Route Origin Authorization
$ rpki-client -vvf rpki.roa.net/rrdp/xTom/41/326130343a366630353a3a2f33322d3438203d3e2033323134.roa
File: 326130343a366630353a3a2f33322d3438203d3e2033323134.roa (raw, json)
Hash identifier: 6cVhvSw9JMim43f5rKa5dY2+nNAMktQ2jilddGaGaBE=
Subject key identifier: F4:93:3F:FB:A0:75:6F:09:66:77:F9:AA:1D:1E:4F:68:08:12:31:5D
Certificate issuer: /CN=39f66f45a59b837ed24d6b9f20c60702114b70bb
Certificate serial: 4B29F97BEC8C539231326E4B452B72EE22703B09
Authority key identifier: 39:F6:6F:45:A5:9B:83:7E:D2:4D:6B:9F:20:C6:07:02:11:4B:70:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OfZvRaWbg37STWufIMYHAhFLcLs.cer
Subject info access: rsync://rpki.roa.net/rrdp/xTom/41/326130343a366630353a3a2f33322d3438203d3e2033323134.roa
Signing time: Sat 14 Sep 2024 01:22:28 +0000
ROA not before: Sat 14 Sep 2024 01:17:28 +0000
ROA not after: Sat 13 Sep 2025 01:22:28 +0000
asID: 3214
IP address blocks: 2a04:6f05::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.roa.net/rrdp/xTom/41/39F66F45A59B837ED24D6B9F20C60702114B70BB.crl
rsync://rpki.roa.net/rrdp/xTom/41/39F66F45A59B837ED24D6B9F20C60702114B70BB.mft
rsync://rpki.ripe.net/repository/DEFAULT/OfZvRaWbg37STWufIMYHAhFLcLs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:29:f9:7b:ec:8c:53:92:31:32:6e:4b:45:2b:72:ee:22:70:3b:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39f66f45a59b837ed24d6b9f20c60702114b70bb
Validity
Not Before: Sep 14 01:17:28 2024 GMT
Not After : Sep 13 01:22:28 2025 GMT
Subject: CN=F4933FFBA0756F096677F9AA1D1E4F680812315D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:74:a6:6a:50:68:5e:4d:2d:ef:fc:25:ee:7d:
a7:8e:70:61:6c:0b:fa:0d:36:0d:f9:26:ad:3a:f8:
fc:cd:85:11:f5:38:f4:83:e2:81:1f:d1:38:42:82:
61:48:63:33:74:8d:d2:63:5b:a2:76:e7:22:37:71:
76:bc:cb:4d:20:84:c6:2d:40:61:d9:4c:29:50:06:
e8:53:71:f9:bb:b1:f2:80:89:be:1b:bd:b5:10:09:
4c:53:a2:10:60:31:c1:ec:f5:67:84:f2:84:8a:8f:
c8:76:3d:f0:12:3e:a3:1c:8d:a7:db:5a:58:30:c0:
a4:61:8c:85:56:01:04:28:50:f7:15:f4:65:dc:af:
3e:af:8b:48:0c:66:5f:5d:be:4d:ed:7e:62:77:be:
15:2c:2e:b8:1a:fc:50:f9:aa:36:b8:d7:d0:cb:b2:
50:b9:b3:ef:44:c6:4e:ec:d0:86:4f:10:1e:4f:7c:
3e:f0:b7:a1:33:49:78:2f:87:dc:9a:5c:98:3a:f4:
30:59:81:f2:5e:a9:41:96:a1:5a:bf:d3:a8:06:b6:
52:2e:df:5b:5f:30:41:96:8c:bb:89:bd:7a:4a:08:
63:6d:f2:d9:4c:27:92:65:eb:6a:d1:b8:ce:af:42:
51:9f:af:f9:28:c6:50:40:1a:61:a6:44:7e:af:7d:
83:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:93:3F:FB:A0:75:6F:09:66:77:F9:AA:1D:1E:4F:68:08:12:31:5D
X509v3 Authority Key Identifier:
keyid:39:F6:6F:45:A5:9B:83:7E:D2:4D:6B:9F:20:C6:07:02:11:4B:70:BB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.roa.net/rrdp/xTom/41/39F66F45A59B837ED24D6B9F20C60702114B70BB.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OfZvRaWbg37STWufIMYHAhFLcLs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/41/326130343a366630353a3a2f33322d3438203d3e2033323134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:6f05::/32
Signature Algorithm: sha256WithRSAEncryption
31:3e:40:8e:c7:50:6f:28:71:8d:8c:48:a1:03:f8:ce:ca:e2:
cb:64:2a:c1:e0:fa:43:98:23:b5:0f:cc:74:4f:5b:6e:86:df:
ac:40:a0:01:f9:32:1e:da:27:d1:65:1f:b0:ae:17:22:d4:78:
f7:3f:49:60:7d:19:6e:12:ba:49:2f:67:1c:39:3f:38:4a:ef:
1a:29:b3:cf:c7:5b:eb:51:61:08:ed:b4:bf:2e:f1:51:27:c7:
64:ba:ad:ef:13:79:b0:77:4d:6b:b1:4f:6e:7d:6b:c3:52:d1:
19:6d:a1:ba:17:e1:cc:ec:7f:c7:f9:3a:df:cb:e9:9f:bb:be:
a7:14:05:5a:40:2b:25:52:5e:a9:e7:13:36:d9:1e:8c:cf:29:
3b:cc:04:9a:0f:70:5c:8a:4e:f3:33:ae:22:74:93:97:da:3e:
1f:bf:8d:c1:11:84:f6:fe:01:a3:81:92:33:60:60:1e:ab:11:
84:30:9b:a7:1d:8c:d5:5a:2e:92:f6:63:c8:fe:a7:a7:a0:24:
55:41:d9:11:89:3b:b5:2d:0e:51:b9:0d:cc:6f:ed:81:c3:43:
ab:7f:23:62:05:56:b3:8e:e5:1b:ac:8d:66:b5:c5:70:fa:a6:
01:8b:f1:54:d6:8c:88:1a:24:ec:22:4d:e4:fb:c1:36:7d:6d:
61:28:dc:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 16:17:29 2024 by rpki-client on console-fra.rpki-client.org