Route Origin Authorization
$ rpki-client -vvf rpki.roa.net/rrdp/xTom/41/326130343a366630333a3a2f33322d3438203d3e2033323134.roa
File: 326130343a366630333a3a2f33322d3438203d3e2033323134.roa (raw, json)
Hash identifier: 3/AXr9Mh/1G2LT3F6HVetvIcUb6Y2xZfnTnWkXieDSE=
Subject key identifier: 7D:2B:96:9F:06:13:00:D6:D5:5B:C0:3C:A5:F1:4B:5C:B9:AB:49:24
Certificate issuer: /CN=39f66f45a59b837ed24d6b9f20c60702114b70bb
Certificate serial: 3F8A4FDA0C8ECD15C0717476B7A9431A1B3E0773
Authority key identifier: 39:F6:6F:45:A5:9B:83:7E:D2:4D:6B:9F:20:C6:07:02:11:4B:70:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OfZvRaWbg37STWufIMYHAhFLcLs.cer
Subject info access: rsync://rpki.roa.net/rrdp/xTom/41/326130343a366630333a3a2f33322d3438203d3e2033323134.roa
Signing time: Sat 14 Sep 2024 01:22:30 +0000
ROA not before: Sat 14 Sep 2024 01:17:30 +0000
ROA not after: Sat 13 Sep 2025 01:22:30 +0000
asID: 3214
IP address blocks: 2a04:6f03::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.roa.net/rrdp/xTom/41/39F66F45A59B837ED24D6B9F20C60702114B70BB.crl
rsync://rpki.roa.net/rrdp/xTom/41/39F66F45A59B837ED24D6B9F20C60702114B70BB.mft
rsync://rpki.ripe.net/repository/DEFAULT/OfZvRaWbg37STWufIMYHAhFLcLs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:8a:4f:da:0c:8e:cd:15:c0:71:74:76:b7:a9:43:1a:1b:3e:07:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39f66f45a59b837ed24d6b9f20c60702114b70bb
Validity
Not Before: Sep 14 01:17:30 2024 GMT
Not After : Sep 13 01:22:30 2025 GMT
Subject: CN=7D2B969F061300D6D55BC03CA5F14B5CB9AB4924
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:67:5e:93:9c:1e:75:f5:12:c1:72:bd:09:6a:
27:fb:a8:af:85:dc:3a:ce:6c:43:06:f7:b1:cc:e8:
37:9a:5f:18:97:76:70:22:a7:91:9b:75:37:6f:2a:
55:cd:03:f9:23:54:38:f1:19:84:9a:58:45:30:9a:
e9:85:99:72:6a:6a:ba:87:1c:a2:71:e4:30:10:6d:
4c:ee:ae:ed:72:46:df:d4:0c:69:0a:e1:7b:c7:dc:
ca:7b:7f:8c:3d:34:db:02:ef:a9:35:64:30:37:4c:
4f:08:9a:ab:a7:e4:ae:cc:45:98:8a:c1:d9:49:52:
d4:5c:08:43:fa:ee:af:69:be:28:39:90:59:0c:e6:
67:9a:6e:34:09:68:9d:20:41:0c:78:2f:ba:1a:f0:
8c:5c:3a:1c:38:89:54:21:6d:03:ab:7f:1b:f9:63:
ee:cd:a6:0a:e9:e8:83:00:ba:3e:dc:9a:88:b9:72:
6d:6a:5a:9e:5f:7a:d1:f6:6b:76:c9:0a:44:58:26:
ab:20:65:52:13:b2:48:7c:af:81:ea:0a:b8:50:a9:
24:b2:8f:6d:65:7b:c7:7b:98:f3:cb:65:5a:e7:da:
2a:a7:54:11:08:b1:d5:82:e0:67:24:55:a6:17:c8:
b6:33:80:4a:dc:30:a8:0d:72:96:05:59:13:b2:47:
77:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:2B:96:9F:06:13:00:D6:D5:5B:C0:3C:A5:F1:4B:5C:B9:AB:49:24
X509v3 Authority Key Identifier:
keyid:39:F6:6F:45:A5:9B:83:7E:D2:4D:6B:9F:20:C6:07:02:11:4B:70:BB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.roa.net/rrdp/xTom/41/39F66F45A59B837ED24D6B9F20C60702114B70BB.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OfZvRaWbg37STWufIMYHAhFLcLs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/41/326130343a366630333a3a2f33322d3438203d3e2033323134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:6f03::/32
Signature Algorithm: sha256WithRSAEncryption
68:9c:73:e3:0c:3a:dd:9c:56:83:f0:b0:ea:00:4f:78:15:8b:
db:88:a3:1a:fb:95:b8:76:03:ec:fc:79:4e:d9:9f:77:6a:7d:
7f:78:d2:fa:fd:66:b0:fb:d4:49:c4:0f:47:2b:1a:97:cd:2f:
93:36:42:4f:80:a2:59:2e:d0:05:82:a8:0c:32:a6:4e:9d:d6:
9a:d5:75:24:f7:97:6f:12:7c:e1:2d:82:91:8a:56:f5:e1:61:
ef:de:7d:56:b5:8c:c7:86:53:0a:4f:a2:97:00:b0:35:11:a8:
98:97:2e:91:2a:e1:6c:d8:cf:5a:13:ef:a8:69:3f:43:08:f4:
d6:3b:ed:ec:36:ed:d2:5f:5e:44:7f:dd:c9:ed:ed:4c:44:20:
d2:7b:e7:59:99:fb:b3:c3:56:9e:27:9c:0b:5e:b6:31:5b:c1:
3b:1e:d4:8f:0a:e0:d1:36:60:4e:05:3c:35:b4:19:4e:db:04:
8a:9c:4c:fc:fe:bb:63:90:8d:96:53:81:12:07:00:7e:3c:17:
d6:73:36:c1:ed:c0:e4:60:39:63:11:80:0a:4f:0a:c1:7d:07:
b5:2d:02:a3:e9:d9:e1:44:29:bb:fb:fa:15:ac:6d:e4:f1:12:
51:12:f5:a4:19:76:c0:43:ed:9f:6f:23:19:3b:f6:2c:66:bb:
2c:fb:7c:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 16:17:29 2024 by rpki-client on console-fra.rpki-client.org