Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f536a1e4-3bf0-4352-9061-66694d2bcbd3/0/326130373a353463373a366430303a3a2f34302d3430203d3e20323136333630.roa
File: 326130373a353463373a366430303a3a2f34302d3430203d3e20323136333630.roa (raw, json)
Hash identifier: pzEtj2uAOsYtjWFKTEXbKper7DDbte3Ex/oHORaFXnw=
Subject key identifier: B1:AE:31:3B:8C:C9:89:5F:19:8B:18:28:28:DF:29:0C:0C:9C:77:CF
Certificate issuer: /CN=F1ABD9429F3A733668CAC698C113A9E343C99B3E
Certificate serial: 76B272B21768253A2A55CF219FF25716DA146DE9
Authority key identifier: F1:AB:D9:42:9F:3A:73:36:68:CA:C6:98:C1:13:A9:E3:43:C9:9B:3E
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/F1ABD9429F3A733668CAC698C113A9E343C99B3E.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f536a1e4-3bf0-4352-9061-66694d2bcbd3/0/326130373a353463373a366430303a3a2f34302d3430203d3e20323136333630.roa
Signing time: Mon 04 Mar 2024 01:07:09 +0000
ROA not before: Mon 04 Mar 2024 01:02:09 +0000
ROA not after: Mon 03 Mar 2025 01:07:09 +0000
asID: 216360
IP address blocks: 2a07:54c7:6d00::/40 maxlen: 40
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:b2:72:b2:17:68:25:3a:2a:55:cf:21:9f:f2:57:16:da:14:6d:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F1ABD9429F3A733668CAC698C113A9E343C99B3E
Validity
Not Before: Mar 4 01:02:09 2024 GMT
Not After : Mar 3 01:07:09 2025 GMT
Subject: CN=B1AE313B8CC9895F198B182828DF290C0C9C77CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:d8:22:b4:9b:94:4c:b2:1a:8e:f5:fb:16:58:
6e:ef:ee:8c:fb:97:80:cc:0e:eb:6c:20:bb:0e:94:
c2:a7:d5:03:3e:9f:56:e7:66:c7:fd:fd:82:13:25:
18:5d:d8:ac:a4:b4:fb:88:04:35:17:63:0a:7b:14:
c3:9f:8c:b9:9c:73:73:1e:08:f3:47:c4:1e:a4:5d:
96:4f:15:f1:57:3a:a3:c0:cd:d1:c3:df:0f:47:4c:
a4:09:1e:74:23:07:46:1f:b9:cc:dd:71:35:08:f2:
e1:02:35:4d:4c:53:44:fe:d1:e1:92:12:3e:9e:84:
7f:c9:87:06:89:eb:8f:92:a5:69:0a:42:84:3b:22:
7b:b8:0a:53:d9:bd:e0:f6:d0:c3:3e:8f:19:1e:63:
01:e2:2a:e5:25:26:26:96:a3:c3:b1:cb:1f:96:c6:
9c:96:cb:84:a7:8d:ee:31:bb:58:7b:f9:99:c7:60:
b3:56:a1:d9:a4:ca:98:34:ae:fd:83:c4:f1:d9:d6:
44:d1:63:57:f3:e8:a6:15:3c:ea:76:18:c2:b8:20:
19:f6:da:6a:1c:38:92:eb:51:04:fe:c8:6b:bc:27:
99:e2:4b:eb:7e:64:ef:e6:63:d6:a3:31:fb:26:d7:
cf:5e:d8:b7:ec:a0:b3:da:8c:70:66:b9:08:de:ca:
05:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:AE:31:3B:8C:C9:89:5F:19:8B:18:28:28:DF:29:0C:0C:9C:77:CF
X509v3 Authority Key Identifier:
keyid:F1:AB:D9:42:9F:3A:73:36:68:CA:C6:98:C1:13:A9:E3:43:C9:9B:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f536a1e4-3bf0-4352-9061-66694d2bcbd3/0/F1ABD9429F3A733668CAC698C113A9E343C99B3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/F1ABD9429F3A733668CAC698C113A9E343C99B3E.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f536a1e4-3bf0-4352-9061-66694d2bcbd3/0/326130373a353463373a366430303a3a2f34302d3430203d3e20323136333630.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:54c7:6d00::/40
Signature Algorithm: sha256WithRSAEncryption
67:c0:49:d2:c6:4c:f6:88:8c:e1:33:b2:42:23:7b:56:37:ef:
61:1e:9c:9a:e3:77:c0:f9:a9:d0:39:46:0f:94:30:d2:ef:b7:
3e:84:0c:14:37:91:85:d6:27:6d:be:dc:a8:a0:d0:72:d3:12:
2e:32:46:c6:b6:02:8c:70:6c:1e:87:c6:62:7b:d7:77:47:78:
1e:5a:70:84:7c:2f:38:e2:fb:db:3c:eb:45:14:b9:a4:3e:cd:
5b:27:ef:07:5b:ac:12:bd:a7:f9:89:1c:39:0b:1c:b3:2f:f7:
6e:aa:be:e0:40:5b:1a:bd:7e:34:fe:8f:e2:34:2f:25:65:3c:
d7:2a:2d:de:43:10:1d:2a:e7:d8:21:b9:1e:f8:d7:bc:d5:35:
46:6d:86:cc:bd:b4:8a:9a:ef:2b:95:64:2c:3f:46:7a:0e:ea:
59:9a:a7:10:eb:8e:c0:4e:b7:a2:c6:df:54:f6:f5:9d:f3:d1:
ac:6d:ca:bd:79:9b:6a:5a:aa:cf:3b:c3:82:8f:fb:da:6e:55:
c5:a5:0c:10:94:cc:6a:f2:06:48:9a:5d:94:b7:03:2d:92:7b:
de:ac:b2:12:76:f2:2e:0a:9e:01:2d:a3:a2:8b:3a:70:72:ee:
09:b0:40:2c:97:25:c0:cf:aa:3b:f9:74:10:07:45:ac:22:a8:
6b:c3:80:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 19:13:57 2024 by rpki-client on console-fra.rpki-client.org