Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a31393a3a2f34382d3438203d3e203239383032.roa
File: 326131333a393530303a31393a3a2f34382d3438203d3e203239383032.roa (raw, json)
Hash identifier: jF79YPU3ej6IoUdXvF2GTONAQSkqhOOH7hk2LgC1WaU=
Subject key identifier: E0:79:E3:8C:67:17:64:D9:9A:2D:34:27:15:E2:AB:6A:73:51:8D:61
Certificate issuer: /CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Certificate serial: 5C9DB69532F4DEB13E1F1E9CEB15085FA0A8E75D
Authority key identifier: E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a31393a3a2f34382d3438203d3e203239383032.roa
Signing time: Mon 12 Feb 2024 16:01:26 +0000
ROA not before: Mon 12 Feb 2024 15:56:26 +0000
ROA not after: Mon 10 Feb 2025 16:01:26 +0000
asID: 29802
IP address blocks: 2a13:9500:19::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.mft
rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 May 2024 13:40:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:9d:b6:95:32:f4:de:b1:3e:1f:1e:9c:eb:15:08:5f:a0:a8:e7:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Validity
Not Before: Feb 12 15:56:26 2024 GMT
Not After : Feb 10 16:01:26 2025 GMT
Subject: CN=E079E38C671764D99A2D342715E2AB6A73518D61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:87:1f:7b:69:88:f6:c2:8f:45:ac:4b:0e:f9:
f6:5e:d5:d3:d4:22:14:49:2b:ce:a3:32:d9:d0:bb:
76:98:37:e4:de:19:d6:ee:76:e7:3c:61:f1:50:9d:
b8:c0:56:e5:ac:6d:4b:1c:2f:8c:e3:dc:5f:e9:4d:
3d:38:7d:ed:cc:aa:cd:f5:93:b2:a4:b2:aa:68:23:
2b:98:e4:c0:ee:2d:67:1b:e3:cf:d1:8a:87:6f:9a:
86:43:7f:6d:e5:8f:76:c3:96:14:c8:b2:6c:fd:1d:
d0:8f:64:19:52:a4:19:65:5e:fc:07:c6:7c:a1:9c:
bd:cf:a6:05:85:39:6f:65:ad:4a:9c:ca:8c:25:2c:
93:58:cb:38:fa:85:e5:db:06:62:d3:12:e5:48:75:
ad:d5:e3:f9:54:e5:61:f0:72:8a:93:ed:bb:5b:08:
8b:8b:d2:08:07:19:0e:ef:82:43:e5:eb:e2:55:c3:
88:bf:8b:42:27:16:6c:68:4a:80:31:9f:f3:b6:35:
38:41:de:94:4f:fa:8b:f7:24:de:3c:e5:28:13:ee:
b9:ee:2e:b3:5e:4a:39:13:ad:a4:41:67:fa:21:65:
76:18:34:24:73:51:7d:52:cf:20:94:37:51:1c:71:
c8:08:84:ad:01:11:4e:f1:f6:39:92:92:10:54:67:
14:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:79:E3:8C:67:17:64:D9:9A:2D:34:27:15:E2:AB:6A:73:51:8D:61
X509v3 Authority Key Identifier:
keyid:E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a31393a3a2f34382d3438203d3e203239383032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:19::/48
Signature Algorithm: sha256WithRSAEncryption
5c:2a:12:02:4c:d5:dc:ea:9f:cb:30:63:04:40:a6:5c:a9:57:
30:25:26:ba:8d:2d:58:38:79:7b:c0:14:67:22:57:4a:22:7b:
31:76:eb:6c:31:eb:5b:77:48:92:af:b5:8a:9c:78:00:52:c7:
ca:9c:2a:65:48:d4:a3:64:d1:b1:d8:3e:ad:ea:f8:db:3f:4a:
38:59:00:fe:cc:83:b2:86:9e:8d:a2:9f:07:11:30:a3:b0:7d:
7e:2f:99:dd:6a:81:11:b7:fe:81:ce:92:ae:c2:c5:be:2f:e8:
f4:41:ba:6c:45:e6:1f:e6:07:86:54:b7:e3:12:ea:2c:ae:42:
cf:a1:fb:10:74:a1:a9:8b:f8:51:98:16:5a:d9:8d:f7:0e:9f:
91:3f:62:ef:66:78:d1:21:d0:fc:f3:e8:21:03:4d:9a:cf:b4:
d4:5a:99:ba:1c:0d:77:76:67:bb:03:a6:28:bd:b0:bf:ca:2f:
26:e0:45:1e:3e:23:58:7e:00:1a:8d:e3:18:1e:93:72:f9:5c:
05:26:b1:6e:9d:51:23:ac:04:ea:9a:1e:cc:ae:47:45:be:0f:
67:62:24:e5:f5:11:b9:9b:8f:12:b9:b8:c5:d2:5f:65:60:e8:
0f:5e:0b:8e:9c:2f:1c:22:b4:56:f1:fe:6b:b1:4a:f2:91:1a:
53:cb:05:59
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Tue Apr 30 18:14:16 2024 by rpki-client on console-fra.rpki-client.org