Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/AS214676.roa
File: AS214676.roa (raw, json)
Hash identifier: PKB+preY5BzTZ477ube5mOXIilbsZOLlPs9OT9bXI7s=
Subject key identifier: AD:A7:31:EB:7E:EB:C8:74:F3:9B:1F:51:58:75:1B:E1:67:D2:CD:BB
Certificate issuer: /CN=5ae4437029659539f54f900b35e43be06a94b37b
Certificate serial: 370B8D48A07B318168D6A682AB151203A02E3D93
Authority key identifier: 5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/AS214676.roa
Signing time: Sun 23 Jun 2024 10:11:18 +0000
ROA not before: Sun 23 Jun 2024 10:06:18 +0000
ROA not after: Sun 22 Jun 2025 10:11:18 +0000
asID: 214676
IP address blocks: 2a0f:85c1:81b::/48 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:0b:8d:48:a0:7b:31:81:68:d6:a6:82:ab:15:12:03:a0:2e:3d:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ae4437029659539f54f900b35e43be06a94b37b
Validity
Not Before: Jun 23 10:06:18 2024 GMT
Not After : Jun 22 10:11:18 2025 GMT
Subject: CN=ADA731EB7EEBC874F39B1F5158751BE167D2CDBB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:45:66:54:b4:1b:a4:27:da:ea:1b:40:e1:ad:
1a:7a:a3:e0:ae:1d:d8:81:67:39:8d:cf:0c:8d:f3:
ff:89:5f:69:fe:34:91:39:84:41:16:d6:f0:f3:cd:
9f:63:c5:a5:3e:c9:6f:07:84:58:bd:f1:33:1f:00:
06:e5:0f:a1:18:a1:4c:3f:b4:d4:6f:d7:15:d3:06:
71:e9:98:a8:49:be:f7:85:28:bd:13:49:36:1b:ca:
5c:58:ae:28:a7:06:52:21:24:66:76:8c:6c:ad:10:
12:80:06:ba:0b:75:5b:b5:f9:e6:a6:24:b0:c0:9a:
a8:25:bb:c0:71:67:c2:9c:c6:56:fd:ab:b1:62:40:
bc:9e:82:80:cb:1a:61:55:81:a8:c1:36:33:d6:a4:
c7:bb:24:8f:d1:4f:32:9d:3d:bf:48:ec:ab:de:71:
5c:56:d2:80:a7:04:20:48:bf:37:58:3f:40:7c:91:
05:ea:60:26:a6:8a:03:b4:60:22:e8:78:ad:c6:81:
15:6f:0a:11:c0:4e:5f:a8:94:c6:5a:22:a0:15:db:
90:5c:fe:ef:85:29:40:25:86:a2:3a:67:cb:c2:c7:
f3:10:09:73:ea:d8:67:15:eb:59:74:c0:99:93:99:
58:c9:98:6b:92:2f:c3:b5:8e:6a:52:dc:57:46:98:
8b:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:A7:31:EB:7E:EB:C8:74:F3:9B:1F:51:58:75:1B:E1:67:D2:CD:BB
X509v3 Authority Key Identifier:
keyid:5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/5AE4437029659539F54F900B35E43BE06A94B37B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/AS214676.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:81b::/48
Signature Algorithm: sha256WithRSAEncryption
a5:6f:c5:27:dd:e3:9e:8b:8e:89:30:de:ac:a1:10:9f:c4:d5:
6b:53:4f:c2:37:89:00:05:9c:c4:56:03:66:6c:ad:e4:e4:bb:
61:28:8f:5e:a1:cf:17:fc:75:38:99:af:03:69:de:6e:00:46:
d5:01:f1:17:e5:18:c7:52:17:34:68:b2:6f:ce:1c:70:09:c5:
c5:65:ae:6f:f6:82:96:7f:1b:8c:c5:55:26:23:9b:97:bc:fd:
c7:9e:c1:80:8a:98:b4:87:2e:47:fa:01:5b:3c:43:32:cc:b3:
6b:c3:89:04:45:f8:6f:b4:91:6f:1f:43:ba:9a:55:23:b1:33:
1c:56:4d:97:81:1f:da:98:78:e9:84:16:55:6d:74:f7:ab:ff:
23:96:a7:1c:cd:7f:92:5d:c6:83:14:03:42:14:81:7b:95:ad:
94:48:d3:33:2e:29:49:94:52:16:4f:4f:a2:a9:22:f6:de:56:
94:80:71:db:8f:9f:9d:a4:5a:bb:ca:cb:33:84:6e:14:3d:15:
9c:80:8f:53:c3:22:7b:91:9e:92:f7:04:b6:a7:47:5e:d4:8a:
00:78:4e:53:f1:7a:1b:91:e2:7e:cb:2d:0c:05:6a:1b:c0:0f:
97:23:dc:dd:17:4d:1e:d7:30:76:8d:ab:e9:b5:c2:76:c1:88:
85:dd:b4:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 22 23:44:02 2024 by rpki-client on console-fra.rpki-client.org