Route Origin Authorization
$ rpki-client -vvf rpki-rsync.warpnet.xyz/repo/warpnet/0/323030313a3637633a33343a3a2f34382d3438203d3e20313939393138.roa
File: 323030313a3637633a33343a3a2f34382d3438203d3e20313939393138.roa (raw, json)
Hash identifier: GVtOLS8gq97GR0IecRp3bkVY7QnapK4ScaeDY0Du1Dc=
Subject key identifier: BA:BE:6D:19:12:78:F2:CB:89:F6:A1:04:84:90:66:EB:3A:8B:DF:DA
Certificate issuer: /CN=b4b74ed94183cc06a35c95c5b7096b7c0ef04944
Certificate serial: 2ACD1A204A3D5DB6CBAC2E9EF0C8D771B0421878
Authority key identifier: B4:B7:4E:D9:41:83:CC:06:A3:5C:95:C5:B7:09:6B:7C:0E:F0:49:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tLdO2UGDzAajXJXFtwlrfA7wSUQ.cer
Subject info access: rsync://rpki-rsync.warpnet.xyz/repo/warpnet/0/323030313a3637633a33343a3a2f34382d3438203d3e20313939393138.roa
Signing time: Tue 28 Jan 2025 10:40:15 +0000
ROA not before: Tue 28 Jan 2025 10:35:15 +0000
ROA not after: Tue 27 Jan 2026 10:40:15 +0000
asID: 199918
IP address blocks: 2001:67c:34::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.warpnet.xyz/repo/warpnet/0/B4B74ED94183CC06A35C95C5B7096B7C0EF04944.crl
rsync://rpki-rsync.warpnet.xyz/repo/warpnet/0/B4B74ED94183CC06A35C95C5B7096B7C0EF04944.mft
rsync://rpki.ripe.net/repository/DEFAULT/tLdO2UGDzAajXJXFtwlrfA7wSUQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 22:20:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:cd:1a:20:4a:3d:5d:b6:cb:ac:2e:9e:f0:c8:d7:71:b0:42:18:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4b74ed94183cc06a35c95c5b7096b7c0ef04944
Validity
Not Before: Jan 28 10:35:15 2025 GMT
Not After : Jan 27 10:40:15 2026 GMT
Subject: CN=BABE6D191278F2CB89F6A104849066EB3A8BDFDA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:4e:2a:4f:f6:57:f1:19:62:6f:73:63:d8:0e:
29:2e:51:99:07:d9:ab:ea:2f:c9:a1:63:ac:23:f8:
ae:e9:1b:a6:64:b6:59:65:93:7b:1e:96:0d:e6:ba:
b6:1c:f7:8b:c6:02:7e:c5:46:af:37:4c:d9:51:99:
a1:b3:e2:26:46:4e:3b:d4:e4:c1:97:51:7a:2e:24:
58:8b:ee:bd:5f:98:ce:44:34:ad:20:18:5f:77:51:
1e:32:50:76:5c:6f:19:15:e9:b8:32:27:1c:85:06:
68:f4:cc:40:56:f0:a2:83:80:e5:9c:cd:5d:31:39:
ba:f7:41:09:d6:e3:47:9a:4e:f0:a9:19:ce:67:8f:
ab:aa:81:c5:4b:a4:67:e7:7d:11:1a:cf:22:33:93:
47:ce:17:81:ec:1e:43:77:ca:ec:37:6c:e3:93:8f:
b1:8b:ce:6d:db:2c:b3:a1:81:f3:01:5a:2d:f2:fa:
07:f3:59:e4:cf:a6:11:94:fe:bc:6e:a4:c0:31:92:
84:9e:de:38:47:c8:bb:e3:7a:df:9b:a1:39:f4:c2:
ad:8b:82:b4:e9:de:04:c8:98:6c:12:b2:df:95:66:
bd:7f:33:34:da:0e:68:97:cb:16:67:7b:a2:1a:62:
b1:e4:e6:4f:e5:e5:04:df:17:be:b0:d2:16:98:9d:
8e:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:BE:6D:19:12:78:F2:CB:89:F6:A1:04:84:90:66:EB:3A:8B:DF:DA
X509v3 Authority Key Identifier:
keyid:B4:B7:4E:D9:41:83:CC:06:A3:5C:95:C5:B7:09:6B:7C:0E:F0:49:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.warpnet.xyz/repo/warpnet/0/B4B74ED94183CC06A35C95C5B7096B7C0EF04944.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tLdO2UGDzAajXJXFtwlrfA7wSUQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.warpnet.xyz/repo/warpnet/0/323030313a3637633a33343a3a2f34382d3438203d3e20313939393138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:34::/48
Signature Algorithm: sha256WithRSAEncryption
b7:22:e0:63:06:6c:7a:5e:83:73:da:2f:25:39:28:7c:fa:a2:
a9:2e:f4:5f:54:67:25:cc:4e:ae:1e:73:ca:11:9d:04:2c:1c:
5f:48:1e:5b:c3:f7:a0:ba:17:2b:12:c7:14:10:f3:b7:72:ce:
7b:19:42:ee:0c:df:66:4a:6d:e3:c8:1c:84:fb:1f:e5:a9:f7:
c6:2f:c9:61:69:95:68:4f:86:54:93:ee:2f:88:93:e8:00:2f:
e4:1a:33:fd:54:c0:01:71:67:52:f7:77:e6:87:6a:f7:74:bb:
8e:9e:08:af:1f:81:af:b8:e7:e1:f3:96:fd:ce:9a:e5:5f:ea:
0e:18:69:07:54:b7:81:bb:cd:9c:62:e8:80:72:0c:55:bd:b0:
00:d7:3a:01:48:33:56:e6:a7:15:a3:08:9f:22:fa:1d:6e:27:
52:50:13:83:e8:2a:44:08:f1:72:f3:fd:7f:58:26:f5:0a:e6:
17:b3:eb:7e:ce:28:fb:6e:36:03:bc:f3:6b:3b:2d:7a:c9:2d:
54:9f:4e:20:09:3c:7c:7c:47:6b:c6:29:4d:d6:c7:61:0f:ca:
a7:28:c1:a1:fc:1a:31:2f:64:32:15:ca:35:58:95:1a:5d:c3:
f6:c5:43:04:6e:64:2b:45:d4:14:ea:4f:a0:28:dd:0a:47:b1:
17:86:bd:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 09:56:10 2025 by rpki-client