Route Origin Authorization
$ rpki-client -vvf rpki.xindi.eu/repo/XINDI/0/34352e38392e3136342e302f32322d3232203d3e203438313132.roa
File: 34352e38392e3136342e302f32322d3232203d3e203438313132.roa (raw, json)
Hash identifier: hbh53rxHnDmHz2PEcqyVvOfOMwcm1fPOEzvMYdyhpnk=
Subject key identifier: 35:06:9B:40:03:52:18:5F:54:CD:97:A2:09:99:57:A3:49:D1:72:F7
Certificate issuer: /CN=60183287eb08ece0c65fa49a3f45621c612ddbd1
Certificate serial: 480B43D349AE37ACA03A82DA57BA8E3379B95DA8
Authority key identifier: 60:18:32:87:EB:08:EC:E0:C6:5F:A4:9A:3F:45:62:1C:61:2D:DB:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YBgyh-sI7ODGX6SaP0ViHGEt29E.cer
Subject info access: rsync://rpki.xindi.eu/repo/XINDI/0/34352e38392e3136342e302f32322d3232203d3e203438313132.roa
Signing time: Wed 28 Aug 2024 12:01:15 +0000
ROA not before: Wed 28 Aug 2024 11:56:15 +0000
ROA not after: Wed 27 Aug 2025 12:01:15 +0000
asID: 48112
IP address blocks: 45.89.164.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.xindi.eu/repo/XINDI/0/60183287EB08ECE0C65FA49A3F45621C612DDBD1.crl
rsync://rpki.xindi.eu/repo/XINDI/0/60183287EB08ECE0C65FA49A3F45621C612DDBD1.mft
rsync://rpki.ripe.net/repository/DEFAULT/YBgyh-sI7ODGX6SaP0ViHGEt29E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 04 Dec 2024 21:56:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:0b:43:d3:49:ae:37:ac:a0:3a:82:da:57:ba:8e:33:79:b9:5d:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60183287eb08ece0c65fa49a3f45621c612ddbd1
Validity
Not Before: Aug 28 11:56:15 2024 GMT
Not After : Aug 27 12:01:15 2025 GMT
Subject: CN=35069B400352185F54CD97A2099957A349D172F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:15:62:46:ec:2c:cf:c7:1f:9f:5c:3c:ca:b5:
05:52:c7:2c:a6:d4:90:14:96:97:cf:cf:fc:5d:8b:
c5:6e:e4:c3:7c:c8:a5:41:80:c2:17:8b:fc:bd:f3:
7b:c8:31:c7:3d:2c:85:a8:84:35:46:8b:ca:f7:4c:
a4:3e:b5:c6:32:97:4f:02:d5:88:8d:c3:98:aa:7f:
12:36:81:ee:fe:c6:66:5e:4a:e8:6d:2b:aa:cb:7e:
07:03:76:3c:72:d6:3d:ac:ba:86:08:ea:47:65:4e:
16:59:0b:9b:15:60:ef:34:1e:6c:cf:c2:5b:b4:13:
65:3e:16:2a:73:40:82:3d:e7:1f:9c:1a:94:9e:a7:
08:00:2d:a6:c5:42:d1:95:aa:c2:61:8b:ef:20:70:
c2:ed:5e:71:1b:6e:f0:e1:df:4c:ec:b4:93:29:65:
f0:08:40:12:84:80:6c:8a:95:39:23:5a:24:48:e0:
a0:ff:68:e4:39:bf:f2:e7:df:aa:71:79:37:d6:1f:
59:4c:c5:8a:d9:24:69:4d:44:3c:a0:45:fb:10:b8:
b3:de:29:52:a5:32:c5:e3:92:02:65:9a:3d:c7:dc:
85:dc:cb:c6:f7:59:de:69:b5:40:6c:ca:de:85:68:
f0:3a:62:aa:b4:ba:e6:25:c5:79:ab:ce:69:62:3b:
a1:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:06:9B:40:03:52:18:5F:54:CD:97:A2:09:99:57:A3:49:D1:72:F7
X509v3 Authority Key Identifier:
keyid:60:18:32:87:EB:08:EC:E0:C6:5F:A4:9A:3F:45:62:1C:61:2D:DB:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.xindi.eu/repo/XINDI/0/60183287EB08ECE0C65FA49A3F45621C612DDBD1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YBgyh-sI7ODGX6SaP0ViHGEt29E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.xindi.eu/repo/XINDI/0/34352e38392e3136342e302f32322d3232203d3e203438313132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.164.0/22
Signature Algorithm: sha256WithRSAEncryption
47:1f:fb:b5:3c:e4:51:c8:e8:63:ad:65:76:90:1c:b8:7a:23:
22:69:55:8f:a0:1b:6c:32:a5:23:84:0f:ef:62:20:51:c5:85:
ca:e0:bd:9d:25:5a:45:f4:a3:24:94:5d:1d:97:27:e6:54:39:
b5:f5:f4:a2:6f:31:8d:73:5d:1d:11:56:b0:1b:52:0b:73:b8:
a4:cb:46:f6:65:8d:91:57:42:33:a6:e6:3c:2a:87:e1:c5:c5:
d7:c9:ac:05:bf:8b:61:ae:9e:f6:50:68:1f:75:63:51:d5:32:
38:a4:85:97:53:c3:d7:a1:b5:86:e4:28:11:89:df:4b:91:53:
5a:6a:3c:c4:45:11:44:13:55:6a:28:ba:15:7f:11:b5:53:02:
a6:61:36:51:40:63:12:0b:2c:f0:51:fe:fe:ef:2d:e3:2d:f1:
5a:0e:fe:32:f1:7d:fe:3c:60:1a:3c:91:39:3f:b3:8c:98:60:
ac:73:09:42:1a:8f:83:9b:fe:12:1b:43:84:62:3e:50:19:e7:
20:11:eb:c0:20:6a:50:2f:3f:2c:80:78:d0:a0:ca:d1:03:83:
36:e6:2a:12:77:89:6d:0f:ad:84:fb:3a:b9:f1:26:58:95:19:
e3:6d:46:fe:7d:f1:8d:fc:46:71:f9:70:94:df:24:b5:ae:fa:
8c:e4:21:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 4 05:40:00 2024 by rpki-client on console-fra.rpki-client.org