Route Origin Authorization
$ rpki-client -vvf rpki.xindi.eu/repo/XINDI/0/3138352e3137332e31372e302f32342d3234203d3e203438313132.roa
File: 3138352e3137332e31372e302f32342d3234203d3e203438313132.roa (raw, json)
Hash identifier: X051DqGzdwXRjmB3e/AA9NiUuWNow/OBsi2sYRi/O9U=
Subject key identifier: 80:06:91:21:72:85:BD:58:79:7E:06:5C:00:CD:1D:77:0B:48:CC:57
Certificate issuer: /CN=60183287eb08ece0c65fa49a3f45621c612ddbd1
Certificate serial: 623F795FFFE1804695AF582AACB582446693F100
Authority key identifier: 60:18:32:87:EB:08:EC:E0:C6:5F:A4:9A:3F:45:62:1C:61:2D:DB:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YBgyh-sI7ODGX6SaP0ViHGEt29E.cer
Subject info access: rsync://rpki.xindi.eu/repo/XINDI/0/3138352e3137332e31372e302f32342d3234203d3e203438313132.roa
Signing time: Wed 27 Sep 2023 11:50:57 +0000
ROA not before: Wed 27 Sep 2023 11:45:57 +0000
ROA not after: Wed 25 Sep 2024 11:50:57 +0000
asID: 48112
IP address blocks: 185.173.17.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.xindi.eu/repo/XINDI/0/60183287EB08ECE0C65FA49A3F45621C612DDBD1.crl
rsync://rpki.xindi.eu/repo/XINDI/0/60183287EB08ECE0C65FA49A3F45621C612DDBD1.mft
rsync://rpki.ripe.net/repository/DEFAULT/YBgyh-sI7ODGX6SaP0ViHGEt29E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 23 Jun 2024 15:27:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:3f:79:5f:ff:e1:80:46:95:af:58:2a:ac:b5:82:44:66:93:f1:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60183287eb08ece0c65fa49a3f45621c612ddbd1
Validity
Not Before: Sep 27 11:45:57 2023 GMT
Not After : Sep 25 11:50:57 2024 GMT
Subject: CN=800691217285BD58797E065C00CD1D770B48CC57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:2a:4e:35:24:bd:76:a3:b7:62:3b:e0:3e:90:
65:da:b8:b0:f6:7e:47:6c:55:b0:a8:de:c3:c4:06:
3a:b5:37:22:62:a6:a3:e4:65:18:21:8f:24:d6:36:
57:fb:6e:0e:07:a4:a9:be:e7:99:15:9f:ab:d4:9d:
e3:2d:4a:a3:16:04:09:88:09:85:37:3f:a5:1d:7e:
b2:8e:6f:fb:62:69:ba:93:5d:1a:e2:0c:b2:60:b3:
3d:40:ad:ee:24:20:a7:ba:1c:b4:a2:58:2a:ed:76:
2f:91:46:14:fc:ac:3a:d9:72:e3:71:22:8a:27:88:
99:2b:c6:be:c9:5d:f3:7c:4b:58:81:87:11:c6:54:
ad:ec:8d:1f:e2:bd:e9:0b:6b:65:67:0e:57:55:6e:
e5:ec:7f:d2:01:4c:41:5e:c3:dc:d2:5a:89:31:97:
2f:ce:bb:18:f0:60:34:f6:02:a5:55:35:6c:75:3c:
f0:bf:a1:e4:46:38:fd:3d:64:ef:f1:4b:f9:19:e4:
ab:f8:f3:73:83:ce:b9:56:f2:75:bd:6e:e7:99:c2:
17:27:4c:d8:1b:ea:4b:ec:ff:c8:0e:08:4f:02:99:
29:2c:a1:f2:f9:e9:20:10:f8:18:1d:9c:a9:0d:22:
e6:60:49:3f:ce:1f:cc:a0:01:91:27:79:79:22:a6:
9b:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:06:91:21:72:85:BD:58:79:7E:06:5C:00:CD:1D:77:0B:48:CC:57
X509v3 Authority Key Identifier:
keyid:60:18:32:87:EB:08:EC:E0:C6:5F:A4:9A:3F:45:62:1C:61:2D:DB:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.xindi.eu/repo/XINDI/0/60183287EB08ECE0C65FA49A3F45621C612DDBD1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YBgyh-sI7ODGX6SaP0ViHGEt29E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.xindi.eu/repo/XINDI/0/3138352e3137332e31372e302f32342d3234203d3e203438313132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.173.17.0/24
Signature Algorithm: sha256WithRSAEncryption
08:6a:ba:5b:38:5b:fd:a1:12:c0:7e:f9:bb:a6:3d:ce:29:ec:
4c:19:5e:0a:f7:80:98:70:a7:e0:44:84:3b:46:ea:d4:fe:78:
8a:fa:4b:14:0a:7d:91:6b:28:dd:a1:d5:6f:64:81:be:3c:18:
77:02:f0:96:46:06:4d:15:91:c8:a7:c0:24:10:21:96:25:14:
ee:24:55:bc:1c:b8:cc:8c:ca:fa:5a:18:98:51:9e:8f:9d:da:
db:8f:e1:80:2f:76:b7:95:f6:f4:9e:12:81:77:b4:fd:5b:21:
b4:17:16:c6:7b:3b:5f:2f:39:16:33:6c:33:b1:a3:a2:43:24:
8e:c8:c2:00:6c:f9:63:2f:64:3d:01:0a:da:e1:3c:1f:36:a3:
bd:d0:c3:89:2f:ab:b0:33:9f:90:d4:6b:96:b3:99:58:d9:17:
0b:78:7d:48:f0:1a:1b:36:92:2c:bd:86:33:25:0b:a8:20:0c:
be:ba:94:75:b2:f6:39:43:02:cb:73:31:af:09:22:61:c4:3d:
11:5f:a7:e5:30:bf:89:75:2b:64:35:67:36:19:a6:72:e1:1c:
2b:c3:cd:51:7a:8b:75:ac:bd:34:eb:ff:14:c7:40:b3:f2:d5:
3a:da:e9:f5:68:0f:c7:83:28:99:70:8c:0a:84:c5:69:49:25:
2b:40:fc:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 22 22:15:49 2024 by rpki-client on console-ams.rpki-client.org