Route Origin Authorization
$ rpki-client -vvf rpki.owl.net/rrdp/owl/1/326130373a643838333a3530303a3a2f34302d3438203d3e20323038343736.roa
File: 326130373a643838333a3530303a3a2f34302d3438203d3e20323038343736.roa (raw, json)
Hash identifier: F5oPT70DNRYpQK4qfAzsa63AiYjgzTCVYNL4AMqu0AM=
Subject key identifier: F9:47:42:BD:57:8A:C9:31:5A:4E:40:59:DA:0E:23:21:56:2B:C8:4F
Certificate issuer: /CN=b55e2e72d7ffde6bceb73ce26f185c678a23892d
Certificate serial: 2BAB1AE1873A39E162E6D1561A444E7CF73A8570
Authority key identifier: B5:5E:2E:72:D7:FF:DE:6B:CE:B7:3C:E2:6F:18:5C:67:8A:23:89:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tV4uctf_3mvOtzzibxhcZ4ojiS0.cer
Subject info access: rsync://rpki.owl.net/rrdp/owl/1/326130373a643838333a3530303a3a2f34302d3438203d3e20323038343736.roa
Signing time: Tue 03 Oct 2023 01:40:11 +0000
ROA not before: Tue 03 Oct 2023 01:35:11 +0000
ROA not after: Tue 01 Oct 2024 01:40:11 +0000
asID: 208476
IP address blocks: 2a07:d883:500::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki.owl.net/rrdp/owl/1/B55E2E72D7FFDE6BCEB73CE26F185C678A23892D.crl
rsync://rpki.owl.net/rrdp/owl/1/B55E2E72D7FFDE6BCEB73CE26F185C678A23892D.mft
rsync://rpki.ripe.net/repository/DEFAULT/tV4uctf_3mvOtzzibxhcZ4ojiS0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 21:03:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:ab:1a:e1:87:3a:39:e1:62:e6:d1:56:1a:44:4e:7c:f7:3a:85:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b55e2e72d7ffde6bceb73ce26f185c678a23892d
Validity
Not Before: Oct 3 01:35:11 2023 GMT
Not After : Oct 1 01:40:11 2024 GMT
Subject: CN=F94742BD578AC9315A4E4059DA0E2321562BC84F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:72:16:38:04:7e:38:0b:2d:7f:cb:ca:a5:c8:
a6:7e:f9:30:55:88:f0:86:1a:6d:17:02:e5:86:a5:
ec:69:a9:be:4b:e8:d2:f1:4f:b5:61:a7:60:65:48:
01:b0:3e:ce:af:0d:af:e2:28:f6:a1:00:cb:93:0a:
3a:14:01:d6:c6:19:fa:e8:ca:49:23:2c:0e:01:7f:
3b:f7:d6:7b:ed:b3:71:99:b2:f4:af:ff:f4:3a:bb:
89:10:c3:8c:ac:88:d0:52:df:7c:71:83:e4:f6:40:
62:5a:49:f2:0a:fc:23:39:0b:34:7d:d5:2a:23:ea:
02:59:da:53:be:39:0c:75:03:17:09:d5:1a:3a:57:
c7:fd:96:cb:28:69:a0:48:7d:e8:b6:5f:52:99:cd:
32:52:19:b9:89:43:b5:49:b1:db:00:cb:7c:2c:8e:
92:7c:94:1c:f1:28:e6:aa:db:84:3a:a8:5e:b4:eb:
d8:a3:8d:a0:36:fe:1c:18:2b:b4:17:ee:35:e5:ba:
ee:23:28:de:c7:e2:67:1b:07:17:9b:56:a1:25:41:
63:eb:32:97:4b:27:91:ad:0b:df:7e:82:30:58:06:
6f:73:46:cd:cf:82:55:17:58:a1:c2:2a:12:ea:65:
aa:6a:aa:bf:44:33:0d:2a:81:cf:0d:e4:75:0d:6a:
83:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:47:42:BD:57:8A:C9:31:5A:4E:40:59:DA:0E:23:21:56:2B:C8:4F
X509v3 Authority Key Identifier:
keyid:B5:5E:2E:72:D7:FF:DE:6B:CE:B7:3C:E2:6F:18:5C:67:8A:23:89:2D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.owl.net/rrdp/owl/1/B55E2E72D7FFDE6BCEB73CE26F185C678A23892D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tV4uctf_3mvOtzzibxhcZ4ojiS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.owl.net/rrdp/owl/1/326130373a643838333a3530303a3a2f34302d3438203d3e20323038343736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:d883:500::/40
Signature Algorithm: sha256WithRSAEncryption
09:77:5b:b4:e9:23:15:cd:6b:6d:98:15:ac:d6:08:62:19:0f:
04:1b:1c:fa:6f:c0:fa:d6:e1:0b:a8:fc:2a:82:18:f2:5a:a0:
d4:eb:6b:51:b7:a8:bd:01:a5:2c:1e:9f:84:f4:c6:53:50:1e:
ae:37:6e:84:cc:51:52:15:0d:cb:3b:ca:63:64:26:01:54:cc:
14:a2:17:b4:43:16:64:81:fd:6c:56:f8:9f:b2:4f:83:26:86:
81:82:2a:70:68:aa:77:fe:ad:c4:0e:24:06:92:73:1f:8d:c0:
e3:4e:64:d5:70:7b:3f:03:df:b2:f7:af:ad:4a:0b:f2:ff:17:
b6:88:d2:56:72:dd:60:ab:4a:a9:1c:c3:a4:7b:05:c8:fd:e9:
28:c3:b8:9f:b7:4e:9d:87:29:7f:0a:d9:c4:b6:ba:ad:86:27:
f2:c1:8f:5c:1a:32:18:15:5b:35:67:5e:0c:22:0c:8a:c6:f3:
0a:cf:da:78:85:6e:0a:ad:52:4b:72:ad:f6:7b:49:6b:2f:38:
95:6a:79:c5:78:d2:ef:77:b9:ac:5f:c9:cc:d6:7d:60:8a:c0:
b7:36:92:63:c0:2a:7e:c2:cd:16:64:91:2c:80:1c:ef:d0:19:
37:55:3a:d2:d4:16:83:a0:16:33:0c:f1:dc:c8:c3:3f:0b:78:
93:c1:07:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 8 00:55:31 2024 by rpki-client on console-fra.rpki-client.org