Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a613a3a2f34382d3438203d3e203239383032.roa
File: 326131333a393530303a613a3a2f34382d3438203d3e203239383032.roa (raw, json)
Hash identifier: JRDE3sJvjZ2KkfyLrAvREdEvJVJpm+oM9mtl+D+NNVY=
Subject key identifier: F8:0D:1A:00:04:84:F4:26:F1:02:F0:33:05:74:B2:BB:73:D8:E9:58
Certificate issuer: /CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Certificate serial: 616B41A1AC39964997CA0A6093FD4605230CAB20
Authority key identifier: E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a613a3a2f34382d3438203d3e203239383032.roa
Signing time: Mon 12 Feb 2024 16:00:28 +0000
ROA not before: Mon 12 Feb 2024 15:55:28 +0000
ROA not after: Mon 10 Feb 2025 16:00:28 +0000
asID: 29802
IP address blocks: 2a13:9500:a::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.mft
rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 May 2024 08:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:6b:41:a1:ac:39:96:49:97:ca:0a:60:93:fd:46:05:23:0c:ab:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Validity
Not Before: Feb 12 15:55:28 2024 GMT
Not After : Feb 10 16:00:28 2025 GMT
Subject: CN=F80D1A000484F426F102F0330574B2BB73D8E958
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:08:e1:47:8e:57:ad:83:ef:96:5d:08:df:c8:
13:ee:3c:13:93:6c:cf:06:d4:a9:9f:00:2f:62:15:
26:9c:e2:fc:bc:63:c3:e0:1c:f3:d0:03:c5:b9:34:
73:e0:ea:62:42:e3:cb:e5:c6:5d:08:67:4b:dc:2c:
75:f9:e5:e2:05:18:fc:15:bb:0b:f0:93:1c:73:6c:
f9:e8:8b:83:68:cc:83:c5:32:fc:97:b0:34:b6:97:
9c:3d:ea:81:6a:6d:77:08:1c:6f:78:9a:e6:72:b4:
a5:c9:48:78:01:e1:77:00:6b:a4:23:76:14:a1:fa:
1f:3d:00:9a:7a:1e:6a:e0:be:d9:06:20:3b:65:f4:
45:31:69:b7:19:5e:4a:f1:7a:f3:0f:4c:b6:10:2e:
ad:2b:c5:f2:4b:12:13:aa:10:f1:cb:3e:88:cf:fa:
8f:a1:e1:56:ad:44:4f:bb:3b:1d:a2:0f:e7:e0:41:
34:f4:44:0b:35:64:db:8c:22:63:95:61:e9:e8:5c:
7e:11:7f:3b:65:84:3b:8d:e2:da:c6:ec:e6:3b:20:
c4:36:ec:e0:3c:b2:8a:ac:bf:77:5a:82:2c:6f:5c:
9b:c9:75:29:3a:c5:c4:5b:5c:e0:d1:5d:14:17:49:
6f:42:9a:6c:ab:2a:52:67:2e:7b:39:25:1c:f1:9d:
8c:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:0D:1A:00:04:84:F4:26:F1:02:F0:33:05:74:B2:BB:73:D8:E9:58
X509v3 Authority Key Identifier:
keyid:E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a613a3a2f34382d3438203d3e203239383032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:a::/48
Signature Algorithm: sha256WithRSAEncryption
26:7e:4d:3c:31:e9:41:d1:2d:07:c7:fa:59:3e:6c:cf:51:48:
fa:a4:54:17:37:19:80:bf:ce:b8:68:6f:fe:9c:04:3d:ff:7b:
9b:a2:8f:be:1b:d1:7c:5c:7e:4e:48:92:8f:23:87:1d:06:dd:
2b:3f:92:52:71:5e:3f:66:43:cc:c5:d5:65:28:87:e6:0f:d5:
a3:45:99:01:b0:06:90:a6:4b:a0:ba:da:e1:ec:ee:34:2b:80:
f9:29:cb:02:30:4b:2f:58:0e:da:1f:f0:6b:0e:61:c9:cd:7c:
22:bb:66:5b:a4:8a:ff:4b:a5:7e:e7:67:d5:90:d9:4a:e9:79:
0a:a9:94:64:5c:a7:1c:7f:ee:93:3d:44:2b:d0:7c:4e:74:e5:
bf:47:93:55:18:30:25:2e:f8:5d:81:43:10:dd:b4:51:41:a0:
a9:54:c1:c0:32:e3:5e:55:c1:29:2b:36:22:e5:ca:4d:8c:ac:
4a:44:cb:92:5c:e2:dd:7f:ab:16:1a:f5:a6:1c:97:a1:22:a1:
0d:cd:a1:88:53:d1:b5:0b:05:08:2b:fc:9c:b4:28:a7:7f:d2:
a4:35:6e:c9:98:d1:c8:1b:80:40:d0:cf:ab:86:52:56:ae:43:
06:1f:f9:9c:a0:99:d6:f6:b7:4f:ae:7f:f9:5f:d8:f5:27:74:
81:d5:99:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 12:15:34 2024 by rpki-client on console-fra.rpki-client.org