Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f536a1e4-3bf0-4352-9061-66694d2bcbd3/0/326130373a353463373a363030393a3a2f34382d3438203d3e20323135363035.roa
File: 326130373a353463373a363030393a3a2f34382d3438203d3e20323135363035.roa (raw, json)
Hash identifier: TSYY5YiMs3+6KOmylO+atN64gMOsnj8s+e9cAheU9yo=
Subject key identifier: B9:00:91:18:5C:E6:22:D9:51:E5:E8:4E:AD:2F:77:A1:C6:DC:CC:A2
Certificate issuer: /CN=F1ABD9429F3A733668CAC698C113A9E343C99B3E
Certificate serial: 0DCD00B52395C394A6C5037844AF486F1468FC3C
Authority key identifier: F1:AB:D9:42:9F:3A:73:36:68:CA:C6:98:C1:13:A9:E3:43:C9:9B:3E
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/F1ABD9429F3A733668CAC698C113A9E343C99B3E.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f536a1e4-3bf0-4352-9061-66694d2bcbd3/0/326130373a353463373a363030393a3a2f34382d3438203d3e20323135363035.roa
Signing time: Mon 04 Mar 2024 01:04:56 +0000
ROA not before: Mon 04 Mar 2024 00:59:56 +0000
ROA not after: Mon 03 Mar 2025 01:04:56 +0000
asID: 215605
IP address blocks: 2a07:54c7:6009::/48 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:cd:00:b5:23:95:c3:94:a6:c5:03:78:44:af:48:6f:14:68:fc:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F1ABD9429F3A733668CAC698C113A9E343C99B3E
Validity
Not Before: Mar 4 00:59:56 2024 GMT
Not After : Mar 3 01:04:56 2025 GMT
Subject: CN=B90091185CE622D951E5E84EAD2F77A1C6DCCCA2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a5:a8:d5:c8:4c:84:7e:28:c6:07:1a:a6:36:
63:9b:82:26:84:69:d8:a8:23:dc:04:1d:a2:35:ac:
cf:ff:04:a5:af:1f:cc:70:c1:2a:bf:cb:d4:5d:7e:
88:73:f6:7f:39:ad:90:94:6d:7b:38:ab:33:b7:30:
c4:fa:ca:0b:ff:1b:4b:da:b2:68:02:f1:f9:2f:2d:
64:f3:2a:f4:6d:8a:55:8a:87:60:bd:27:24:9e:43:
e5:37:fb:c3:d9:44:56:f8:51:85:71:a6:29:3f:f8:
4a:ab:08:01:b3:64:4a:1c:35:5a:72:7a:e7:4d:c4:
e1:52:b4:f8:76:27:86:04:03:d2:3e:8c:b2:e4:0b:
c2:b4:05:f4:14:8e:a4:05:3c:27:b0:b2:43:61:d2:
88:71:ef:40:29:8a:d7:bc:f1:da:48:f1:ac:9e:ac:
d8:fb:cf:8e:9d:a4:fa:e3:00:83:17:37:71:bd:f7:
56:d9:68:56:97:03:7b:f6:95:49:2b:d3:0d:33:39:
ed:05:30:b9:d9:bd:12:d9:0f:80:b5:8e:93:e6:ac:
3e:d9:e1:38:79:59:08:80:1d:95:0a:16:4b:50:b9:
71:60:1e:fa:1f:60:ab:88:19:a4:f4:a9:e0:4f:2b:
e5:7e:20:2a:41:36:cd:26:21:cf:0a:83:9b:c4:6b:
5f:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:00:91:18:5C:E6:22:D9:51:E5:E8:4E:AD:2F:77:A1:C6:DC:CC:A2
X509v3 Authority Key Identifier:
keyid:F1:AB:D9:42:9F:3A:73:36:68:CA:C6:98:C1:13:A9:E3:43:C9:9B:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f536a1e4-3bf0-4352-9061-66694d2bcbd3/0/F1ABD9429F3A733668CAC698C113A9E343C99B3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/F1ABD9429F3A733668CAC698C113A9E343C99B3E.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f536a1e4-3bf0-4352-9061-66694d2bcbd3/0/326130373a353463373a363030393a3a2f34382d3438203d3e20323135363035.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:54c7:6009::/48
Signature Algorithm: sha256WithRSAEncryption
37:a4:d2:e8:23:9e:88:8f:85:a5:68:c2:2a:39:56:2c:48:65:
cc:b7:03:16:2a:5f:97:07:b8:f9:2f:c0:9d:f6:94:ef:97:60:
9f:0d:59:38:72:42:c8:d8:c5:57:ba:17:6a:0e:a2:05:2a:98:
a5:71:a2:f8:d7:4d:8b:08:2a:14:ce:99:5d:35:cd:6b:43:08:
37:07:c6:3e:23:32:a0:4b:71:92:41:9d:aa:d9:51:e8:6c:4d:
64:5b:46:56:03:22:4f:a3:79:b4:f4:00:81:4b:7c:69:3f:6f:
d6:8d:2a:0c:8d:d2:fc:55:7f:49:ad:63:d0:16:66:27:50:51:
f0:94:48:5c:2a:cb:a8:a7:b8:f6:f9:1e:2b:2e:9a:4c:e4:43:
13:bf:eb:c8:9a:93:57:aa:88:a6:7a:06:17:56:e6:ea:8c:b7:
7b:bd:0b:83:f3:55:84:19:15:45:ca:54:5b:fb:c8:94:07:c6:
aa:28:e1:64:6c:f4:0b:04:b1:66:71:e3:a6:14:93:fb:cc:e7:
df:b4:40:52:df:ae:5d:3d:86:96:11:d0:bb:f7:fc:ac:ba:53:
bd:c7:66:02:25:07:e7:85:76:64:06:f5:19:a5:04:13:80:d1:
2d:7d:9c:f0:fd:9f:0e:f2:6d:05:d5:3d:ef:2d:1f:89:7f:0c:
16:43:60:96
-----BEGIN CERTIFICATE-----
MIIFezCCBGOgAwIBAgIUDc0AtSOVw5SmxQN4RK9IbxRo/DwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRjFBQkQ5NDI5RjNBNzMzNjY4Q0FDNjk4QzExM0E5RTM0
M0M5OUIzRTAeFw0yNDAzMDQwMDU5NTZaFw0yNTAzMDMwMTA0NTZaMDMxMTAvBgNV
BAMTKEI5MDA5MTE4NUNFNjIyRDk1MUU1RTg0RUFEMkY3N0ExQzZEQ0NDQTIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/pajVyEyEfijGBxqmNmObgiaE
adioI9wEHaI1rM//BKWvH8xwwSq/y9Rdfohz9n85rZCUbXs4qzO3MMT6ygv/G0va
smgC8fkvLWTzKvRtilWKh2C9JySeQ+U3+8PZRFb4UYVxpik/+EqrCAGzZEocNVpy
eudNxOFStPh2J4YEA9I+jLLkC8K0BfQUjqQFPCewskNh0ohx70Apite88dpI8aye
rNj7z46dpPrjAIMXN3G991bZaFaXA3v2lUkr0w0zOe0FMLnZvRLZD4C1jpPmrD7Z
4Th5WQiAHZUKFktQuXFgHvofYKuIGaT0qeBPK+V+ICpBNs0mIc8Kg5vEa19ZAgMB
AAGjggKFMIICgTAdBgNVHQ4EFgQUuQCRGFzmItlR5ehOrS93ocbczKIwHwYDVR0j
BBgwFoAU8avZQp86czZoysaYwROp40PJmz4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZjUzNmExZTQtM2JmMC00MzUyLTkwNjEtNjY2OTRkMmJj
YmQzLzAvRjFBQkQ5NDI5RjNBNzMzNjY4Q0FDNjk4QzExM0E5RTM0M0M5OUIzRS5j
cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu
Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9hYTAwNGJhMS00MTliLTRk
YjUtYmJkMy01Y2NhNjMzY2FlM2YvMC9GMUFCRDk0MjlGM0E3MzM2NjhDQUM2OThD
MTEzQTlFMzQzQzk5QjNFLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF
BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9mNTM2YTFlNC0zYmYwLTQzNTItOTA2MS02NjY5NGQyYmNiZDMvMC8zMjYxMzAz
NzNhMzUzNDYzMzczYTM2MzAzMDM5M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz
MTM1MzYzMDM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF
BwEHAQH/BBMwETAPBAIAAjAJAwcAKgdUx2AJMA0GCSqGSIb3DQEBCwUAA4IBAQA3
pNLoI56Ij4WlaMIqOVYsSGXMtwMWKl+XB7j5L8Cd9pTvl2CfDVk4ckLI2MVXuhdq
DqIFKpilcaL4102LCCoUzpldNc1rQwg3B8Y+IzKgS3GSQZ2q2VHobE1kW0ZWAyJP
o3m09ACBS3xpP2/WjSoMjdL8VX9JrWPQFmYnUFHwlEhcKsuop7j2+R4rLppM5EMT
v+vImpNXqoimegYXVubqjLd7vQuD81WEGRVFylRb+8iUB8aqKOFkbPQLBLFmceOm
FJP7zOfftEBS365dPYaWEdC79/ysulO9x2YCJQfnhXZkBvUZpQQTgNEtfZzw/Z8O
8m0F1T3vLR+JfwwWQ2CW
-----END CERTIFICATE-----
Generated at Mon Oct 21 19:13:57 2024 by rpki-client on console-fra.rpki-client.org