Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a383a3a2f34382d3438203d3e203239383032.roa
File: 326131333a393530303a383a3a2f34382d3438203d3e203239383032.roa (raw, json)
Hash identifier: JqK9W4eEUFAjzNoLPGoCZ/2FgR7+I5wCT52wboIjcvI=
Subject key identifier: A6:17:52:F5:29:64:18:7A:96:F3:04:77:3A:C0:6C:BA:62:A0:CE:42
Certificate issuer: /CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Certificate serial: 5E4AB4B01237E2FD36398DA20E3897CA51346115
Authority key identifier: E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a383a3a2f34382d3438203d3e203239383032.roa
Signing time: Tue 02 Jan 2024 11:26:29 +0000
ROA not before: Tue 02 Jan 2024 11:21:29 +0000
ROA not after: Tue 31 Dec 2024 11:26:29 +0000
asID: 29802
IP address blocks: 2a13:9500:8::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.mft
rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 May 2024 08:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:4a:b4:b0:12:37:e2:fd:36:39:8d:a2:0e:38:97:ca:51:34:61:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Validity
Not Before: Jan 2 11:21:29 2024 GMT
Not After : Dec 31 11:26:29 2024 GMT
Subject: CN=A61752F52964187A96F304773AC06CBA62A0CE42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:02:11:62:91:8a:c7:ff:47:d8:8e:78:49:e6:
bc:b8:f3:47:d0:37:22:08:63:cd:d8:81:79:cb:6c:
68:a6:08:45:33:82:c8:a0:7a:a8:76:40:7b:a9:af:
52:67:29:63:cd:fa:e2:5f:34:b3:5f:3c:62:07:37:
a5:cc:cf:bd:03:19:65:61:35:5f:79:9b:16:b5:e7:
18:52:1e:32:75:99:88:b5:ad:cc:4a:51:a7:b3:97:
31:28:b9:3f:35:7a:24:b2:74:c0:f7:e2:01:cd:65:
5f:22:bd:15:1f:60:38:b8:7a:3a:32:c8:6f:bf:b9:
6c:5a:3a:66:23:8d:a7:d6:10:70:81:d2:69:e3:d5:
a7:d5:96:84:0e:49:a5:d5:f5:9d:ef:b5:76:96:d5:
06:36:8c:b8:66:5c:82:19:18:72:2e:49:84:b4:5f:
b0:3d:72:b3:62:a4:ab:86:a4:f3:4d:1e:fa:22:f0:
3b:9e:12:a0:8c:1f:c2:dd:c0:97:ef:b1:33:81:a5:
e2:8c:95:5d:fd:c3:a4:59:c3:78:66:bd:ad:69:f1:
54:fc:47:b4:0b:1e:99:f4:65:11:5b:5f:3a:94:03:
ec:37:01:bc:e7:33:ab:34:20:83:b3:e8:08:96:cd:
7e:8a:7f:1b:8d:14:64:e9:78:ed:a3:8f:03:1f:d4:
c9:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:17:52:F5:29:64:18:7A:96:F3:04:77:3A:C0:6C:BA:62:A0:CE:42
X509v3 Authority Key Identifier:
keyid:E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a383a3a2f34382d3438203d3e203239383032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:8::/48
Signature Algorithm: sha256WithRSAEncryption
57:83:e8:56:7c:d1:28:28:48:60:1e:03:4d:9a:bf:f5:5b:0e:
58:03:e4:11:cc:cc:80:20:3b:68:7e:c2:7b:33:9a:05:fd:2c:
e9:45:cc:fb:13:9d:bd:90:d2:1a:6b:13:ed:b4:69:c1:ef:4a:
17:eb:be:68:db:4f:56:20:b7:4d:43:06:34:89:43:ec:c8:80:
2a:ca:c2:d4:b7:f7:ba:e6:56:bd:1f:ec:41:4e:dd:ae:3d:9d:
be:33:bc:17:d1:1c:db:f3:0b:f9:16:2d:64:61:d5:eb:1a:cb:
98:84:a7:82:7f:1b:96:ac:96:af:99:c1:b5:82:be:70:3a:18:
db:d6:f2:22:0f:ef:c9:6b:51:59:e0:bb:b7:6b:0c:42:18:41:
48:b4:2f:03:15:d0:ca:ed:89:98:66:a1:ad:31:6e:47:dc:3d:
d9:d3:03:20:5c:f6:5d:43:18:57:03:41:ff:3b:f9:2e:02:6f:
8c:5d:77:1f:5c:90:e7:f1:87:c3:da:9c:42:70:43:23:ea:1e:
18:93:6a:85:55:01:1c:c7:be:77:24:db:8e:08:05:0c:19:9f:
77:11:3e:ea:d2:7c:27:f7:d0:f1:92:2e:67:fb:d9:ca:75:ab:
0f:8e:03:73:36:bd:e3:c6:d3:18:46:cc:81:d1:f9:ce:aa:19:
82:8b:7a:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 12:15:34 2024 by rpki-client on console-fra.rpki-client.org