Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fc615ebd-5c28-4334-8d2c-ec3158afdc8c/0/326130613a363034343a613531303a3a2f34362d3438203d3e20323135393536.roa
File: 326130613a363034343a613531303a3a2f34362d3438203d3e20323135393536.roa (raw, json)
Hash identifier: jNX1edO3NoBKPchWeescD+9QVzaj0+EJNOj2vK8tYok=
Subject key identifier: C1:F1:DB:66:C6:10:F9:67:C0:D2:0F:EB:77:65:46:36:6E:AB:D8:41
Certificate issuer: /CN=D7D838DED871774D2E875C9CB99B810DC1B38301
Certificate serial: 2A07DAFAC951D777D130B35B81A9FB311013BACD
Authority key identifier: D7:D8:38:DE:D8:71:77:4D:2E:87:5C:9C:B9:9B:81:0D:C1:B3:83:01
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/D7D838DED871774D2E875C9CB99B810DC1B38301.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fc615ebd-5c28-4334-8d2c-ec3158afdc8c/0/326130613a363034343a613531303a3a2f34362d3438203d3e20323135393536.roa
Signing time: Sun 28 Apr 2024 23:46:41 +0000
ROA not before: Sun 28 Apr 2024 23:41:41 +0000
ROA not after: Sun 27 Apr 2025 23:46:41 +0000
asID: 215956
IP address blocks: 2a0a:6044:a510::/46 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:07:da:fa:c9:51:d7:77:d1:30:b3:5b:81:a9:fb:31:10:13:ba:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D7D838DED871774D2E875C9CB99B810DC1B38301
Validity
Not Before: Apr 28 23:41:41 2024 GMT
Not After : Apr 27 23:46:41 2025 GMT
Subject: CN=C1F1DB66C610F967C0D20FEB776546366EABD841
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:b0:0c:b2:31:b4:70:dd:83:e9:66:73:d8:75:
d5:a6:47:8e:2c:6b:7a:75:e4:87:3a:cd:98:d5:73:
46:12:2c:d3:9c:cf:d8:ae:70:53:4e:32:e4:cf:56:
21:bc:1b:1b:11:69:5f:1b:dd:ee:e9:65:9b:19:77:
4d:df:b4:d3:ef:40:27:f6:ca:bf:72:d4:9a:11:8c:
e8:b8:5e:ef:99:9b:d7:2b:32:ca:aa:f0:49:88:75:
6d:a7:45:31:bd:02:10:c4:ef:56:cb:49:13:22:39:
51:50:a5:a7:3e:3f:4b:47:bf:27:ff:35:55:6c:af:
4d:97:19:38:31:57:55:57:a0:23:f9:84:a4:d3:e6:
17:ff:e7:f1:00:36:16:75:0b:26:43:12:27:77:4f:
64:9b:5b:41:b7:f6:f8:37:33:89:aa:26:89:c2:7f:
b8:dd:fa:d4:f7:43:62:7b:28:3d:d3:69:05:4c:a1:
05:67:58:96:ee:1e:e8:3f:68:81:0a:07:6b:a1:e8:
b4:73:ba:3a:15:33:88:5c:c2:94:3a:31:b9:04:4e:
87:e9:0d:ff:5d:00:30:62:3e:9f:6e:a4:98:1c:fc:
61:4f:7b:c2:30:9e:a3:81:aa:5f:29:0a:4f:f7:bf:
b4:fd:f0:f9:f0:d5:dc:0b:50:5f:43:0a:b6:94:bf:
7e:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:F1:DB:66:C6:10:F9:67:C0:D2:0F:EB:77:65:46:36:6E:AB:D8:41
X509v3 Authority Key Identifier:
keyid:D7:D8:38:DE:D8:71:77:4D:2E:87:5C:9C:B9:9B:81:0D:C1:B3:83:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fc615ebd-5c28-4334-8d2c-ec3158afdc8c/0/D7D838DED871774D2E875C9CB99B810DC1B38301.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/D7D838DED871774D2E875C9CB99B810DC1B38301.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc615ebd-5c28-4334-8d2c-ec3158afdc8c/0/326130613a363034343a613531303a3a2f34362d3438203d3e20323135393536.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6044:a510::/46
Signature Algorithm: sha256WithRSAEncryption
82:a8:83:18:49:ca:e6:ee:de:fd:52:62:b0:01:ce:66:18:a4:
0f:d6:04:34:43:50:23:c9:08:71:99:2e:d9:d7:4c:10:8b:b5:
90:c1:51:cb:c8:7e:80:43:74:5e:89:1c:47:5b:23:11:de:7d:
37:35:e0:01:89:37:9c:78:6c:10:1b:54:83:d6:fe:91:a6:e3:
8f:52:f5:cc:75:35:06:ee:c0:e8:15:41:cc:4b:62:9e:79:28:
e1:91:63:9c:11:2b:98:2f:98:91:2e:9f:bb:27:71:2e:f3:e3:
d4:f6:45:a1:55:25:22:f0:15:51:6e:6d:bb:20:b6:e6:58:73:
23:59:7d:3f:11:fb:66:20:70:a7:6a:8c:f4:72:a3:27:34:e3:
59:7a:6d:84:4a:02:e6:a8:69:a5:1e:8b:bc:b2:51:07:e7:7a:
07:2b:45:10:f0:b4:4f:58:d4:2a:e4:ee:79:b5:b9:d2:cc:45:
bc:f5:51:18:d1:ea:74:0d:ce:95:0e:84:18:4e:aa:5b:90:52:
12:d7:b0:da:79:60:84:73:70:45:67:ff:69:5d:e8:2c:9d:ab:
17:0e:d6:e8:50:38:da:8c:b8:5c:85:01:eb:ad:e0:ad:d5:46:
b2:41:62:2f:26:96:18:8b:f8:ff:e2:f8:24:37:a8:3b:97:f9:
b8:80:fe:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 10 12:35:04 2024 by rpki-client on console-ams.rpki-client.org