Route Origin Authorization
$ rpki-client -vvf rpki.xindi.eu/repo/XINDI/0/3138352e3137332e31362e302f32322d3232203d3e203438313132.roa
File: 3138352e3137332e31362e302f32322d3232203d3e203438313132.roa (raw, json)
Hash identifier: RJ6zQFFgjy5ZrMju20xXDZ9RhX9kOOtdwEz+ZKuH1mI=
Subject key identifier: 4B:61:5D:2D:97:33:A1:34:65:54:DC:10:5F:E8:69:5D:99:BB:57:8D
Certificate issuer: /CN=60183287eb08ece0c65fa49a3f45621c612ddbd1
Certificate serial: 4122391F69104EFBCBF53CE07685E68219048852
Authority key identifier: 60:18:32:87:EB:08:EC:E0:C6:5F:A4:9A:3F:45:62:1C:61:2D:DB:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YBgyh-sI7ODGX6SaP0ViHGEt29E.cer
Subject info access: rsync://rpki.xindi.eu/repo/XINDI/0/3138352e3137332e31362e302f32322d3232203d3e203438313132.roa
Signing time: Wed 28 Aug 2024 12:01:14 +0000
ROA not before: Wed 28 Aug 2024 11:56:14 +0000
ROA not after: Wed 27 Aug 2025 12:01:14 +0000
asID: 48112
IP address blocks: 185.173.16.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.xindi.eu/repo/XINDI/0/60183287EB08ECE0C65FA49A3F45621C612DDBD1.crl
rsync://rpki.xindi.eu/repo/XINDI/0/60183287EB08ECE0C65FA49A3F45621C612DDBD1.mft
rsync://rpki.ripe.net/repository/DEFAULT/YBgyh-sI7ODGX6SaP0ViHGEt29E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 04 Dec 2024 21:56:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:22:39:1f:69:10:4e:fb:cb:f5:3c:e0:76:85:e6:82:19:04:88:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60183287eb08ece0c65fa49a3f45621c612ddbd1
Validity
Not Before: Aug 28 11:56:14 2024 GMT
Not After : Aug 27 12:01:14 2025 GMT
Subject: CN=4B615D2D9733A1346554DC105FE8695D99BB578D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:79:3c:17:dc:69:36:d5:d7:51:a5:58:e5:be:
b0:36:85:bf:d1:55:1e:3d:ff:05:9c:eb:cd:a9:e4:
b5:3a:9a:d8:92:09:71:f3:7d:49:64:05:6a:36:26:
ab:0d:ee:2a:3b:b9:e4:9a:f8:95:cf:ce:0b:8b:8a:
7d:12:05:3b:fb:bd:86:2b:9e:65:fc:dc:d0:0f:8e:
c3:b7:0d:11:9e:a4:bf:4e:b5:37:97:2d:70:ff:f3:
5c:c5:9f:09:be:62:98:09:45:0d:86:d7:6e:45:dc:
65:f9:41:d4:fe:60:00:a2:19:58:ec:59:e6:3d:ef:
70:74:d8:d5:5d:2f:0a:59:b1:2e:c0:ad:e8:a6:fe:
55:9a:ca:d8:c6:10:1f:31:54:1b:8e:ea:cb:48:e4:
b2:9b:5f:22:3f:a5:72:07:db:60:75:03:0d:a2:09:
69:88:cc:77:f0:59:bb:4d:69:4c:b5:c1:14:79:7f:
14:94:28:75:81:54:42:1d:9d:04:cf:76:3c:e1:ad:
0f:e6:30:2f:f1:f1:b7:70:53:f5:ea:4e:63:53:db:
dd:ea:5d:b1:9d:b2:48:4a:c8:e2:30:e9:5d:6f:e1:
90:25:b8:ef:0b:f2:fc:ab:57:1e:dc:4d:a7:b7:2e:
0e:64:97:56:eb:28:35:0a:45:ff:6c:f6:51:0e:76:
99:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:61:5D:2D:97:33:A1:34:65:54:DC:10:5F:E8:69:5D:99:BB:57:8D
X509v3 Authority Key Identifier:
keyid:60:18:32:87:EB:08:EC:E0:C6:5F:A4:9A:3F:45:62:1C:61:2D:DB:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.xindi.eu/repo/XINDI/0/60183287EB08ECE0C65FA49A3F45621C612DDBD1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YBgyh-sI7ODGX6SaP0ViHGEt29E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.xindi.eu/repo/XINDI/0/3138352e3137332e31362e302f32322d3232203d3e203438313132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.173.16.0/22
Signature Algorithm: sha256WithRSAEncryption
bc:5a:73:1e:30:8e:aa:f3:b1:ea:fb:2a:f2:77:7f:ca:d3:52:
88:e2:de:d0:e4:a0:27:3e:3a:5d:fe:06:66:b8:df:dd:35:2f:
25:6f:d3:c8:4e:b1:19:1c:bf:71:93:0e:1c:49:71:d9:fe:7a:
47:7a:d2:07:df:4b:06:13:73:4f:e7:5b:92:e9:0d:a2:5c:c4:
24:cd:97:8e:c4:bc:c6:9d:16:66:82:11:80:f2:7a:1a:54:06:
26:51:da:a0:3d:08:01:18:2e:4f:e8:42:5d:05:63:74:c3:41:
23:c7:a0:a4:47:cc:6a:50:8e:b8:53:60:fa:98:ee:f6:69:cb:
8c:9e:f4:59:32:81:67:5d:44:5a:4e:25:f1:ef:d3:9f:39:8f:
92:2d:ca:4a:c6:34:b9:3a:97:8a:79:93:bd:3f:ed:63:ab:31:
d6:0f:86:99:bc:ad:81:b7:14:9b:b4:61:65:a2:ae:d9:1f:7d:
42:05:c2:bb:02:e8:03:8f:85:34:c8:1f:cc:e5:5f:8c:ff:d0:
f2:33:5a:16:e4:81:7d:40:0b:78:56:16:ed:99:5d:04:eb:61:
ee:e5:75:fe:7f:9d:20:a2:04:06:07:63:47:c4:d3:42:65:52:
e1:67:a1:b5:8f:e4:b5:8a:b4:f2:6c:11:4b:1b:3b:66:03:85:
71:7f:02:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 4 03:23:07 2024 by rpki-client on console-ams.rpki-client.org