Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f536a1e4-3bf0-4352-9061-66694d2bcbd3/0/326130373a353463373a366330303a3a2f34302d3430203d3e20323136333630.roa
File: 326130373a353463373a366330303a3a2f34302d3430203d3e20323136333630.roa (raw, json)
Hash identifier: H4ngrvtBYTga28GDHImveKFBxzD5H8pXfMhKtUWcuv8=
Subject key identifier: 31:CE:44:4D:B2:A3:30:7B:8A:95:2E:2C:47:9C:81:2A:38:56:25:67
Certificate issuer: /CN=F1ABD9429F3A733668CAC698C113A9E343C99B3E
Certificate serial: 2A1C2F579E11CAA73EEC99297337FD9A651B881A
Authority key identifier: F1:AB:D9:42:9F:3A:73:36:68:CA:C6:98:C1:13:A9:E3:43:C9:9B:3E
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/F1ABD9429F3A733668CAC698C113A9E343C99B3E.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f536a1e4-3bf0-4352-9061-66694d2bcbd3/0/326130373a353463373a366330303a3a2f34302d3430203d3e20323136333630.roa
Signing time: Mon 04 Mar 2024 01:06:29 +0000
ROA not before: Mon 04 Mar 2024 01:01:29 +0000
ROA not after: Mon 03 Mar 2025 01:06:29 +0000
asID: 216360
IP address blocks: 2a07:54c7:6c00::/40 maxlen: 40
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:1c:2f:57:9e:11:ca:a7:3e:ec:99:29:73:37:fd:9a:65:1b:88:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F1ABD9429F3A733668CAC698C113A9E343C99B3E
Validity
Not Before: Mar 4 01:01:29 2024 GMT
Not After : Mar 3 01:06:29 2025 GMT
Subject: CN=31CE444DB2A3307B8A952E2C479C812A38562567
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:ef:b9:9e:a6:d0:c9:99:f0:1c:03:34:d4:1a:
dd:e3:c3:3a:1e:9c:df:19:82:c9:1c:f9:e3:f5:e3:
28:bd:24:23:66:5e:b3:ec:5c:7b:b3:6a:5d:11:16:
fd:66:26:4d:54:e4:a8:fa:83:3a:ae:da:84:15:58:
57:76:88:5a:db:64:32:8a:9a:24:b2:26:07:3c:5c:
ce:88:37:b1:9e:17:7d:ea:80:55:74:a5:66:a0:5b:
66:1e:a8:22:cf:2b:88:26:f7:7b:26:a2:dd:dd:36:
a8:c7:56:b6:ee:f7:60:b3:f3:b2:35:2c:dc:45:07:
63:6b:de:01:6b:a8:ee:5a:a5:3f:fb:89:6e:5c:cc:
f6:8a:80:6c:ab:80:9e:54:41:3e:a2:bb:b6:e0:3a:
9a:f6:75:db:ad:48:03:0f:47:64:dd:5b:ba:e5:e8:
3c:a7:59:d7:b3:95:7b:87:ed:55:2b:1e:fa:f2:2c:
af:60:66:24:ff:20:d5:48:d5:51:14:aa:7e:5a:c3:
9c:e0:8d:a3:83:24:a3:4d:4c:0a:b2:22:46:68:c2:
6c:58:5f:2c:e9:3e:4e:b4:97:fb:32:53:57:6a:f3:
52:d6:d5:6e:a7:20:2c:f3:24:56:9b:db:02:8a:e2:
54:3c:cd:14:96:c8:a1:dc:0d:d6:af:44:de:4f:d7:
35:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:CE:44:4D:B2:A3:30:7B:8A:95:2E:2C:47:9C:81:2A:38:56:25:67
X509v3 Authority Key Identifier:
keyid:F1:AB:D9:42:9F:3A:73:36:68:CA:C6:98:C1:13:A9:E3:43:C9:9B:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f536a1e4-3bf0-4352-9061-66694d2bcbd3/0/F1ABD9429F3A733668CAC698C113A9E343C99B3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/F1ABD9429F3A733668CAC698C113A9E343C99B3E.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f536a1e4-3bf0-4352-9061-66694d2bcbd3/0/326130373a353463373a366330303a3a2f34302d3430203d3e20323136333630.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:54c7:6c00::/40
Signature Algorithm: sha256WithRSAEncryption
4f:df:83:7a:58:9d:14:be:ae:a4:38:dd:85:ea:88:8b:af:6e:
03:d9:7c:03:47:dc:0b:47:13:2a:9f:8b:f1:ff:96:9b:37:26:
6e:1d:c1:2f:e4:9f:fe:23:23:0e:70:e1:ef:c3:d6:7a:e8:9d:
82:8f:fa:12:c2:77:24:a9:85:9b:13:41:79:28:c5:b6:76:af:
2e:6a:c8:da:ee:62:d9:08:21:77:7c:85:80:60:20:2c:7e:47:
ea:a8:ce:58:7e:f8:6e:49:8d:9e:37:df:43:5c:48:12:a7:96:
a8:ac:4f:4b:a4:27:63:01:63:53:af:1a:b7:f5:f1:02:05:1a:
52:08:19:3e:5d:6e:f0:6a:6a:1c:1c:92:b0:12:0f:d1:2b:d3:
fd:8d:f6:de:bd:73:6b:b2:6c:39:aa:2c:b2:60:97:bd:8d:ca:
ba:df:f0:8d:49:59:5a:8a:44:ae:33:3a:f1:ad:d1:60:25:8a:
a1:33:73:c3:90:52:ee:ee:2d:7b:2d:1b:e9:0a:90:56:70:d9:
ff:53:e7:0e:9d:85:b6:e0:71:51:6b:52:d1:64:ff:fb:c3:08:
c0:fd:42:46:29:94:f1:51:19:17:55:84:ae:20:a1:d6:c0:0c:
b0:e0:46:e4:c3:09:74:69:6c:eb:43:6c:8a:db:2a:79:ac:a4:
33:a9:45:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 19:13:57 2024 by rpki-client on console-fra.rpki-client.org