Route Origin Authorization
$ rpki-client -vvf rpki.xindi.eu/repo/XINDI/0/326130623a326630343a3a2f33312d3331203d3e203438313132.roa
File: 326130623a326630343a3a2f33312d3331203d3e203438313132.roa (raw, json)
Hash identifier: aCWx/geC9RHpApMZAcwgBydh4RmTW7EWqkaUy9PFUZY=
Subject key identifier: 25:A5:26:28:76:33:E5:06:46:E5:7B:62:AC:FD:B7:BA:43:0A:4B:1F
Certificate issuer: /CN=60183287eb08ece0c65fa49a3f45621c612ddbd1
Certificate serial: 667BB6BBEDFB5D1FB9FDCAEB0826C5A5082D4297
Authority key identifier: 60:18:32:87:EB:08:EC:E0:C6:5F:A4:9A:3F:45:62:1C:61:2D:DB:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YBgyh-sI7ODGX6SaP0ViHGEt29E.cer
Subject info access: rsync://rpki.xindi.eu/repo/XINDI/0/326130623a326630343a3a2f33312d3331203d3e203438313132.roa
Signing time: Thu 04 Apr 2024 19:18:01 +0000
ROA not before: Thu 04 Apr 2024 19:13:01 +0000
ROA not after: Thu 03 Apr 2025 19:18:01 +0000
asID: 48112
IP address blocks: 2a0b:2f04::/31 maxlen: 31
Validation: OK
Signature path: rsync://rpki.xindi.eu/repo/XINDI/0/60183287EB08ECE0C65FA49A3F45621C612DDBD1.crl
rsync://rpki.xindi.eu/repo/XINDI/0/60183287EB08ECE0C65FA49A3F45621C612DDBD1.mft
rsync://rpki.ripe.net/repository/DEFAULT/YBgyh-sI7ODGX6SaP0ViHGEt29E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 04 Dec 2024 21:56:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:7b:b6:bb:ed:fb:5d:1f:b9:fd:ca:eb:08:26:c5:a5:08:2d:42:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60183287eb08ece0c65fa49a3f45621c612ddbd1
Validity
Not Before: Apr 4 19:13:01 2024 GMT
Not After : Apr 3 19:18:01 2025 GMT
Subject: CN=25A526287633E50646E57B62ACFDB7BA430A4B1F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:a3:d4:28:f5:8f:b9:a0:cd:21:d4:1e:cd:6d:
7b:5b:22:53:22:66:0e:7d:d2:e3:03:2f:88:e8:04:
d5:36:9e:f2:cb:08:80:32:f5:1b:e7:31:70:fb:50:
d5:a6:af:56:72:95:f4:80:a3:97:64:98:b3:e3:9a:
cb:6e:c1:d8:f4:94:f0:5e:3b:5c:67:4c:a1:8b:00:
17:90:4a:df:3d:89:96:d0:67:16:74:5e:7f:2d:27:
d1:59:82:d8:34:37:d3:ec:71:03:a7:16:a5:b0:a6:
b0:f3:e4:5e:86:bd:8c:22:12:60:e3:06:72:53:14:
3e:20:1c:f7:ad:3e:4a:3b:4b:1b:7c:1e:58:e4:40:
a1:87:c9:17:e8:1e:52:21:aa:46:8b:10:a7:8a:69:
05:10:39:0c:b9:b3:1c:e6:11:f6:c0:7c:2b:8d:bc:
bc:df:99:58:a5:aa:7e:2a:13:39:94:3c:bf:27:89:
48:59:ec:6f:35:10:b4:d2:0a:68:5d:f1:03:38:06:
25:d1:c5:e1:5e:fc:eb:c7:05:01:ef:86:e0:73:36:
03:d8:42:b7:7b:e0:4f:a7:62:d9:02:d1:14:0e:3b:
68:02:92:be:69:64:77:ed:85:bf:9c:e1:67:72:c7:
ce:bc:74:97:c2:6b:72:67:4d:60:c4:0f:d4:0c:e7:
ae:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:A5:26:28:76:33:E5:06:46:E5:7B:62:AC:FD:B7:BA:43:0A:4B:1F
X509v3 Authority Key Identifier:
keyid:60:18:32:87:EB:08:EC:E0:C6:5F:A4:9A:3F:45:62:1C:61:2D:DB:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.xindi.eu/repo/XINDI/0/60183287EB08ECE0C65FA49A3F45621C612DDBD1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YBgyh-sI7ODGX6SaP0ViHGEt29E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.xindi.eu/repo/XINDI/0/326130623a326630343a3a2f33312d3331203d3e203438313132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:2f04::/31
Signature Algorithm: sha256WithRSAEncryption
22:00:4b:a5:15:43:3c:df:72:6f:fc:62:83:1b:fa:fd:98:79:
45:51:08:f6:ea:e9:34:04:c6:0e:08:a4:5a:a6:19:bd:2b:56:
af:62:6c:bb:e9:72:ed:22:33:0d:45:25:07:cf:16:0f:cd:14:
20:d5:f8:e2:42:f6:de:15:fd:1c:2b:23:f5:9b:fb:da:e2:a5:
48:43:df:17:90:98:ea:8a:24:e7:02:b2:50:3a:88:23:0c:56:
1a:f9:ec:93:c7:58:11:8c:f7:b0:d6:55:54:ea:24:64:ea:2d:
7f:8f:3d:98:19:31:7c:6a:69:b4:9b:ef:4e:c9:df:9f:2e:74:
bd:02:82:0d:2f:3e:7e:50:94:30:2b:ea:db:8b:ce:92:d2:dd:
00:32:26:5f:2a:9b:da:1c:fa:31:23:d4:76:d1:7f:d4:33:93:
42:73:00:13:47:18:49:84:91:45:22:4d:04:1e:36:89:0b:f0:
91:10:28:54:74:03:1b:c3:ee:e8:68:71:a5:0a:9b:dc:9b:3a:
27:c7:63:9a:50:95:94:67:2a:d1:c4:88:57:61:f1:4b:8d:fd:
1b:7d:e0:0b:91:f2:76:70:f3:20:55:5e:68:d0:15:9a:7f:50:
f6:88:34:e9:9a:12:4a:1d:e0:78:b7:ce:90:69:d6:8e:44:0e:
c6:3c:cc:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 4 03:23:07 2024 by rpki-client on console-ams.rpki-client.org