Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f536a1e4-3bf0-4352-9061-66694d2bcbd3/0/326130373a353463373a363030653a3a2f34382d3438203d3e20323136313332.roa
File: 326130373a353463373a363030653a3a2f34382d3438203d3e20323136313332.roa (raw, json)
Hash identifier: aIfwLq/tMIeyLzFo8ZxMfPs+Msu2CdC4IOG6jN+K8TE=
Subject key identifier: 4C:64:A0:E3:EB:01:0E:D2:1E:15:B9:01:A4:8A:B1:41:B7:65:46:3C
Certificate issuer: /CN=F1ABD9429F3A733668CAC698C113A9E343C99B3E
Certificate serial: 34CB2A23FD494D2CC338689503983141935A9DAC
Authority key identifier: F1:AB:D9:42:9F:3A:73:36:68:CA:C6:98:C1:13:A9:E3:43:C9:9B:3E
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/F1ABD9429F3A733668CAC698C113A9E343C99B3E.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f536a1e4-3bf0-4352-9061-66694d2bcbd3/0/326130373a353463373a363030653a3a2f34382d3438203d3e20323136313332.roa
Signing time: Sat 18 May 2024 23:04:13 +0000
ROA not before: Sat 18 May 2024 22:59:13 +0000
ROA not after: Sat 17 May 2025 23:04:13 +0000
asID: 216132
IP address blocks: 2a07:54c7:600e::/48 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:cb:2a:23:fd:49:4d:2c:c3:38:68:95:03:98:31:41:93:5a:9d:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F1ABD9429F3A733668CAC698C113A9E343C99B3E
Validity
Not Before: May 18 22:59:13 2024 GMT
Not After : May 17 23:04:13 2025 GMT
Subject: CN=4C64A0E3EB010ED21E15B901A48AB141B765463C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ae:a0:80:33:21:f5:98:ce:7b:6b:1c:fd:78:
04:18:0c:5f:55:f6:2c:7f:7e:92:b3:13:a1:65:0f:
92:dd:0e:e1:77:7b:b8:c7:9c:29:15:0c:dd:ee:50:
ec:fc:cf:9f:0c:28:04:a6:88:64:42:a7:bf:f9:24:
bd:f0:57:08:b7:fb:1e:38:57:b1:e4:ba:8c:b4:65:
96:84:58:41:b7:9b:e1:5b:6a:72:62:8d:b3:a9:84:
28:7f:ad:f7:33:64:57:dd:59:2c:13:98:c8:86:00:
a6:0a:d4:72:be:e4:c3:0e:31:4b:8b:98:b9:26:4e:
23:35:f1:84:41:bf:1e:71:c0:e2:f5:4a:a9:1d:5b:
6d:eb:0a:5c:48:25:c5:ef:a9:b8:68:d8:87:71:0c:
1a:9d:fc:df:dc:05:51:83:ba:75:28:a2:6a:5e:52:
42:ac:f6:07:e9:3d:c1:f8:8b:28:00:30:11:b5:ee:
e9:e0:2b:6a:ea:80:14:45:4c:a1:d2:ee:da:18:0a:
3b:f8:71:0b:fa:ee:e7:86:31:c3:24:b0:f8:9c:ea:
32:01:29:d7:6f:9b:07:46:0e:1b:54:5a:b2:21:a9:
3e:e5:61:28:7f:1a:31:65:68:85:67:a7:b5:b5:71:
de:2f:54:1d:b2:e8:f2:fc:90:f2:07:7a:88:02:5a:
e6:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:64:A0:E3:EB:01:0E:D2:1E:15:B9:01:A4:8A:B1:41:B7:65:46:3C
X509v3 Authority Key Identifier:
keyid:F1:AB:D9:42:9F:3A:73:36:68:CA:C6:98:C1:13:A9:E3:43:C9:9B:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f536a1e4-3bf0-4352-9061-66694d2bcbd3/0/F1ABD9429F3A733668CAC698C113A9E343C99B3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/F1ABD9429F3A733668CAC698C113A9E343C99B3E.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f536a1e4-3bf0-4352-9061-66694d2bcbd3/0/326130373a353463373a363030653a3a2f34382d3438203d3e20323136313332.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:54c7:600e::/48
Signature Algorithm: sha256WithRSAEncryption
5e:7f:6c:e7:b9:d9:1e:27:17:d8:46:81:01:b1:a3:4d:6b:1b:
39:fd:0a:5e:b7:f9:71:44:a2:d4:c3:49:69:64:79:95:fe:ed:
9c:e4:07:77:cc:d8:48:59:98:64:01:b1:3a:e2:65:79:31:37:
d8:4f:e4:03:40:a0:93:c8:89:22:dc:42:2c:8f:57:22:09:bf:
51:20:e9:1a:5f:ab:07:aa:80:4d:58:0f:58:d0:f6:11:f2:ad:
43:79:b2:03:8c:2e:7a:9b:aa:ae:e2:0d:bc:88:db:58:ed:ff:
3c:ee:71:cf:2b:b6:fc:4b:d5:c2:dc:53:6a:4a:76:05:5a:c3:
e8:8e:98:93:69:70:6d:d1:b1:cc:9d:53:32:6d:e8:24:9e:4a:
f0:c2:21:c5:83:f6:ca:38:43:c0:e7:22:36:3c:ac:b9:99:e5:
21:fd:82:b6:79:0c:15:0c:e7:8d:eb:74:68:78:a8:eb:f7:c9:
40:87:e4:48:02:e3:fb:81:04:c3:b5:84:70:15:00:59:6a:e4:
c7:a8:f9:f4:19:59:6b:f8:c7:c2:37:e7:0e:00:e8:25:5b:8c:
aa:fb:1a:8b:c0:bb:11:7f:72:d0:9e:d4:91:a2:21:68:74:e8:
05:75:60:8d:80:aa:4e:c4:88:a8:82:29:96:a7:47:2b:ad:e0:
c8:dd:8d:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 19:13:57 2024 by rpki-client on console-fra.rpki-client.org