Route Origin Authorization
$ rpki-client -vvf rpki.xindi.eu/repo/XINDI/0/326130623a326630373a616263643a3a2f34382d3438203d3e203537393834.roa
File: 326130623a326630373a616263643a3a2f34382d3438203d3e203537393834.roa (raw, json)
Hash identifier: 5TC/USmUMX9oxnG7iHXL8gGk0KxLwbsQuFwa0LfQqdc=
Subject key identifier: BE:04:A9:68:10:4D:A8:BA:29:20:A2:EE:E9:06:BB:69:57:07:DD:41
Certificate issuer: /CN=60183287eb08ece0c65fa49a3f45621c612ddbd1
Certificate serial: 3C4AC353BF25779C632945A0C432327E5F908A1B
Authority key identifier: 60:18:32:87:EB:08:EC:E0:C6:5F:A4:9A:3F:45:62:1C:61:2D:DB:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YBgyh-sI7ODGX6SaP0ViHGEt29E.cer
Subject info access: rsync://rpki.xindi.eu/repo/XINDI/0/326130623a326630373a616263643a3a2f34382d3438203d3e203537393834.roa
Signing time: Sun 01 Sep 2024 16:01:19 +0000
ROA not before: Sun 01 Sep 2024 15:56:19 +0000
ROA not after: Sun 31 Aug 2025 16:01:19 +0000
asID: 57984
IP address blocks: 2a0b:2f07:abcd::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.xindi.eu/repo/XINDI/0/60183287EB08ECE0C65FA49A3F45621C612DDBD1.crl
rsync://rpki.xindi.eu/repo/XINDI/0/60183287EB08ECE0C65FA49A3F45621C612DDBD1.mft
rsync://rpki.ripe.net/repository/DEFAULT/YBgyh-sI7ODGX6SaP0ViHGEt29E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 04 Dec 2024 21:56:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:4a:c3:53:bf:25:77:9c:63:29:45:a0:c4:32:32:7e:5f:90:8a:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60183287eb08ece0c65fa49a3f45621c612ddbd1
Validity
Not Before: Sep 1 15:56:19 2024 GMT
Not After : Aug 31 16:01:19 2025 GMT
Subject: CN=BE04A968104DA8BA2920A2EEE906BB695707DD41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:90:1d:23:11:7a:d0:35:ce:7d:bd:6c:2a:c3:
dd:05:4a:1b:98:1a:8a:b5:52:8b:c0:43:a0:54:f9:
24:fa:20:fa:6f:00:8f:e6:2c:b1:83:cd:d7:13:71:
aa:e4:19:4a:90:9b:ee:ea:ed:e9:3f:de:af:90:f8:
4b:97:ff:a7:da:63:99:b9:21:d0:e8:85:a0:67:e6:
d2:fb:d1:79:d5:a9:f9:5d:49:27:08:96:e1:ce:39:
af:65:82:91:a5:30:53:f0:4f:e2:94:53:31:b6:e0:
b5:db:56:b6:90:54:26:41:60:75:78:86:91:77:e4:
04:c8:85:07:51:a6:cf:10:86:49:47:3c:97:05:40:
7c:4d:17:ed:69:86:47:5f:63:0b:ca:32:5b:b8:c8:
59:41:a8:70:41:c9:e2:d9:2d:36:e8:fb:c8:0a:c3:
e4:62:99:74:9e:85:a5:43:33:9e:2d:0b:da:27:b8:
8c:ba:12:49:61:c5:60:7c:05:47:27:e6:42:e4:6c:
0c:a4:94:bb:b0:16:b0:81:40:1d:f7:8a:cf:66:83:
5a:85:38:96:c1:8b:d4:53:f0:89:31:d7:c8:eb:12:
da:94:a9:7d:93:ed:90:d3:e9:73:15:06:89:7d:92:
fa:95:b2:6b:52:ed:ee:46:6e:b7:93:63:a2:f3:6f:
7f:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:04:A9:68:10:4D:A8:BA:29:20:A2:EE:E9:06:BB:69:57:07:DD:41
X509v3 Authority Key Identifier:
keyid:60:18:32:87:EB:08:EC:E0:C6:5F:A4:9A:3F:45:62:1C:61:2D:DB:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.xindi.eu/repo/XINDI/0/60183287EB08ECE0C65FA49A3F45621C612DDBD1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YBgyh-sI7ODGX6SaP0ViHGEt29E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.xindi.eu/repo/XINDI/0/326130623a326630373a616263643a3a2f34382d3438203d3e203537393834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:2f07:abcd::/48
Signature Algorithm: sha256WithRSAEncryption
30:91:c7:3c:51:ea:c8:03:ba:8c:08:9c:73:27:ae:d5:5c:6f:
cb:0c:25:99:2b:42:48:83:84:d0:93:4b:95:44:6e:4e:d6:f6:
8e:f9:34:70:9e:e8:6e:ff:5f:8f:4d:09:86:2c:dc:51:cb:e9:
50:b8:fe:58:bb:7e:a6:76:0c:05:a9:22:37:45:50:e1:31:a6:
fe:21:ec:5c:54:e9:ca:90:75:a8:5d:e2:c9:5a:26:5c:fd:04:
07:cb:13:a9:b7:a4:c2:42:e9:b9:cc:a5:71:fb:10:bd:15:a7:
9c:6b:fb:2f:e2:c3:94:16:f3:2c:18:68:4b:3f:d7:ca:34:1e:
f3:72:0d:37:51:f6:fe:13:0f:65:f6:27:9e:68:15:b8:24:24:
8f:52:fa:39:eb:ee:f5:2a:af:93:d3:47:0e:85:10:c8:3e:59:
dc:c2:d2:49:55:49:0b:cc:ef:3d:98:7b:0c:be:6c:75:9e:1c:
7d:d0:8f:8b:2c:0d:67:92:29:0d:7b:45:fe:fc:4c:fe:ac:19:
4f:39:8c:13:54:fe:1f:36:ba:1e:6f:ae:bf:5c:f9:76:e5:9c:
14:3d:11:ff:e9:1c:d4:f6:5b:6f:9b:0c:61:08:19:67:47:6a:
14:00:03:56:47:48:26:df:b2:4f:3e:60:a2:a6:6a:b2:03:07:
57:92:31:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 4 05:40:00 2024 by rpki-client on console-fra.rpki-client.org