Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/AS214404.roa
File: AS214404.roa (raw, json)
Hash identifier: D2ej6O+VCzsdPYyLi6EvCUkmDVOzzcEV0Cpuzl5/YRQ=
Subject key identifier: 9A:52:86:DB:DC:84:4E:2E:3F:B3:3D:CB:A2:0B:44:8F:81:DB:E6:38
Certificate issuer: /CN=5ae4437029659539f54f900b35e43be06a94b37b
Certificate serial: 7C3E3D923ED69F91AAAF64A5C335A8F0C5B6F103
Authority key identifier: 5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/AS214404.roa
Signing time: Tue 13 Aug 2024 00:58:08 +0000
ROA not before: Tue 13 Aug 2024 00:53:08 +0000
ROA not after: Tue 12 Aug 2025 00:58:08 +0000
asID: 214404
IP address blocks: 2a0f:85c1:84c::/48 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:3e:3d:92:3e:d6:9f:91:aa:af:64:a5:c3:35:a8:f0:c5:b6:f1:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ae4437029659539f54f900b35e43be06a94b37b
Validity
Not Before: Aug 13 00:53:08 2024 GMT
Not After : Aug 12 00:58:08 2025 GMT
Subject: CN=9A5286DBDC844E2E3FB33DCBA20B448F81DBE638
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:88:08:7f:3d:66:52:76:2e:4b:78:88:c9:19:
77:d3:64:af:25:f9:9b:b4:85:bf:2d:63:c2:e6:e4:
e5:7e:3b:80:62:fc:20:6a:cd:5b:b3:58:e5:e0:a9:
eb:ed:6b:ae:e6:d3:e5:3d:a3:93:b0:84:87:bc:03:
5e:48:2a:28:dc:a0:54:0a:2a:c9:24:c9:2d:1a:3d:
c2:02:60:36:49:89:86:4f:5f:d2:ef:da:fc:f7:58:
8a:85:f8:f2:1a:21:6c:02:02:82:d2:af:d7:39:24:
24:ea:ca:6c:fd:77:02:c8:a2:79:51:7a:bb:50:69:
94:64:a7:07:eb:b1:c4:5b:62:d9:fc:b9:c1:b0:4d:
11:dd:3b:53:b1:ea:81:37:23:81:e7:99:f5:ea:64:
75:e9:e5:9c:d1:1d:b2:03:69:e3:32:6b:9f:5e:cf:
1e:56:59:44:49:7a:ee:ff:14:43:71:10:9f:24:26:
ec:21:08:73:65:95:d9:b9:59:bd:3d:4e:a9:6a:90:
47:8c:89:6e:b0:2e:e8:08:7e:ee:15:42:35:5b:f6:
1b:3e:4c:fb:f9:ed:9c:26:44:b8:9a:32:00:c8:ad:
6c:29:57:18:04:16:42:ff:76:b6:92:12:b2:a0:3e:
97:25:a1:f8:fa:9e:fa:1a:aa:22:70:7f:97:83:a4:
ac:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:52:86:DB:DC:84:4E:2E:3F:B3:3D:CB:A2:0B:44:8F:81:DB:E6:38
X509v3 Authority Key Identifier:
keyid:5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/5AE4437029659539F54F900B35E43BE06A94B37B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/AS214404.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:84c::/48
Signature Algorithm: sha256WithRSAEncryption
06:01:8c:f4:9c:34:0e:43:36:74:55:df:d4:51:6f:92:ba:7d:
18:00:4f:33:b7:09:2f:43:2a:be:f4:34:2b:09:c3:98:51:1b:
33:06:00:c3:fc:66:9a:6b:1f:2c:39:a7:15:37:48:de:70:69:
2d:02:cd:21:8e:cd:d8:b4:6e:4d:bd:4b:88:57:a3:ea:88:5f:
94:a1:5c:f4:a0:dc:d9:64:04:25:d2:4a:90:83:12:af:fa:ed:
73:08:c7:1b:90:c9:a6:ac:30:8a:59:65:27:e3:4c:0e:b6:a1:
97:aa:1e:ca:50:ec:97:4c:52:db:1b:9a:5c:43:19:00:2b:3d:
fa:a9:10:b3:8b:de:f3:e6:60:d9:2b:e9:f5:46:03:9f:9b:b0:
fb:4f:7f:68:93:d1:75:e0:7c:bb:c1:04:54:d0:72:49:88:61:
78:23:99:84:2a:e9:1e:43:9f:a2:bc:9e:f0:bb:a0:34:b9:43:
ab:ee:81:94:89:50:75:c1:34:0b:87:86:cb:b1:ae:bc:7b:56:
db:85:c1:50:ce:3d:3b:40:6f:d8:72:f0:db:8c:6b:82:e0:8a:
f7:15:78:1e:b7:8e:bc:02:9c:b5:47:05:e9:36:e3:d5:be:b5:
56:e8:d3:2c:cf:64:06:0b:a4:5d:ca:41:28:dd:6e:56:29:57:
a6:36:02:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 22 23:44:02 2024 by rpki-client on console-fra.rpki-client.org