Route Origin Authorization
$ rpki-client -vvf rpki.xindi.eu/repo/XINDI/0/326130633a343230303a3a2f32392d3239203d3e203438313132.roa
File: 326130633a343230303a3a2f32392d3239203d3e203438313132.roa (raw, json)
Hash identifier: sEjCW9FJODOwAuOa2xQ3EDOMzihAxD3E/nw+qW1SfX4=
Subject key identifier: F8:0D:71:79:8C:1D:30:F4:DE:61:E0:CF:39:5E:6F:2A:25:54:F3:A6
Certificate issuer: /CN=60183287eb08ece0c65fa49a3f45621c612ddbd1
Certificate serial: 2EB809250C44C491A8B6BBA9FCCF80A4E7407E8A
Authority key identifier: 60:18:32:87:EB:08:EC:E0:C6:5F:A4:9A:3F:45:62:1C:61:2D:DB:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YBgyh-sI7ODGX6SaP0ViHGEt29E.cer
Subject info access: rsync://rpki.xindi.eu/repo/XINDI/0/326130633a343230303a3a2f32392d3239203d3e203438313132.roa
Signing time: Wed 28 Aug 2024 12:01:17 +0000
ROA not before: Wed 28 Aug 2024 11:56:17 +0000
ROA not after: Wed 27 Aug 2025 12:01:17 +0000
asID: 48112
IP address blocks: 2a0c:4200::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.xindi.eu/repo/XINDI/0/60183287EB08ECE0C65FA49A3F45621C612DDBD1.crl
rsync://rpki.xindi.eu/repo/XINDI/0/60183287EB08ECE0C65FA49A3F45621C612DDBD1.mft
rsync://rpki.ripe.net/repository/DEFAULT/YBgyh-sI7ODGX6SaP0ViHGEt29E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 04 Dec 2024 21:56:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:b8:09:25:0c:44:c4:91:a8:b6:bb:a9:fc:cf:80:a4:e7:40:7e:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60183287eb08ece0c65fa49a3f45621c612ddbd1
Validity
Not Before: Aug 28 11:56:17 2024 GMT
Not After : Aug 27 12:01:17 2025 GMT
Subject: CN=F80D71798C1D30F4DE61E0CF395E6F2A2554F3A6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b7:be:1e:8b:4b:f6:36:53:e0:2c:18:35:1c:
c5:09:08:a8:f9:27:b7:18:58:a6:8a:e7:f0:8f:0a:
32:b9:c2:0b:bb:94:38:08:d9:2c:b2:62:74:93:ab:
f0:8d:c1:61:f4:ad:30:8b:76:03:f7:67:c3:30:fb:
53:68:59:95:2a:09:9c:75:36:93:da:09:9a:67:fc:
68:b5:b7:ec:7b:6b:26:38:44:4c:a0:07:92:2d:62:
26:52:5f:1b:32:b1:07:55:6f:21:a5:7a:b6:57:41:
68:2a:d6:50:59:09:f0:7b:0d:0c:83:7a:ee:aa:fc:
2d:28:f7:a6:20:6f:06:54:a0:61:5d:22:d6:db:bc:
18:4d:e6:13:dc:76:02:4a:38:ef:1d:63:41:7e:02:
90:fe:37:12:fd:17:c3:7b:50:3d:d7:33:5c:c6:8a:
02:8f:94:98:2c:90:60:5b:75:1c:8a:6d:f2:c6:7f:
00:5a:33:fa:9d:d5:42:90:e3:ad:a5:b9:ad:75:83:
62:44:f8:f0:0f:92:53:39:2a:62:2d:51:e6:f4:8b:
7c:10:d5:37:e0:47:45:2a:f4:a7:32:77:47:6c:05:
95:c3:53:e1:9c:d1:2f:b7:61:ab:d7:d1:92:ed:ca:
5e:d1:a9:32:5b:d7:9f:ce:a6:2f:d1:e2:47:36:63:
e1:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:0D:71:79:8C:1D:30:F4:DE:61:E0:CF:39:5E:6F:2A:25:54:F3:A6
X509v3 Authority Key Identifier:
keyid:60:18:32:87:EB:08:EC:E0:C6:5F:A4:9A:3F:45:62:1C:61:2D:DB:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.xindi.eu/repo/XINDI/0/60183287EB08ECE0C65FA49A3F45621C612DDBD1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YBgyh-sI7ODGX6SaP0ViHGEt29E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.xindi.eu/repo/XINDI/0/326130633a343230303a3a2f32392d3239203d3e203438313132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:4200::/29
Signature Algorithm: sha256WithRSAEncryption
6b:d1:d2:b2:42:b2:61:06:b6:66:d0:9f:39:3b:ae:da:b5:3e:
3d:c9:d6:be:77:78:cb:ce:3a:1f:af:54:10:4c:ce:32:14:1e:
8f:05:b6:b1:0e:87:4f:f3:b3:6f:36:f1:ac:97:bd:60:6f:1f:
45:24:e1:cf:f3:d9:49:4b:ed:24:3d:cd:0b:90:c3:23:26:84:
89:88:8d:31:f2:12:19:fc:fd:70:96:a7:1c:21:fb:c3:b8:b4:
76:f0:21:67:5f:04:62:80:41:b4:55:64:0d:2b:ef:fd:a5:0f:
95:ad:61:87:2a:b4:35:8b:82:3f:f1:0c:1f:5b:3f:e9:e3:ce:
21:28:57:06:ea:d3:a2:6f:5f:e1:c3:8c:6e:eb:4f:86:ad:66:
e8:06:5d:bc:eb:96:9f:3c:19:90:cb:75:38:14:5b:9e:d0:0d:
c9:1d:95:95:3a:4b:6e:e6:7d:25:06:23:62:e6:94:ca:c6:9d:
66:97:1a:46:ee:0c:c8:93:e8:a3:83:8c:d5:19:d0:73:61:41:
10:0d:46:0b:49:f8:95:f0:c2:ad:1f:ba:d6:74:ac:27:00:86:
ef:95:7e:2c:96:93:82:4c:40:7d:b0:6d:71:2e:74:8b:f7:ae:
30:6f:ef:60:fe:c3:62:f4:56:6e:a0:0a:f1:8f:ee:23:b3:05:
8a:08:8d:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 4 03:23:07 2024 by rpki-client on console-ams.rpki-client.org