Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/AS214393.roa
File: AS214393.roa (raw, json)
Hash identifier: Qf6R82WsSIp2KkXpgGICwD/fZZEHRDYjGr8QhsFh7OA=
Subject key identifier: 75:AC:E9:09:15:B6:D1:62:E4:F8:A6:FE:E8:DF:3E:96:D0:55:9F:51
Certificate issuer: /CN=5ae4437029659539f54f900b35e43be06a94b37b
Certificate serial: 43E7D17A1406435D75B137032B14B385D0A37508
Authority key identifier: 5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/AS214393.roa
Signing time: Tue 13 Aug 2024 00:59:19 +0000
ROA not before: Tue 13 Aug 2024 00:54:19 +0000
ROA not after: Tue 12 Aug 2025 00:59:19 +0000
asID: 214393
IP address blocks: 2a0f:85c1:881::/48 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:e7:d1:7a:14:06:43:5d:75:b1:37:03:2b:14:b3:85:d0:a3:75:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ae4437029659539f54f900b35e43be06a94b37b
Validity
Not Before: Aug 13 00:54:19 2024 GMT
Not After : Aug 12 00:59:19 2025 GMT
Subject: CN=75ACE90915B6D162E4F8A6FEE8DF3E96D0559F51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:f1:ab:11:aa:c0:83:8f:92:64:6c:25:96:ab:
ef:98:e8:b7:03:0a:70:52:c8:db:d2:d4:dd:21:29:
29:ea:ad:c0:e4:1a:57:1e:de:47:07:99:e1:47:45:
f3:1c:f6:94:c7:b6:2b:1d:e7:8c:df:34:5e:85:1b:
19:82:fc:77:8b:c2:42:c5:63:e7:a4:68:0c:e4:b0:
11:c8:4c:ea:fe:51:70:1b:b8:77:86:ea:1b:2c:05:
dc:c6:b1:81:88:32:8e:18:20:9f:d5:b1:a0:01:ba:
b9:87:c5:04:07:b9:8e:e1:66:b8:12:fd:4a:39:26:
54:97:4e:6b:5f:36:f5:e9:7e:36:74:53:a7:6b:e3:
ea:f7:cd:1b:7b:1a:66:59:85:77:ad:d9:59:28:33:
24:a4:7d:31:05:d3:7b:fc:e3:f9:d6:18:d1:3a:78:
5b:4c:e9:8f:fb:58:ab:ea:48:51:05:ee:fe:fc:fc:
40:4d:1c:5f:ef:77:40:8c:d8:6b:32:a7:50:0a:ff:
32:9c:41:04:82:9b:c5:7f:1f:1e:a6:9c:93:3a:c8:
98:a1:58:b8:4d:59:68:13:f0:9c:bd:7a:10:9f:ba:
b1:d0:b9:c8:26:05:06:c3:6b:41:72:2c:66:e6:38:
f1:2f:ca:00:59:2f:a5:a8:6d:99:f8:85:65:f4:c4:
06:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:AC:E9:09:15:B6:D1:62:E4:F8:A6:FE:E8:DF:3E:96:D0:55:9F:51
X509v3 Authority Key Identifier:
keyid:5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/5AE4437029659539F54F900B35E43BE06A94B37B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/AS214393.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:881::/48
Signature Algorithm: sha256WithRSAEncryption
48:6e:12:d6:f5:75:5f:ae:ae:25:50:3d:c6:9b:be:90:34:34:
64:98:37:7a:b7:f1:0f:9e:70:40:09:78:fa:a0:40:0c:f4:68:
4c:74:27:85:51:5c:8a:42:af:be:07:b0:7f:20:0e:6f:29:e8:
ff:af:fb:ba:3d:24:74:d9:d4:09:22:b9:da:f3:c3:28:c2:ba:
66:99:b5:77:3a:5b:87:cc:6d:65:2a:f8:b8:fc:bf:9e:ef:88:
f9:58:eb:4b:29:20:59:cd:17:8e:e2:b6:32:c3:a4:34:37:6b:
f3:81:19:4c:0d:ca:19:42:ed:e2:2e:ff:8d:09:62:ca:f1:20:
6a:39:d2:e6:70:b6:db:e6:65:7c:a4:e3:7c:12:3c:48:8c:14:
ff:f7:b2:0c:e7:ba:59:32:58:36:64:9e:c5:15:2e:41:88:7e:
75:9b:b7:ad:46:98:35:b3:00:a8:45:7b:db:52:7c:83:18:fe:
85:5a:82:18:ae:6a:5c:14:1f:50:a5:93:f0:a7:37:67:66:01:
a8:ed:08:c3:e8:67:a9:e9:b2:90:aa:66:42:38:6e:12:f4:8e:
ab:1b:50:52:d8:f8:50:ef:cc:2a:7e:c5:65:22:46:9f:17:2c:
3e:af:a1:3c:47:ed:9e:1f:d2:69:0e:c4:83:15:32:b7:ca:e8:
1d:c3:87:bd
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgIUQ+fRehQGQ111sTcDKxSzhdCjdQgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNWFlNDQzNzAyOTY1OTUzOWY1NGY5MDBiMzVlNDNiZTA2
YTk0YjM3YjAeFw0yNDA4MTMwMDU0MTlaFw0yNTA4MTIwMDU5MTlaMDMxMTAvBgNV
BAMTKDc1QUNFOTA5MTVCNkQxNjJFNEY4QTZGRUU4REYzRTk2RDA1NTlGNTEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH8asRqsCDj5JkbCWWq++Y6LcD
CnBSyNvS1N0hKSnqrcDkGlce3kcHmeFHRfMc9pTHtisd54zfNF6FGxmC/HeLwkLF
Y+ekaAzksBHITOr+UXAbuHeG6hssBdzGsYGIMo4YIJ/VsaABurmHxQQHuY7hZrgS
/Uo5JlSXTmtfNvXpfjZ0U6dr4+r3zRt7GmZZhXet2VkoMySkfTEF03v84/nWGNE6
eFtM6Y/7WKvqSFEF7v78/EBNHF/vd0CM2Gsyp1AK/zKcQQSCm8V/Hx6mnJM6yJih
WLhNWWgT8Jy9ehCfurHQucgmBQbDa0FyLGbmOPEvygBZL6WobZn4hWX0xAZDAgMB
AAGjggINMIICCTAdBgNVHQ4EFgQUdazpCRW20WLk+Kb+6N8+ltBVn1EwHwYDVR0j
BBgwFoAUWuRDcClllTn1T5ALNeQ74GqUs3swDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmMyMGFkZDMtYTg4ZS00YmIyLWE4NGQtNTVkYTIxMjhm
MTk2LzAvNUFFNDQzNzAyOTY1OTUzOUY1NEY5MDBCMzVFNDNCRTA2QTk0QjM3Qi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1d1UkRjQ2xsbFRuMVQ1QUxOZVE3NEdx
VXMzcy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2ZjMjBhZGQzLWE4OGUt
NGJiMi1hODRkLTU1ZGEyMTI4ZjE5Ni8wL0FTMjE0MzkzLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+F
wQiBMA0GCSqGSIb3DQEBCwUAA4IBAQBIbhLW9XVfrq4lUD3Gm76QNDRkmDd6t/EP
nnBACXj6oEAM9GhMdCeFUVyKQq++B7B/IA5vKej/r/u6PSR02dQJIrna88Mowrpm
mbV3OluHzG1lKvi4/L+e74j5WOtLKSBZzReO4rYyw6Q0N2vzgRlMDcoZQu3iLv+N
CWLK8SBqOdLmcLbb5mV8pON8EjxIjBT/97IM57pZMlg2ZJ7FFS5BiH51m7etRpg1
swCoRXvbUnyDGP6FWoIYrmpcFB9QpZPwpzdnZgGo7QjD6Gep6bKQqmZCOG4S9I6r
G1BS2PhQ78wqfsVlIkafFyw+r6E8R+2eH9JpDsSDFTK3yugdw4e9
-----END CERTIFICATE-----
Generated at Thu Aug 22 23:44:02 2024 by rpki-client on console-fra.rpki-client.org