Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f536a1e4-3bf0-4352-9061-66694d2bcbd3/0/326130373a353463373a366430303a3a2f34322d3432203d3e20323136333630.roa
File: 326130373a353463373a366430303a3a2f34322d3432203d3e20323136333630.roa (raw, json)
Hash identifier: vzbobgooUtasNjpCZ1VEG0PY81XEIYAM/lqIRY0oHiI=
Subject key identifier: 8E:58:C3:E7:9E:DC:4C:F4:92:B7:FB:DA:9A:77:15:78:EA:72:9B:DD
Certificate issuer: /CN=F1ABD9429F3A733668CAC698C113A9E343C99B3E
Certificate serial: 28FAADEE7CD762241E62562D86E8F3CDE566D218
Authority key identifier: F1:AB:D9:42:9F:3A:73:36:68:CA:C6:98:C1:13:A9:E3:43:C9:9B:3E
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/F1ABD9429F3A733668CAC698C113A9E343C99B3E.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f536a1e4-3bf0-4352-9061-66694d2bcbd3/0/326130373a353463373a366430303a3a2f34322d3432203d3e20323136333630.roa
Signing time: Mon 04 Mar 2024 01:06:40 +0000
ROA not before: Mon 04 Mar 2024 01:01:40 +0000
ROA not after: Mon 03 Mar 2025 01:06:40 +0000
asID: 216360
IP address blocks: 2a07:54c7:6d00::/42 maxlen: 42
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:fa:ad:ee:7c:d7:62:24:1e:62:56:2d:86:e8:f3:cd:e5:66:d2:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F1ABD9429F3A733668CAC698C113A9E343C99B3E
Validity
Not Before: Mar 4 01:01:40 2024 GMT
Not After : Mar 3 01:06:40 2025 GMT
Subject: CN=8E58C3E79EDC4CF492B7FBDA9A771578EA729BDD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:75:da:07:a4:4c:52:1b:26:ea:56:6c:74:88:
d6:dc:65:14:98:fc:6b:c4:66:7b:6a:67:11:f3:43:
2e:11:81:34:e5:62:0f:3f:b0:6d:7a:0d:5b:de:fa:
20:cb:16:8b:17:d2:2c:9b:a0:75:a3:59:c4:a3:5d:
cd:a3:67:5e:b9:36:34:0d:8f:4d:c9:41:e0:5b:10:
3c:63:11:18:12:80:3e:42:f7:cc:3b:36:e3:d3:6e:
b6:c0:de:53:56:9d:a8:24:c9:97:2d:09:de:5a:74:
51:06:7d:d6:dc:d8:61:9c:15:c1:97:65:dd:ce:a0:
53:52:b3:80:66:93:85:4c:dd:1b:c2:10:ac:6e:21:
de:03:61:0d:7b:d2:e7:c6:f2:c0:09:63:67:6f:0d:
49:ae:0e:10:f9:1a:4b:d2:a2:03:d1:a2:fd:f6:4c:
80:50:c3:8c:f3:05:b1:72:51:d1:d8:1a:7e:a5:9e:
04:53:63:ff:a1:b8:02:1b:5e:25:c9:9c:f3:99:5e:
ba:f6:6a:e3:fb:07:38:56:67:85:27:af:b4:e0:d3:
88:f2:38:a7:3e:a6:b6:1e:21:cb:38:99:8e:25:79:
4f:dd:3e:73:7f:4f:e0:11:58:22:96:8e:a5:71:e2:
8e:67:58:df:cb:1f:7f:be:9e:9a:8b:6c:60:9e:2e:
87:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:58:C3:E7:9E:DC:4C:F4:92:B7:FB:DA:9A:77:15:78:EA:72:9B:DD
X509v3 Authority Key Identifier:
keyid:F1:AB:D9:42:9F:3A:73:36:68:CA:C6:98:C1:13:A9:E3:43:C9:9B:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f536a1e4-3bf0-4352-9061-66694d2bcbd3/0/F1ABD9429F3A733668CAC698C113A9E343C99B3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/F1ABD9429F3A733668CAC698C113A9E343C99B3E.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f536a1e4-3bf0-4352-9061-66694d2bcbd3/0/326130373a353463373a366430303a3a2f34322d3432203d3e20323136333630.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:54c7:6d00::/42
Signature Algorithm: sha256WithRSAEncryption
4d:3b:5f:11:8b:e5:ef:3d:9e:a7:02:ee:69:5b:ab:d7:c0:9f:
76:7f:4b:f1:83:31:da:34:0b:05:bb:3b:35:46:c7:59:62:7c:
5e:2b:87:4c:d9:ec:77:ff:94:01:67:2b:19:3d:71:f6:5e:2c:
d0:af:97:a8:5e:e9:75:15:11:c3:19:0f:71:60:40:f0:01:36:
d7:46:af:6f:dc:17:24:34:60:46:6d:3e:d9:5d:27:02:96:44:
20:75:07:67:83:a9:24:0b:19:f9:a1:94:9a:52:f9:53:bb:75:
4a:5f:c2:cb:a4:f1:d4:53:15:bc:84:69:a6:21:59:60:33:32:
57:51:87:51:a8:f1:ca:8d:0d:c2:cf:a1:1b:7e:0d:fc:f7:4a:
49:88:7b:80:c2:e4:00:df:08:92:cc:ff:88:3f:48:2d:5f:de:
42:08:5f:67:0f:4d:c4:07:15:dd:56:14:3e:d4:5d:a9:20:e9:
a5:94:cf:06:d2:f3:b6:19:a5:5a:7c:cc:62:d2:24:e5:be:3e:
df:da:e2:c8:e3:33:40:a3:74:24:56:5d:12:78:9b:c9:a1:22:
fc:c1:15:06:1d:57:ba:84:68:64:0e:45:4f:89:25:b5:bd:0d:
2c:00:70:d3:e5:93:c0:ed:4e:3e:22:5b:79:8b:54:fa:ce:00:
f0:78:5a:38
-----BEGIN CERTIFICATE-----
MIIFezCCBGOgAwIBAgIUKPqt7nzXYiQeYlYthujzzeVm0hgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRjFBQkQ5NDI5RjNBNzMzNjY4Q0FDNjk4QzExM0E5RTM0
M0M5OUIzRTAeFw0yNDAzMDQwMTAxNDBaFw0yNTAzMDMwMTA2NDBaMDMxMTAvBgNV
BAMTKDhFNThDM0U3OUVEQzRDRjQ5MkI3RkJEQTlBNzcxNTc4RUE3MjlCREQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4ddoHpExSGybqVmx0iNbcZRSY
/GvEZntqZxHzQy4RgTTlYg8/sG16DVve+iDLFosX0iyboHWjWcSjXc2jZ165NjQN
j03JQeBbEDxjERgSgD5C98w7NuPTbrbA3lNWnagkyZctCd5adFEGfdbc2GGcFcGX
Zd3OoFNSs4Bmk4VM3RvCEKxuId4DYQ170ufG8sAJY2dvDUmuDhD5GkvSogPRov32
TIBQw4zzBbFyUdHYGn6lngRTY/+huAIbXiXJnPOZXrr2auP7BzhWZ4Unr7Tg04jy
OKc+prYeIcs4mY4leU/dPnN/T+ARWCKWjqVx4o5nWN/LH3++npqLbGCeLoc3AgMB
AAGjggKFMIICgTAdBgNVHQ4EFgQUjljD557cTPSSt/vamncVeOpym90wHwYDVR0j
BBgwFoAU8avZQp86czZoysaYwROp40PJmz4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZjUzNmExZTQtM2JmMC00MzUyLTkwNjEtNjY2OTRkMmJj
YmQzLzAvRjFBQkQ5NDI5RjNBNzMzNjY4Q0FDNjk4QzExM0E5RTM0M0M5OUIzRS5j
cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu
Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9hYTAwNGJhMS00MTliLTRk
YjUtYmJkMy01Y2NhNjMzY2FlM2YvMC9GMUFCRDk0MjlGM0E3MzM2NjhDQUM2OThD
MTEzQTlFMzQzQzk5QjNFLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF
BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9mNTM2YTFlNC0zYmYwLTQzNTItOTA2MS02NjY5NGQyYmNiZDMvMC8zMjYxMzAz
NzNhMzUzNDYzMzczYTM2NjQzMDMwM2EzYTJmMzQzMjJkMzQzMjIwM2QzZTIwMzIz
MTM2MzMzNjMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF
BwEHAQH/BBMwETAPBAIAAjAJAwcGKgdUx20AMA0GCSqGSIb3DQEBCwUAA4IBAQBN
O18Ri+XvPZ6nAu5pW6vXwJ92f0vxgzHaNAsFuzs1RsdZYnxeK4dM2ex3/5QBZysZ
PXH2XizQr5eoXul1FRHDGQ9xYEDwATbXRq9v3BckNGBGbT7ZXScClkQgdQdng6kk
Cxn5oZSaUvlTu3VKX8LLpPHUUxW8hGmmIVlgMzJXUYdRqPHKjQ3Cz6Ebfg3890pJ
iHuAwuQA3wiSzP+IP0gtX95CCF9nD03EBxXdVhQ+1F2pIOmllM8G0vO2GaVafMxi
0iTlvj7f2uLI4zNAo3QkVl0SeJvJoSL8wRUGHVe6hGhkDkVPiSW1vQ0sAHDT5ZPA
7U4+Ilt5i1T6zgDweFo4
-----END CERTIFICATE-----
Generated at Mon Oct 21 19:38:58 2024 by rpki-client on console-ams.rpki-client.org