Route Origin Authorization
$ rpki-client -vvf rpki.roa.net/rrdp/xTom/41/326130623a323534323a3330303a3a2f34302d3438203d3e20323036333135.roa
File: 326130623a323534323a3330303a3a2f34302d3438203d3e20323036333135.roa (raw, json)
Hash identifier: P8rI5fxsa/oAFJDHVKROpV6JCAcAB0aWP+tz+Fkr2zk=
Subject key identifier: 93:8C:1D:C8:1C:5F:A8:48:0F:42:25:9D:9E:C4:2E:70:DB:46:32:42
Certificate issuer: /CN=39f66f45a59b837ed24d6b9f20c60702114b70bb
Certificate serial: 4134DB99471C7437BFAE3533C7DEA0269D9D5CE7
Authority key identifier: 39:F6:6F:45:A5:9B:83:7E:D2:4D:6B:9F:20:C6:07:02:11:4B:70:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OfZvRaWbg37STWufIMYHAhFLcLs.cer
Subject info access: rsync://rpki.roa.net/rrdp/xTom/41/326130623a323534323a3330303a3a2f34302d3438203d3e20323036333135.roa
Signing time: Thu 12 Oct 2023 16:10:35 +0000
ROA not before: Thu 12 Oct 2023 16:05:35 +0000
ROA not after: Thu 10 Oct 2024 16:10:35 +0000
asID: 206315
IP address blocks: 2a0b:2542:300::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki.roa.net/rrdp/xTom/41/39F66F45A59B837ED24D6B9F20C60702114B70BB.crl
rsync://rpki.roa.net/rrdp/xTom/41/39F66F45A59B837ED24D6B9F20C60702114B70BB.mft
rsync://rpki.ripe.net/repository/DEFAULT/OfZvRaWbg37STWufIMYHAhFLcLs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 18 Jun 2024 11:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:34:db:99:47:1c:74:37:bf:ae:35:33:c7:de:a0:26:9d:9d:5c:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39f66f45a59b837ed24d6b9f20c60702114b70bb
Validity
Not Before: Oct 12 16:05:35 2023 GMT
Not After : Oct 10 16:10:35 2024 GMT
Subject: CN=938C1DC81C5FA8480F42259D9EC42E70DB463242
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:74:44:f0:46:52:d9:95:0a:06:b6:91:9c:44:
eb:f3:e5:98:9e:67:ac:ff:7d:5e:27:d6:2d:fe:b9:
d5:5b:1a:5e:74:a7:e0:16:bb:bc:5e:57:a5:22:38:
a8:42:90:aa:50:b6:7d:df:23:05:74:4f:65:fa:cc:
0d:25:23:f4:94:2a:a6:87:3a:06:20:c0:a2:52:6f:
74:a8:21:05:bc:54:cb:bf:15:65:7a:87:97:b8:57:
19:56:73:b0:e5:b4:b7:02:ad:7c:71:88:1f:45:fa:
fa:b0:e5:c3:af:7d:8b:c5:ea:96:e3:3f:4c:af:20:
75:1e:da:08:8f:83:c2:df:45:56:d9:af:a2:6a:e2:
a6:ac:42:d8:9a:b3:ca:60:b8:3d:9d:60:91:7f:d2:
78:a6:a7:f2:a4:e4:dd:aa:66:0b:73:23:17:36:5d:
e7:47:22:88:9c:aa:ba:68:96:0d:b3:5e:fc:57:fe:
54:15:33:20:16:93:4e:af:0e:5d:45:33:70:88:26:
7c:8b:8b:65:d6:6a:eb:f9:f9:07:9b:3d:e4:25:d7:
28:aa:84:86:c3:ad:ed:81:25:7a:a1:d4:e5:0d:8d:
61:c9:08:5a:a8:3b:90:34:3a:e0:3e:4b:7d:d7:42:
d5:a9:f8:4f:70:73:5c:32:ed:19:8d:81:03:44:f7:
64:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:8C:1D:C8:1C:5F:A8:48:0F:42:25:9D:9E:C4:2E:70:DB:46:32:42
X509v3 Authority Key Identifier:
keyid:39:F6:6F:45:A5:9B:83:7E:D2:4D:6B:9F:20:C6:07:02:11:4B:70:BB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.roa.net/rrdp/xTom/41/39F66F45A59B837ED24D6B9F20C60702114B70BB.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OfZvRaWbg37STWufIMYHAhFLcLs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/41/326130623a323534323a3330303a3a2f34302d3438203d3e20323036333135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:2542:300::/40
Signature Algorithm: sha256WithRSAEncryption
3c:a7:eb:f2:f2:14:85:6c:4c:ba:78:a9:43:c9:ce:d2:b2:f4:
75:25:95:ea:59:bf:65:e7:1a:6d:0d:8d:04:05:97:ba:22:5c:
98:10:b8:83:8f:9c:74:6f:a6:27:99:65:18:7c:76:64:f3:70:
9d:40:e9:e7:b6:30:c7:3f:a5:6b:b3:c8:05:1f:1a:85:30:e7:
cd:a0:7d:06:22:5a:da:86:75:d9:ee:3a:45:62:46:ca:59:e7:
d2:32:27:25:b4:4b:e4:80:84:18:b5:6b:e9:22:45:e2:0a:d3:
05:6e:03:d6:02:81:72:de:95:fe:96:19:33:a1:65:60:4c:d5:
4f:ba:78:4e:e5:05:6a:ae:ef:37:80:54:e6:3c:83:bc:6a:09:
cf:82:9a:b6:d1:22:71:1d:54:70:7f:65:e3:aa:5e:ea:04:c1:
19:21:57:04:48:e1:42:f4:b5:1a:90:8c:83:7c:b6:46:0c:fa:
5a:61:dc:9d:2e:7c:e7:b1:db:4c:ab:2f:94:e1:4b:d3:e5:c0:
62:9d:41:31:7b:6c:d5:09:45:b1:49:62:fb:e9:8e:8c:ee:ff:
91:66:91:d7:a8:c1:cd:e1:86:75:24:5e:27:84:69:ef:d8:29:
31:7e:ed:86:bd:cf:cd:07:66:b8:f7:a4:fb:94:d6:58:81:28:
d9:13:e6:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 17 13:45:02 2024 by rpki-client on console-ams.rpki-client.org