Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/326130653a666363303a3a2f32392d3239203d3e20323031393633.roa
File: 326130653a666363303a3a2f32392d3239203d3e20323031393633.roa (raw, json)
Hash identifier: 4qS8Wpqvvr2unQIRZuPXt/uvcB/YyRtt6wIAetdA5FQ=
Subject key identifier: 57:FD:D6:46:4A:D6:04:15:18:1E:C5:9E:DD:49:C0:1E:6F:12:44:4C
Certificate issuer: /CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Certificate serial: 0625A3322FDB6CBBEA2AD0A1C13E89C1EAFDE67D
Authority key identifier: 83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/326130653a666363303a3a2f32392d3239203d3e20323031393633.roa
Signing time: Sat 23 Sep 2023 12:26:35 +0000
ROA not before: Sat 23 Sep 2023 12:21:35 +0000
ROA not after: Sat 21 Sep 2024 12:26:35 +0000
asID: 201963
IP address blocks: 2a0e:fcc0::/29 maxlen: 29
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.mft
rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Jun 2024 16:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:25:a3:32:2f:db:6c:bb:ea:2a:d0:a1:c1:3e:89:c1:ea:fd:e6:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Validity
Not Before: Sep 23 12:21:35 2023 GMT
Not After : Sep 21 12:26:35 2024 GMT
Subject: CN=57FDD6464AD60415181EC59EDD49C01E6F12444C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:af:3a:a7:a9:e7:21:72:e5:f8:32:d4:23:e9:
3f:e4:39:8f:12:76:e5:03:9a:c9:27:a5:dd:ff:71:
3c:98:a0:73:11:f7:75:14:ab:8e:2d:5c:10:ad:49:
e7:b8:10:e5:d7:86:83:5a:73:39:c0:e8:b8:82:cf:
42:61:c8:5a:7f:f9:0a:41:38:5f:fa:82:bf:a6:a4:
e2:af:51:bd:8a:f3:99:f2:7a:53:cc:18:7c:52:e3:
70:8d:07:57:c4:1e:7f:eb:77:88:e3:e8:bd:d6:32:
e3:94:bc:cb:dc:31:81:06:a5:f5:04:39:90:74:be:
89:0d:89:b2:ef:cb:85:4e:b5:47:9a:19:e2:cd:bd:
b4:0a:98:b6:5f:8d:03:08:63:69:21:86:63:45:00:
39:70:9f:8e:82:09:30:16:68:cd:1a:aa:68:44:c9:
3f:bc:5b:ad:7f:d6:45:4c:91:93:3b:37:3c:65:4b:
d4:15:19:bf:4a:3d:5e:ae:f5:33:17:6b:99:95:10:
2c:84:62:20:cf:e5:95:69:29:dd:1a:c1:4b:02:f6:
aa:90:6e:e6:72:41:49:66:a7:4b:ed:a2:ba:20:23:
51:83:a8:48:d5:cc:aa:a5:33:f0:df:24:c7:b2:5a:
b7:d7:ab:c2:df:bf:73:8d:38:c4:3a:db:0f:d4:4d:
fa:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:FD:D6:46:4A:D6:04:15:18:1E:C5:9E:DD:49:C0:1E:6F:12:44:4C
X509v3 Authority Key Identifier:
keyid:83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/326130653a666363303a3a2f32392d3239203d3e20323031393633.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:fcc0::/29
Signature Algorithm: sha256WithRSAEncryption
41:85:01:67:57:48:25:5e:fd:c1:d7:23:6a:98:45:5a:4c:fb:
bb:cf:ae:6b:c4:96:a6:b4:b9:58:e0:4b:c2:0c:db:63:cf:0a:
d9:3e:25:70:b3:c4:9a:f5:21:fa:35:de:1c:de:ac:4c:43:fc:
e9:05:60:40:7f:e5:03:7b:43:3f:9d:65:70:cc:73:1c:48:3e:
26:03:f5:61:1c:43:db:54:70:f7:22:74:bb:c0:86:c0:cd:98:
af:9b:a3:fd:e0:99:9d:0e:67:05:9f:50:4f:c5:df:e7:74:cc:
17:a6:da:bc:a0:1a:4f:18:15:b0:97:dd:fb:ee:e2:f4:41:08:
d9:a0:33:21:9b:5e:28:df:ab:98:d2:b6:d5:cf:7b:87:71:ae:
67:d1:92:be:63:38:3e:56:6b:de:f8:3c:04:47:97:d5:e1:58:
1e:9a:f2:c0:ef:fd:83:71:14:60:10:b5:27:32:cb:63:54:19:
00:11:f3:b4:88:0a:aa:16:1a:18:0b:f7:54:02:4a:89:fb:33:
61:e0:5b:30:1d:7e:fb:a2:af:94:0c:c3:1a:8a:8d:68:14:3d:
60:59:49:4b:18:98:33:a2:3b:f2:82:53:aa:8a:22:1d:95:30:
90:08:aa:7b:01:4b:cb:6c:53:69:5f:72:ba:f1:e9:b2:c1:89:
1c:e2:61:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 31 21:33:37 2024 by rpki-client on console-fra.rpki-client.org