Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f536a1e4-3bf0-4352-9061-66694d2bcbd3/0/326130373a353463373a363030643a3a2f34382d3438203d3e20323136313332.roa
File: 326130373a353463373a363030643a3a2f34382d3438203d3e20323136313332.roa (raw, json)
Hash identifier: NdMeuxS726T89DO5eVcEnlxXRDo5JCgSymBZrZjG718=
Subject key identifier: 00:90:6E:F0:80:DC:27:E7:DD:98:5E:23:3C:BA:62:32:EB:47:D6:3A
Certificate issuer: /CN=F1ABD9429F3A733668CAC698C113A9E343C99B3E
Certificate serial: 4397A21FB1DBAFA564B8CB20B049F80BCBDFFB21
Authority key identifier: F1:AB:D9:42:9F:3A:73:36:68:CA:C6:98:C1:13:A9:E3:43:C9:9B:3E
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/F1ABD9429F3A733668CAC698C113A9E343C99B3E.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f536a1e4-3bf0-4352-9061-66694d2bcbd3/0/326130373a353463373a363030643a3a2f34382d3438203d3e20323136313332.roa
Signing time: Sat 18 May 2024 23:03:57 +0000
ROA not before: Sat 18 May 2024 22:58:57 +0000
ROA not after: Sat 17 May 2025 23:03:57 +0000
asID: 216132
IP address blocks: 2a07:54c7:600d::/48 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:97:a2:1f:b1:db:af:a5:64:b8:cb:20:b0:49:f8:0b:cb:df:fb:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F1ABD9429F3A733668CAC698C113A9E343C99B3E
Validity
Not Before: May 18 22:58:57 2024 GMT
Not After : May 17 23:03:57 2025 GMT
Subject: CN=00906EF080DC27E7DD985E233CBA6232EB47D63A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:4a:1e:48:fc:eb:07:2e:3b:5c:37:53:f1:f1:
46:c0:dd:97:10:f0:d2:ad:be:85:3a:a7:b7:5b:98:
9b:62:66:8e:75:27:55:52:38:c1:d2:1f:ff:c4:e0:
7a:fb:03:31:f2:2a:36:92:83:59:8e:3c:12:b0:cf:
f5:08:69:91:ea:5d:06:0a:9b:9e:5c:c9:3e:b9:4f:
ec:5b:9c:82:9c:8a:ea:66:5c:20:d3:7c:e7:6e:1c:
30:6a:3a:1c:88:70:fd:88:1f:1a:60:fa:bf:9a:83:
3f:9e:54:72:23:fa:c3:98:a4:0f:2f:ff:aa:50:13:
31:07:51:f4:3e:c9:17:bb:fd:8a:5c:2d:f3:43:ab:
71:86:34:8a:1c:eb:4c:dd:35:d1:25:5a:8a:11:98:
fb:15:c5:3d:d7:00:21:7a:40:7a:9a:88:9f:d9:73:
04:34:46:cf:01:08:49:32:58:a9:ab:b0:88:c3:29:
aa:48:86:2f:95:32:e4:1f:a4:2e:03:22:c2:b9:8d:
7e:71:ba:9e:1d:c3:9d:27:36:92:99:f6:8c:0f:e2:
26:82:67:c7:69:2f:a7:9d:6c:20:9f:67:e4:f5:42:
1d:16:ba:a8:5d:ab:85:2f:89:86:d8:06:22:98:68:
7b:45:0a:d1:56:70:d4:53:ee:18:cf:97:c7:cc:86:
cb:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:90:6E:F0:80:DC:27:E7:DD:98:5E:23:3C:BA:62:32:EB:47:D6:3A
X509v3 Authority Key Identifier:
keyid:F1:AB:D9:42:9F:3A:73:36:68:CA:C6:98:C1:13:A9:E3:43:C9:9B:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f536a1e4-3bf0-4352-9061-66694d2bcbd3/0/F1ABD9429F3A733668CAC698C113A9E343C99B3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/F1ABD9429F3A733668CAC698C113A9E343C99B3E.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f536a1e4-3bf0-4352-9061-66694d2bcbd3/0/326130373a353463373a363030643a3a2f34382d3438203d3e20323136313332.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:54c7:600d::/48
Signature Algorithm: sha256WithRSAEncryption
cf:19:5f:59:1f:79:8f:a6:ab:6c:88:f2:4d:32:64:ec:33:1d:
20:40:39:65:23:6e:b2:2b:a9:a8:d4:8d:2d:9e:c4:3a:bb:c7:
1f:80:fa:3f:b5:aa:58:e4:dc:56:1b:b4:81:b0:9d:7d:12:c9:
c9:02:d1:0e:58:11:d9:f2:f7:e2:42:0f:00:04:76:66:91:7d:
da:40:8f:65:b8:0c:a0:dc:e4:26:90:0c:36:08:c1:77:44:7b:
6e:cf:4d:a1:b6:39:67:4e:ff:58:4e:30:27:38:8a:84:d3:6a:
be:13:6f:e0:41:79:75:83:e1:ae:95:3d:0b:6f:23:b5:82:b5:
ce:e8:62:61:10:e5:e3:c8:11:29:c4:ca:e2:65:b4:f6:68:ba:
c7:e5:ec:41:d5:b6:d0:96:e8:ed:f9:fe:cd:14:c3:a4:03:28:
57:82:6b:e7:ba:3b:1f:9e:b3:19:9f:39:69:ef:7a:f2:ea:c1:
a8:c2:f0:7f:ea:8d:bd:44:0f:f6:7a:dc:60:bd:a3:eb:8c:8f:
47:4e:d6:00:20:bb:e7:23:b4:37:a2:5e:4a:8f:3a:4c:ce:c6:
5d:c8:39:74:88:b5:84:1c:8a:2c:8c:31:5a:f5:1a:94:a8:11:
62:b8:64:75:bd:36:f7:48:35:5b:47:8a:6e:85:ec:08:0d:69:
3f:45:94:96
-----BEGIN CERTIFICATE-----
MIIFezCCBGOgAwIBAgIUQ5eiH7Hbr6VkuMsgsEn4C8vf+yEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRjFBQkQ5NDI5RjNBNzMzNjY4Q0FDNjk4QzExM0E5RTM0
M0M5OUIzRTAeFw0yNDA1MTgyMjU4NTdaFw0yNTA1MTcyMzAzNTdaMDMxMTAvBgNV
BAMTKDAwOTA2RUYwODBEQzI3RTdERDk4NUUyMzNDQkE2MjMyRUI0N0Q2M0EwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzSh5I/OsHLjtcN1Px8UbA3ZcQ
8NKtvoU6p7dbmJtiZo51J1VSOMHSH//E4Hr7AzHyKjaSg1mOPBKwz/UIaZHqXQYK
m55cyT65T+xbnIKciupmXCDTfOduHDBqOhyIcP2IHxpg+r+agz+eVHIj+sOYpA8v
/6pQEzEHUfQ+yRe7/YpcLfNDq3GGNIoc60zdNdElWooRmPsVxT3XACF6QHqaiJ/Z
cwQ0Rs8BCEkyWKmrsIjDKapIhi+VMuQfpC4DIsK5jX5xup4dw50nNpKZ9owP4iaC
Z8dpL6edbCCfZ+T1Qh0Wuqhdq4UviYbYBiKYaHtFCtFWcNRT7hjPl8fMhssHAgMB
AAGjggKFMIICgTAdBgNVHQ4EFgQUAJBu8IDcJ+fdmF4jPLpiMutH1jowHwYDVR0j
BBgwFoAU8avZQp86czZoysaYwROp40PJmz4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZjUzNmExZTQtM2JmMC00MzUyLTkwNjEtNjY2OTRkMmJj
YmQzLzAvRjFBQkQ5NDI5RjNBNzMzNjY4Q0FDNjk4QzExM0E5RTM0M0M5OUIzRS5j
cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu
Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9hYTAwNGJhMS00MTliLTRk
YjUtYmJkMy01Y2NhNjMzY2FlM2YvMC9GMUFCRDk0MjlGM0E3MzM2NjhDQUM2OThD
MTEzQTlFMzQzQzk5QjNFLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF
BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9mNTM2YTFlNC0zYmYwLTQzNTItOTA2MS02NjY5NGQyYmNiZDMvMC8zMjYxMzAz
NzNhMzUzNDYzMzczYTM2MzAzMDY0M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz
MTM2MzEzMzMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF
BwEHAQH/BBMwETAPBAIAAjAJAwcAKgdUx2ANMA0GCSqGSIb3DQEBCwUAA4IBAQDP
GV9ZH3mPpqtsiPJNMmTsMx0gQDllI26yK6mo1I0tnsQ6u8cfgPo/tapY5NxWG7SB
sJ19EsnJAtEOWBHZ8vfiQg8ABHZmkX3aQI9luAyg3OQmkAw2CMF3RHtuz02htjln
Tv9YTjAnOIqE02q+E2/gQXl1g+GulT0LbyO1grXO6GJhEOXjyBEpxMriZbT2aLrH
5exB1bbQlujt+f7NFMOkAyhXgmvnujsfnrMZnzlp73ry6sGowvB/6o29RA/2etxg
vaPrjI9HTtYAILvnI7Q3ol5KjzpMzsZdyDl0iLWEHIosjDFa9RqUqBFiuGR1vTb3
SDVbR4puhewIDWk/RZSW
-----END CERTIFICATE-----
Generated at Mon Oct 21 19:38:58 2024 by rpki-client on console-ams.rpki-client.org