Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/AS214478.roa
File: AS214478.roa (raw, json)
Hash identifier: Oi7WUy8Q/oOFENQ5QKsdy9fDsxshf9yaE+2SYMkU9Fw=
Subject key identifier: 8C:F8:DB:C6:21:F7:54:73:C3:B2:1F:26:58:B4:89:B4:B0:C5:9A:22
Certificate issuer: /CN=5ae4437029659539f54f900b35e43be06a94b37b
Certificate serial: 6B82C7FCF640C897F20087F8FAE32D6A4721F138
Authority key identifier: 5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/AS214478.roa
Signing time: Tue 30 Jul 2024 02:04:50 +0000
ROA not before: Tue 30 Jul 2024 01:59:50 +0000
ROA not after: Tue 29 Jul 2025 02:04:50 +0000
asID: 214478
IP address blocks: 2a0f:85c1:841::/48 maxlen: 48
2a0f:85c1:860::/44 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:82:c7:fc:f6:40:c8:97:f2:00:87:f8:fa:e3:2d:6a:47:21:f1:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ae4437029659539f54f900b35e43be06a94b37b
Validity
Not Before: Jul 30 01:59:50 2024 GMT
Not After : Jul 29 02:04:50 2025 GMT
Subject: CN=8CF8DBC621F75473C3B21F2658B489B4B0C59A22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:7a:96:25:06:aa:12:fa:3a:8e:5c:80:47:09:
c8:09:11:03:ca:0c:48:36:75:7e:5f:95:22:e7:44:
25:83:f6:e8:82:51:ac:de:4a:e5:88:e1:a1:0e:97:
60:6e:92:d4:ad:db:9c:5a:e8:da:2e:cd:99:90:78:
19:45:8d:7a:ec:c4:57:15:91:76:2d:d5:31:99:77:
9b:07:22:6b:dc:52:c4:63:9a:25:a4:ac:89:33:86:
48:a6:4b:36:e6:ad:34:d3:ef:ab:1d:b3:1e:78:34:
6e:c7:0f:86:88:bc:1d:26:cc:51:53:76:25:3f:49:
6d:4a:50:b7:7c:a0:56:ca:1c:6c:6f:cf:aa:05:f9:
88:e7:7a:bb:d7:ae:f9:6a:84:c8:f3:47:b7:85:57:
92:8c:ae:f6:6a:76:ce:76:3f:46:d8:04:40:d8:87:
34:92:b5:f3:ef:00:64:21:e3:db:ba:75:e0:cb:dd:
d2:cd:51:ae:41:f3:e9:7a:2a:42:79:59:6f:b4:01:
d2:3a:8c:52:0b:d6:9c:46:42:50:31:75:79:0c:6e:
1a:cc:5d:49:de:e3:0f:a7:72:d5:87:26:24:c6:ef:
7e:97:cd:b7:3d:d3:c6:11:6d:d0:16:12:a2:25:2b:
d0:b5:59:19:6a:78:13:6f:d2:a1:1c:fc:1d:32:1f:
1b:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:F8:DB:C6:21:F7:54:73:C3:B2:1F:26:58:B4:89:B4:B0:C5:9A:22
X509v3 Authority Key Identifier:
keyid:5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/5AE4437029659539F54F900B35E43BE06A94B37B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/AS214478.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:841::/48
2a0f:85c1:860::/44
Signature Algorithm: sha256WithRSAEncryption
44:88:a4:38:65:65:dc:b4:0c:f3:a7:d5:96:66:42:48:63:69:
d5:86:7d:61:d8:85:da:a8:6e:c2:75:36:f4:f6:b8:c0:13:ec:
c9:2e:e3:09:5d:53:60:56:8a:70:60:db:cd:6a:2f:1c:77:a7:
8b:c7:ab:a2:17:4b:54:a2:4f:b0:f4:69:f7:6d:82:fe:dd:05:
05:2b:e3:3d:3f:2b:6c:2c:f7:bf:b7:6c:15:ac:11:30:6a:01:
9e:d4:67:df:39:85:fc:50:70:8a:43:74:f0:d0:38:48:e4:2d:
92:dc:b2:44:2f:91:11:f0:14:82:2f:8d:18:a0:e6:91:c7:85:
79:61:0e:12:e6:9a:5a:26:1b:50:c1:03:09:c3:b5:fe:2a:af:
0f:b2:3b:e4:d2:14:1d:20:db:86:b9:c1:7e:79:be:35:29:c5:
6c:1c:07:96:19:b9:4c:c2:cb:ef:c2:3c:43:b2:a9:10:79:b8:
72:0c:7e:28:00:71:15:cf:76:ce:c1:db:57:e9:6e:b0:6b:e8:
ae:97:d6:f6:98:6e:9b:2c:24:8b:0d:4f:78:e5:7e:40:a3:a9:
21:fd:ac:64:55:af:f1:30:bf:eb:ec:e0:f7:1a:bb:2a:63:47:
03:e9:78:78:8c:11:56:2d:e0:91:d3:b4:19:91:de:11:2d:cb:
30:ad:92:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 22 23:44:02 2024 by rpki-client on console-fra.rpki-client.org