Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f536a1e4-3bf0-4352-9061-66694d2bcbd3/0/326130373a353463373a363030363a3a2f34382d3438203d3e20323033303639.roa
File: 326130373a353463373a363030363a3a2f34382d3438203d3e20323033303639.roa (raw, json)
Hash identifier: tNQIe2ZQ9jOVgp9Yp3FuhqV8ssPjO4/h60zQHkQAEBk=
Subject key identifier: 75:44:5E:DE:78:1D:62:54:3C:A8:CF:15:9E:62:B6:70:C4:C9:3B:A8
Certificate issuer: /CN=F1ABD9429F3A733668CAC698C113A9E343C99B3E
Certificate serial: 64BB27A9EEE160B8A9E955B55B2C5A536AE74821
Authority key identifier: F1:AB:D9:42:9F:3A:73:36:68:CA:C6:98:C1:13:A9:E3:43:C9:9B:3E
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/F1ABD9429F3A733668CAC698C113A9E343C99B3E.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f536a1e4-3bf0-4352-9061-66694d2bcbd3/0/326130373a353463373a363030363a3a2f34382d3438203d3e20323033303639.roa
Signing time: Mon 04 Mar 2024 01:04:05 +0000
ROA not before: Mon 04 Mar 2024 00:59:05 +0000
ROA not after: Mon 03 Mar 2025 01:04:05 +0000
asID: 203069
IP address blocks: 2a07:54c7:6006::/48 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:bb:27:a9:ee:e1:60:b8:a9:e9:55:b5:5b:2c:5a:53:6a:e7:48:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F1ABD9429F3A733668CAC698C113A9E343C99B3E
Validity
Not Before: Mar 4 00:59:05 2024 GMT
Not After : Mar 3 01:04:05 2025 GMT
Subject: CN=75445EDE781D62543CA8CF159E62B670C4C93BA8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:4c:b9:c2:18:aa:0d:ea:6b:7f:8d:c9:23:75:
e9:e0:f1:fe:0f:03:83:bb:37:61:b0:c6:73:a4:27:
ef:2c:e1:e9:11:e4:83:a9:db:fd:47:89:b9:ba:3c:
0a:1b:c4:86:4c:a8:65:c2:c0:aa:d3:22:fa:6e:bf:
23:4e:f0:95:cb:db:55:f0:e4:a9:37:7e:5a:eb:cb:
97:8d:82:2a:6b:6b:87:a6:34:0a:e5:31:a0:ec:58:
0e:50:33:6b:21:ff:8e:16:10:f8:21:06:b5:bc:87:
2d:57:9f:69:b0:36:bd:8d:45:56:70:be:ac:51:a3:
b0:a3:7e:0d:dd:f9:c9:5b:6e:78:3e:c8:97:83:25:
3a:95:34:16:42:64:e4:63:7d:13:bf:3d:72:0e:74:
c0:fb:f8:c3:a9:36:2b:2a:2f:57:f7:a2:1b:62:af:
9c:68:68:ac:3c:4f:5f:95:db:e4:56:ed:f9:72:3a:
b5:3b:b4:f1:f5:b8:5a:c5:03:93:cb:75:54:9e:f6:
64:e2:3c:84:3a:f8:b9:57:83:41:5b:c0:2e:53:9a:
fd:b2:1d:cb:35:8d:10:bc:99:83:0e:f0:e3:bd:d6:
50:e4:6e:c1:f5:e3:ed:65:e9:b9:2c:20:03:82:a3:
ae:1a:b3:75:f4:70:12:d7:f0:b5:cd:b8:7a:f2:35:
ff:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:44:5E:DE:78:1D:62:54:3C:A8:CF:15:9E:62:B6:70:C4:C9:3B:A8
X509v3 Authority Key Identifier:
keyid:F1:AB:D9:42:9F:3A:73:36:68:CA:C6:98:C1:13:A9:E3:43:C9:9B:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f536a1e4-3bf0-4352-9061-66694d2bcbd3/0/F1ABD9429F3A733668CAC698C113A9E343C99B3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/F1ABD9429F3A733668CAC698C113A9E343C99B3E.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f536a1e4-3bf0-4352-9061-66694d2bcbd3/0/326130373a353463373a363030363a3a2f34382d3438203d3e20323033303639.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:54c7:6006::/48
Signature Algorithm: sha256WithRSAEncryption
ba:64:96:db:f5:bc:ab:14:7f:b4:f8:cc:a0:6b:aa:42:26:f9:
55:d8:f2:48:4a:84:1d:a1:34:26:7f:6e:79:cd:4f:d8:1f:49:
95:c2:9f:8a:b2:73:92:d9:f5:b9:a5:a6:85:e5:57:3c:77:3f:
27:88:e6:90:32:6b:4e:53:d8:ea:03:95:1d:d7:97:3e:e0:71:
41:31:6d:3a:da:85:db:61:fd:96:3d:80:d8:4a:5a:52:47:25:
ad:88:48:91:ab:c1:a7:41:2a:8a:98:3d:45:09:b1:bd:8a:a8:
c2:9c:81:da:be:82:e9:f6:60:f3:fe:6c:75:6a:be:2a:fc:0b:
c2:4d:6d:13:3c:0a:4b:4e:d8:c4:25:20:76:98:b0:31:62:83:
4f:e4:60:c3:85:4a:b7:ac:e3:62:26:cf:1a:58:9e:7b:af:a7:
ae:f1:1b:00:63:8a:04:de:0d:a2:16:32:0a:ef:25:9a:f6:bb:
0e:b8:2b:fc:2b:90:02:90:de:a6:01:ae:39:31:90:8b:b6:16:
6b:82:98:9c:fa:bf:82:5d:68:9a:81:b7:45:7e:ec:51:49:c2:
3e:84:e0:73:90:92:1d:98:0b:74:10:a9:99:ff:92:17:7a:80:
10:99:f6:c6:e7:12:59:76:cf:7a:07:3e:db:6b:11:a5:67:44:
aa:09:eb:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 19:13:57 2024 by rpki-client on console-fra.rpki-client.org