Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f536a1e4-3bf0-4352-9061-66694d2bcbd3/0/326130373a353463373a366330303a3a2f33382d3338203d3e20323136333630.roa
File: 326130373a353463373a366330303a3a2f33382d3338203d3e20323136333630.roa (raw, json)
Hash identifier: 1iSx/LzZ7lACkRU0j3iuCq2gSxlp8JzB1YEdIW3VXZw=
Subject key identifier: A4:0E:D7:DE:AA:CD:3C:D3:1C:B5:0C:31:C0:B5:5E:AD:63:0D:61:B6
Certificate issuer: /CN=F1ABD9429F3A733668CAC698C113A9E343C99B3E
Certificate serial: 071C3401BDEF37182CFA5B384CDA62605F684D58
Authority key identifier: F1:AB:D9:42:9F:3A:73:36:68:CA:C6:98:C1:13:A9:E3:43:C9:9B:3E
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/F1ABD9429F3A733668CAC698C113A9E343C99B3E.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f536a1e4-3bf0-4352-9061-66694d2bcbd3/0/326130373a353463373a366330303a3a2f33382d3338203d3e20323136333630.roa
Signing time: Mon 04 Mar 2024 00:56:19 +0000
ROA not before: Mon 04 Mar 2024 00:51:19 +0000
ROA not after: Mon 03 Mar 2025 00:56:19 +0000
asID: 216360
IP address blocks: 2a07:54c7:6c00::/38 maxlen: 38
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:1c:34:01:bd:ef:37:18:2c:fa:5b:38:4c:da:62:60:5f:68:4d:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F1ABD9429F3A733668CAC698C113A9E343C99B3E
Validity
Not Before: Mar 4 00:51:19 2024 GMT
Not After : Mar 3 00:56:19 2025 GMT
Subject: CN=A40ED7DEAACD3CD31CB50C31C0B55EAD630D61B6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:2d:5c:47:a5:33:bb:cb:f6:8a:dc:24:1a:52:
af:a1:e8:a6:b4:54:cc:a7:1d:85:80:5c:ae:5c:9a:
bf:c7:f6:49:25:45:9c:d2:6e:de:79:d8:63:51:7e:
64:87:94:f8:09:6b:5f:14:d2:f2:74:d1:c0:c6:a4:
26:8a:5d:5e:1f:9b:88:b3:fb:d5:b3:c0:69:99:1f:
db:01:41:48:94:58:7c:07:a8:cb:57:7f:b0:4e:48:
e0:57:14:f1:95:83:a3:77:0d:a3:71:99:4d:a7:9f:
64:61:ff:54:ff:07:d3:ed:52:16:48:3f:89:a1:a7:
82:cf:c9:04:38:82:2d:c1:3f:af:af:4d:68:77:8c:
aa:aa:b9:44:19:31:f2:67:5b:61:3f:b9:d7:dd:fc:
93:99:22:e7:cf:8a:f3:48:b9:73:4f:c4:da:74:9c:
ca:e4:89:ef:e3:a1:68:18:26:03:09:dd:0f:32:32:
68:12:66:5c:88:ea:f1:6e:93:b0:a3:b1:d0:38:43:
f1:50:32:82:ea:7d:8b:f4:96:d6:b1:cf:be:40:78:
57:7d:2d:99:07:3d:6a:96:a8:dd:c0:cb:ed:0e:02:
1e:76:d8:1e:c1:7f:50:c8:17:07:bc:f4:66:45:13:
51:96:04:fb:a6:50:aa:6b:0b:cb:78:f6:e3:f4:50:
89:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:0E:D7:DE:AA:CD:3C:D3:1C:B5:0C:31:C0:B5:5E:AD:63:0D:61:B6
X509v3 Authority Key Identifier:
keyid:F1:AB:D9:42:9F:3A:73:36:68:CA:C6:98:C1:13:A9:E3:43:C9:9B:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f536a1e4-3bf0-4352-9061-66694d2bcbd3/0/F1ABD9429F3A733668CAC698C113A9E343C99B3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/F1ABD9429F3A733668CAC698C113A9E343C99B3E.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f536a1e4-3bf0-4352-9061-66694d2bcbd3/0/326130373a353463373a366330303a3a2f33382d3338203d3e20323136333630.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:54c7:6c00::/38
Signature Algorithm: sha256WithRSAEncryption
bb:3b:d8:89:89:5a:83:83:21:0f:82:93:8f:60:83:b4:a3:50:
c2:34:6e:cd:e1:48:37:4a:c5:99:08:c1:23:0d:e2:f7:6e:20:
b6:70:0b:0c:c6:0c:a2:b3:ed:ca:f8:f0:28:22:80:ae:7a:fa:
ad:f5:06:88:04:b0:78:11:e7:c6:f3:9b:1b:4a:d0:44:82:ea:
46:d4:8c:f1:ac:6a:bb:84:12:92:ed:84:e1:05:bf:ec:d9:b1:
aa:73:67:d1:41:ce:64:2b:e7:52:eb:86:65:ee:8c:8a:fe:ef:
78:24:bd:a3:3f:41:e8:b1:60:d8:66:54:e5:56:89:1e:97:b8:
b2:79:47:51:8d:22:b6:f7:17:58:f9:9b:3a:d0:4b:fc:8d:a0:
6b:32:01:e4:ec:10:15:f4:0a:e0:1f:2e:2b:b1:97:17:a5:85:
fb:5e:2b:5a:3b:fb:17:05:c5:f1:c9:49:09:ad:14:97:dd:57:
89:46:3e:7e:18:c2:c3:ac:37:93:58:5f:a4:59:cb:05:f2:9f:
be:d5:76:93:0f:6a:3d:24:a2:8d:74:6d:49:02:ed:d8:97:3c:
19:cc:34:b7:19:23:c1:11:30:cc:53:73:93:39:9e:c2:0e:55:
e4:5c:a6:27:28:49:60:c3:17:c8:a1:7b:6c:18:38:e9:12:5c:
8a:71:78:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 19:13:57 2024 by rpki-client on console-fra.rpki-client.org