Route Origin Authorization
$ rpki-client -vvf rpki.xindi.eu/repo/XINDI/0/3138352e3137332e31382e302f32342d3234203d3e20323036373633.roa
File: 3138352e3137332e31382e302f32342d3234203d3e20323036373633.roa (raw, json)
Hash identifier: uHijyOj9mpYymEff+10q95GQh8xsBMKRFz+GAKcUqeQ=
Subject key identifier: 7B:13:E9:2F:3C:7F:E5:56:C5:64:C2:83:77:EF:05:6B:97:69:33:6E
Certificate issuer: /CN=60183287eb08ece0c65fa49a3f45621c612ddbd1
Certificate serial: 65F21AB0ABAFC71A057FC606D0D302C3B4806B38
Authority key identifier: 60:18:32:87:EB:08:EC:E0:C6:5F:A4:9A:3F:45:62:1C:61:2D:DB:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YBgyh-sI7ODGX6SaP0ViHGEt29E.cer
Subject info access: rsync://rpki.xindi.eu/repo/XINDI/0/3138352e3137332e31382e302f32342d3234203d3e20323036373633.roa
Signing time: Wed 28 Aug 2024 12:01:14 +0000
ROA not before: Wed 28 Aug 2024 11:56:14 +0000
ROA not after: Wed 27 Aug 2025 12:01:14 +0000
asID: 206763
IP address blocks: 185.173.18.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.xindi.eu/repo/XINDI/0/60183287EB08ECE0C65FA49A3F45621C612DDBD1.crl
rsync://rpki.xindi.eu/repo/XINDI/0/60183287EB08ECE0C65FA49A3F45621C612DDBD1.mft
rsync://rpki.ripe.net/repository/DEFAULT/YBgyh-sI7ODGX6SaP0ViHGEt29E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 04 Dec 2024 21:56:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:f2:1a:b0:ab:af:c7:1a:05:7f:c6:06:d0:d3:02:c3:b4:80:6b:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60183287eb08ece0c65fa49a3f45621c612ddbd1
Validity
Not Before: Aug 28 11:56:14 2024 GMT
Not After : Aug 27 12:01:14 2025 GMT
Subject: CN=7B13E92F3C7FE556C564C28377EF056B9769336E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:07:f5:02:f5:73:ac:fa:f2:89:3e:01:4a:90:
36:7e:cf:03:60:74:c7:ff:3d:71:cd:ff:f2:4b:29:
b5:7c:4e:3b:40:09:e9:41:74:d2:99:37:86:32:ea:
8c:a8:11:2a:e5:45:b4:36:5a:79:d5:38:36:af:3c:
58:23:3c:4f:fe:a0:c7:c6:0c:39:b0:bd:3c:11:63:
0c:9c:95:b8:67:c8:15:02:b5:95:d6:e2:cf:fd:8b:
06:39:91:4a:2d:78:29:34:63:19:d6:f0:e9:1a:66:
81:d0:76:10:24:50:ea:ac:cf:25:71:b6:83:cc:44:
b6:e7:41:64:a0:96:dd:2f:f0:23:65:89:0b:88:5b:
ce:42:2e:90:7a:63:14:27:84:9e:a0:60:cb:4d:43:
2c:9a:99:7d:e0:bb:5a:9d:c0:04:7f:c6:f9:e2:56:
8f:94:af:b3:ae:1a:74:be:98:5c:47:b3:81:21:d1:
b1:c5:56:5b:78:79:d0:73:e6:f0:bf:95:bf:76:51:
bf:ba:56:f9:dd:af:31:8b:71:5d:c2:78:8a:c7:33:
f4:7a:62:ab:18:e8:9d:36:14:2c:f5:fa:23:a6:b8:
73:e8:ca:e1:24:a6:09:c1:cf:64:2c:05:79:4f:56:
8e:5a:38:75:86:8f:77:27:2d:c6:e8:09:d8:6f:6c:
ef:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:13:E9:2F:3C:7F:E5:56:C5:64:C2:83:77:EF:05:6B:97:69:33:6E
X509v3 Authority Key Identifier:
keyid:60:18:32:87:EB:08:EC:E0:C6:5F:A4:9A:3F:45:62:1C:61:2D:DB:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.xindi.eu/repo/XINDI/0/60183287EB08ECE0C65FA49A3F45621C612DDBD1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YBgyh-sI7ODGX6SaP0ViHGEt29E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.xindi.eu/repo/XINDI/0/3138352e3137332e31382e302f32342d3234203d3e20323036373633.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.173.18.0/24
Signature Algorithm: sha256WithRSAEncryption
08:58:6c:a6:bb:bf:49:2d:dd:3a:39:5f:a0:a6:50:c2:f5:8d:
78:76:9f:70:02:62:9e:6c:9d:5f:31:e6:9b:51:52:7d:ed:ca:
d4:32:08:db:d0:1e:0d:7e:51:07:d9:5b:e2:dc:ea:97:63:e0:
83:c7:8e:1a:33:b1:ee:68:7b:3f:1c:2d:2a:f4:e4:58:d7:ff:
8f:70:63:23:39:a4:d2:4c:87:e1:34:3a:47:ec:c7:80:cc:ed:
0e:86:33:f0:d5:84:13:84:04:de:2c:f3:5a:1d:7f:f0:a1:26:
c4:fc:2e:61:cd:9b:ab:1d:50:75:1b:4d:82:b2:45:71:19:c6:
6e:8a:69:1c:be:c5:18:0e:58:b2:de:b6:59:70:8b:f7:d1:f9:
40:08:f8:1d:34:2f:b4:11:e1:10:96:d9:9d:5d:00:60:1a:05:
3e:cd:98:99:80:e0:8d:13:06:0c:10:16:03:ce:12:fa:19:0d:
2d:41:4f:cf:c4:c7:c2:9c:da:67:64:4e:ff:34:0f:69:3c:67:
b2:a1:ff:6c:20:00:98:95:f1:99:5b:c1:d1:d5:a1:65:59:3d:
cb:c2:c5:b1:0c:92:b4:2a:ef:33:ef:e3:90:d2:f9:29:60:28:
46:d2:b1:3c:05:ba:5c:ee:c6:13:d2:5e:3b:6d:d7:60:a8:60:
9f:3e:47:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 4 03:23:07 2024 by rpki-client on console-ams.rpki-client.org