Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a333a3a2f34382d3438203d3e203631333137.roa
File: 326131333a393530303a333a3a2f34382d3438203d3e203631333137.roa (raw, json)
Hash identifier: QGM5PPZIWBnCdVYRvtid9QjYRGPr0f5a8nkmbSpLNAQ=
Subject key identifier: 6D:DD:26:39:23:30:72:17:D0:0A:D6:7B:94:0A:77:67:A3:28:C1:5C
Certificate issuer: /CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Certificate serial: 498295613A153BAA6E33333F1F290EA1BD26B218
Authority key identifier: E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a333a3a2f34382d3438203d3e203631333137.roa
Signing time: Thu 19 Oct 2023 14:03:53 +0000
ROA not before: Thu 19 Oct 2023 13:58:53 +0000
ROA not after: Thu 17 Oct 2024 14:03:53 +0000
asID: 61317
IP address blocks: 2a13:9500:3::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.mft
rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 23:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:82:95:61:3a:15:3b:aa:6e:33:33:3f:1f:29:0e:a1:bd:26:b2:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Validity
Not Before: Oct 19 13:58:53 2023 GMT
Not After : Oct 17 14:03:53 2024 GMT
Subject: CN=6DDD263923307217D00AD67B940A7767A328C15C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:db:1d:44:22:93:8c:02:c8:04:c9:eb:5f:d0:
29:27:94:d5:ff:0a:e0:48:b9:de:54:b8:f8:de:b4:
a3:f3:ef:5e:de:df:91:aa:ea:5b:83:9b:64:94:fd:
06:9a:1c:4e:cb:a5:81:53:c5:aa:20:8b:2c:70:28:
4c:45:a5:be:24:dd:88:b9:63:2e:aa:c8:27:49:fc:
15:80:82:56:1b:af:46:4d:25:d9:67:1b:c0:50:3e:
15:ff:49:36:55:76:29:04:48:94:d0:f9:8b:95:b0:
86:f4:c5:f1:a6:61:0a:6f:98:a0:c8:4c:31:7b:92:
01:47:9f:3b:9b:9d:61:21:01:cd:2d:22:51:25:3d:
99:b9:5d:28:2f:23:e3:47:bf:14:3d:90:70:55:f3:
97:d1:3b:06:38:a2:4f:41:9b:9f:7c:db:34:69:4f:
ad:24:39:f5:97:38:f1:d9:0c:26:d9:40:a7:76:47:
9c:e4:43:23:23:9d:b5:d9:e7:67:59:2a:af:96:34:
17:fb:d2:b1:d9:0e:cc:53:0a:b5:b2:24:6e:6c:f3:
5c:45:9e:87:73:1e:f0:38:e2:ba:28:c0:82:08:1b:
f1:cc:f4:1c:c8:4e:96:1d:45:69:40:d3:a5:d8:c5:
6e:ae:a9:b7:cb:3f:c6:bb:15:f2:a1:c8:db:78:6d:
c4:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:DD:26:39:23:30:72:17:D0:0A:D6:7B:94:0A:77:67:A3:28:C1:5C
X509v3 Authority Key Identifier:
keyid:E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a333a3a2f34382d3438203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:3::/48
Signature Algorithm: sha256WithRSAEncryption
a5:21:7c:85:34:71:09:19:a4:e1:03:8c:f6:76:08:6b:85:d9:
cf:24:b2:ed:7c:13:9a:ad:8e:b2:03:da:80:60:15:f0:cf:02:
05:35:a0:9c:42:e4:d7:cb:a5:3f:fc:6c:2a:33:76:4c:79:1e:
83:ce:89:f6:48:80:a4:4e:22:9f:8b:ca:90:e0:1c:b1:76:11:
0e:ec:e6:4e:48:ba:fb:b7:51:63:c8:0e:d8:44:32:50:d6:aa:
57:80:ab:98:ae:88:06:98:b8:c1:fe:91:77:d0:f0:63:f8:90:
f4:b0:e2:c8:68:1d:da:bc:e9:7e:62:92:52:b1:f9:95:69:c7:
80:72:a3:b7:6a:34:d7:96:bb:8c:e0:4d:78:ce:de:dc:39:98:
6a:59:f9:e5:10:a0:60:a9:4e:f9:ec:a8:3e:b4:07:8e:14:76:
ce:7a:69:00:57:cf:3f:9d:25:b5:d0:68:0c:1e:06:3e:e1:0c:
f2:c8:5f:4a:fc:40:df:65:b7:d4:c2:17:d5:0c:0e:b9:a5:47:
ce:80:15:fe:47:6a:d9:ef:b7:07:94:67:5c:02:d1:03:85:17:
96:66:60:4f:40:0e:69:23:8c:9b:df:f0:f7:b3:ac:c5:67:d2:
66:e6:d7:b6:45:b1:20:29:4f:4b:f6:a8:4b:51:34:ef:cd:f0:
20:f2:e0:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 06:25:49 2024 by rpki-client on console-ams.rpki-client.org