Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a353a3a2f34382d3438203d3e203631333137.roa
File: 326131333a393530303a353a3a2f34382d3438203d3e203631333137.roa (raw, json)
Hash identifier: tt3q8huBWNYrpUyB/MNe72kCuRhF5cgckoFZQ7dVIvs=
Subject key identifier: E1:9B:1A:D7:C5:58:36:C3:7A:F1:ED:FB:04:1E:67:B9:4C:DC:B4:4D
Certificate issuer: /CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Certificate serial: 4364F74A9E2220CAFBA6AF638E3BD3BC08984B66
Authority key identifier: E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a353a3a2f34382d3438203d3e203631333137.roa
Signing time: Thu 19 Oct 2023 14:05:02 +0000
ROA not before: Thu 19 Oct 2023 14:00:02 +0000
ROA not after: Thu 17 Oct 2024 14:05:02 +0000
asID: 61317
IP address blocks: 2a13:9500:5::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.mft
rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 23:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:64:f7:4a:9e:22:20:ca:fb:a6:af:63:8e:3b:d3:bc:08:98:4b:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Validity
Not Before: Oct 19 14:00:02 2023 GMT
Not After : Oct 17 14:05:02 2024 GMT
Subject: CN=E19B1AD7C55836C37AF1EDFB041E67B94CDCB44D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:8b:a2:21:11:3d:4c:2b:ac:61:7e:52:d5:40:
50:78:91:b0:c1:a7:d5:d3:95:9a:28:f3:bb:89:b3:
fa:76:eb:96:dd:99:0f:67:0f:37:76:05:e9:ee:41:
c9:4c:0f:8a:fa:99:75:fc:94:5d:87:43:22:0f:d1:
45:d0:e8:27:8d:3a:c2:1f:53:93:7d:3b:1c:87:87:
80:f1:58:4b:fa:ac:83:be:9b:2b:12:c1:4b:07:1b:
b0:81:4a:4a:33:86:3a:0c:60:f4:70:8c:44:2a:6a:
af:b8:cf:a7:d7:6c:4f:be:99:7e:30:8f:e2:5e:1f:
22:2c:80:2c:48:5e:30:d7:b8:4c:aa:43:f2:55:f9:
33:47:02:5d:26:13:b3:b2:20:c9:be:19:5a:80:4c:
69:c7:4b:6f:ac:e1:3d:bf:14:97:24:26:bf:8a:c9:
9e:25:ec:44:53:9c:fb:02:18:2d:88:e2:59:04:0c:
09:a0:c0:1c:f6:2c:f6:13:59:3a:51:e3:a5:1c:8d:
73:33:68:e5:e9:22:e9:41:9f:e1:99:c1:28:8f:c1:
e6:e0:13:58:92:f5:f9:14:8c:60:b2:47:d8:e7:e9:
99:db:e5:63:67:34:cd:e5:01:10:96:55:10:bb:09:
bd:4a:0a:a2:82:72:2e:d1:99:5a:29:3d:76:77:31:
23:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:9B:1A:D7:C5:58:36:C3:7A:F1:ED:FB:04:1E:67:B9:4C:DC:B4:4D
X509v3 Authority Key Identifier:
keyid:E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a353a3a2f34382d3438203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:5::/48
Signature Algorithm: sha256WithRSAEncryption
47:62:e8:5f:5f:7d:49:35:5a:72:df:a1:b7:7e:36:11:ea:99:
d1:9b:19:01:40:40:bf:4f:bc:62:f4:db:78:9a:e7:9e:da:a7:
d7:47:80:70:44:1b:55:79:01:1b:75:8c:a9:ba:cc:9d:cf:bc:
f9:50:e6:40:25:76:65:b3:74:ab:30:c2:d3:47:8e:f3:25:83:
93:c4:ac:9c:d0:6a:29:20:4a:bd:e2:79:70:ea:0e:f5:37:2c:
52:7c:02:21:51:70:1d:bd:89:01:18:24:94:9b:11:ba:a6:dd:
87:75:1e:32:0e:1f:18:cf:fc:e2:49:e2:bb:2d:c8:4b:ee:25:
a4:0a:9a:c4:39:57:68:30:b4:83:46:0c:6f:46:86:69:2f:43:
a6:09:67:dd:ff:0b:0b:01:c0:ba:d7:ef:35:e7:90:24:8a:ce:
af:cf:77:fb:ab:74:20:69:dc:52:95:44:36:ed:2b:45:f0:5d:
c6:35:7e:a2:dd:f7:6d:d9:be:ca:bb:a6:8d:c6:6d:af:45:c2:
64:eb:9a:a9:c6:09:59:9a:1b:e6:e8:9d:41:10:c6:e4:eb:58:
34:b8:cd:de:cc:c8:e6:6c:ce:76:08:92:53:76:1f:78:db:05:
f1:2b:16:10:ea:25:6f:a4:d5:f7:08:c7:8a:ba:9c:7f:db:4a:
a2:4b:53:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 06:25:49 2024 by rpki-client on console-ams.rpki-client.org