:89:b3:28:
6d:fb:27:97:b8:52:82:cd:0e:63:c0:6e:c1:7b:af:59:0d:a4:
f7:f9:0b:88:eb:71:a8:6f:38:83:49:70:68:07:31:3e:af:c9:
c2:86:ec:cf:a7:12:63:8f:e8:4c:c3:98:d6:22:55:e0:94:a9:
cf:44:ef:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 19:38:58 2024 by rpki-client on console-ams.rpki-client.org