Route Origin Authorization
$ rpki-client -vvf rpki.xindi.eu/repo/XINDI/0/39312e3230372e3132302e302f32332d3233203d3e203438313132.roa
File: 39312e3230372e3132302e302f32332d3233203d3e203438313132.roa (raw, json)
Hash identifier: yRLQuMM5sTdiR8PKZYKlDIMgkV5pLcjIiqQes0FZF7o=
Subject key identifier: 9A:A2:F7:A1:D3:D8:79:8D:B9:D1:4E:AC:9F:68:52:1B:E6:4D:67:0F
Certificate issuer: /CN=60183287eb08ece0c65fa49a3f45621c612ddbd1
Certificate serial: 3C328E40FA235E0C1895920AE8F7708FB3A993D4
Authority key identifier: 60:18:32:87:EB:08:EC:E0:C6:5F:A4:9A:3F:45:62:1C:61:2D:DB:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YBgyh-sI7ODGX6SaP0ViHGEt29E.cer
Subject info access: rsync://rpki.xindi.eu/repo/XINDI/0/39312e3230372e3132302e302f32332d3233203d3e203438313132.roa
Signing time: Wed 28 Aug 2024 12:01:15 +0000
ROA not before: Wed 28 Aug 2024 11:56:15 +0000
ROA not after: Wed 27 Aug 2025 12:01:15 +0000
asID: 48112
IP address blocks: 91.207.120.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.xindi.eu/repo/XINDI/0/60183287EB08ECE0C65FA49A3F45621C612DDBD1.crl
rsync://rpki.xindi.eu/repo/XINDI/0/60183287EB08ECE0C65FA49A3F45621C612DDBD1.mft
rsync://rpki.ripe.net/repository/DEFAULT/YBgyh-sI7ODGX6SaP0ViHGEt29E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 04 Dec 2024 21:56:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:32:8e:40:fa:23:5e:0c:18:95:92:0a:e8:f7:70:8f:b3:a9:93:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60183287eb08ece0c65fa49a3f45621c612ddbd1
Validity
Not Before: Aug 28 11:56:15 2024 GMT
Not After : Aug 27 12:01:15 2025 GMT
Subject: CN=9AA2F7A1D3D8798DB9D14EAC9F68521BE64D670F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:39:15:22:23:63:4b:be:86:41:75:d7:83:a3:
17:5d:83:87:ba:53:52:5c:96:98:51:cf:2c:34:1b:
b0:ac:7e:9f:3c:d8:aa:e2:cb:02:78:90:6f:54:99:
1b:48:e0:54:b4:b7:98:eb:28:de:2b:7d:8d:01:5f:
95:f0:43:02:f0:9b:bd:42:56:94:98:b7:4a:f8:3a:
14:09:29:01:68:c7:9f:33:a2:80:a4:38:d6:db:97:
4c:53:9d:fe:67:5e:35:c9:1d:94:92:73:59:cc:3a:
81:63:7b:1a:a7:da:f1:34:68:07:34:7c:73:59:7c:
f2:12:8c:cd:ad:30:47:39:34:f2:f2:6b:17:00:e5:
8c:7c:df:95:25:fa:f0:29:bc:f1:8c:8e:3b:10:87:
6b:ee:99:17:1c:fe:fb:b7:ab:77:19:2d:f2:5c:86:
43:fd:dc:2a:70:5d:e8:3e:e7:25:80:8e:f5:35:23:
fd:9e:68:7f:53:e8:31:42:13:58:2e:4a:dd:d7:33:
10:32:a7:ac:b1:07:2e:5b:11:19:05:3c:36:51:e2:
3c:e9:92:db:37:c4:32:d5:3f:1e:3c:c7:f4:8b:36:
b9:7f:2e:da:af:59:b6:c2:ce:47:e6:b8:f9:7d:b2:
cf:66:c2:2d:cd:13:21:86:f4:78:39:7e:68:63:ff:
cc:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:A2:F7:A1:D3:D8:79:8D:B9:D1:4E:AC:9F:68:52:1B:E6:4D:67:0F
X509v3 Authority Key Identifier:
keyid:60:18:32:87:EB:08:EC:E0:C6:5F:A4:9A:3F:45:62:1C:61:2D:DB:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.xindi.eu/repo/XINDI/0/60183287EB08ECE0C65FA49A3F45621C612DDBD1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YBgyh-sI7ODGX6SaP0ViHGEt29E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.xindi.eu/repo/XINDI/0/39312e3230372e3132302e302f32332d3233203d3e203438313132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.207.120.0/23
Signature Algorithm: sha256WithRSAEncryption
c9:c2:6f:54:1b:15:2c:97:8f:0e:f5:e6:f1:ba:76:a8:03:51:
d1:67:77:ed:74:aa:d6:f2:ed:5a:41:60:e7:d3:4d:8c:30:c2:
95:24:6b:93:d4:f6:1f:cd:de:c3:53:22:33:51:25:74:ab:05:
4a:69:3b:55:a4:f1:38:95:f2:b5:de:b8:9a:45:d0:e0:22:0e:
93:2e:59:74:71:bb:87:fc:ed:98:74:fc:8a:13:9f:3d:98:98:
e3:16:2e:de:4c:3e:66:65:5b:cd:98:c0:6f:77:8d:26:62:76:
74:15:02:e8:70:8d:2c:1f:3a:a8:68:47:99:96:0a:b3:3b:38:
8d:8d:8c:1a:70:9d:25:46:75:7d:70:06:b4:ce:d3:ca:cf:c5:
df:56:38:cf:32:59:d4:9d:95:79:20:30:67:b9:20:5b:f1:b9:
83:a4:b8:69:bd:ca:89:f5:13:68:9d:f4:93:2e:6c:4d:e1:02:
72:3f:82:dc:23:a3:6f:ff:f4:19:ae:ff:2b:e2:17:f8:f6:94:
57:2c:f6:4a:51:91:43:9b:32:a0:1c:a0:16:ee:87:2c:71:fa:
48:83:41:c0:f9:ac:f3:d5:d2:b2:1b:32:91:93:fe:e8:31:33:
67:e1:63:93:d0:4c:8a:d0:cb:28:b8:02:7a:db:ae:04:37:20:
43:c4:1b:8f
-----BEGIN CERTIFICATE-----
MIIEyDCCA7CgAwIBAgIUPDKOQPojXgwYlZIK6Pdwj7Opk9QwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjAxODMyODdlYjA4ZWNlMGM2NWZhNDlhM2Y0NTYyMWM2
MTJkZGJkMTAeFw0yNDA4MjgxMTU2MTVaFw0yNTA4MjcxMjAxMTVaMDMxMTAvBgNV
BAMTKDlBQTJGN0ExRDNEODc5OERCOUQxNEVBQzlGNjg1MjFCRTY0RDY3MEYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7ORUiI2NLvoZBddeDoxddg4e6
U1JclphRzyw0G7Csfp882KriywJ4kG9UmRtI4FS0t5jrKN4rfY0BX5XwQwLwm71C
VpSYt0r4OhQJKQFox58zooCkONbbl0xTnf5nXjXJHZSSc1nMOoFjexqn2vE0aAc0
fHNZfPISjM2tMEc5NPLyaxcA5Yx835Ul+vApvPGMjjsQh2vumRcc/vu3q3cZLfJc
hkP93CpwXeg+5yWAjvU1I/2eaH9T6DFCE1guSt3XMxAyp6yxBy5bERkFPDZR4jzp
kts3xDLVPx48x/SLNrl/LtqvWbbCzkfmuPl9ss9mwi3NEyGG9Hg5fmhj/8xzAgMB
AAGjggHSMIIBzjAdBgNVHQ4EFgQUmqL3odPYeY250U6sn2hSG+ZNZw8wHwYDVR0j
BBgwFoAUYBgyh+sI7ODGX6SaP0ViHGEt29EwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud
HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraS54aW5kaS5ldS9yZXBvL1hJTkRJLzAv
NjAxODMyODdFQjA4RUNFMEM2NUZBNDlBM0Y0NTYyMUM2MTJEREJEMS5jcmwwZAYI
KwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQv
cmVwb3NpdG9yeS9ERUZBVUxUL1lCZ3loLXNJN09ER1g2U2FQMFZpSEdFdDI5RS5j
ZXIweQYIKwYBBQUHAQsEbTBrMGkGCCsGAQUFBzALhl1yc3luYzovL3Jwa2kueGlu
ZGkuZXUvcmVwby9YSU5ESS8wLzM5MzEyZTMyMzAzNzJlMzEzMjMwMmUzMDJmMzIz
MzJkMzIzMzIwM2QzZTIwMzQzODMxMzEzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAVvPeDANBgkqhkiG
9w0BAQsFAAOCAQEAycJvVBsVLJePDvXm8bp2qANR0Wd37XSq1vLtWkFg59NNjDDC
lSRrk9T2H83ew1MiM1EldKsFSmk7VaTxOJXytd64mkXQ4CIOky5ZdHG7h/ztmHT8
ihOfPZiY4xYu3kw+ZmVbzZjAb3eNJmJ2dBUC6HCNLB86qGhHmZYKszs4jY2MGnCd
JUZ1fXAGtM7Tys/F31Y4zzJZ1J2VeSAwZ7kgW/G5g6S4ab3KifUTaJ30ky5sTeEC
cj+C3COjb//0Ga7/K+IX+PaUVyz2SlGRQ5syoBygFu6HLHH6SINBwPms89XSshsy
kZP+6DEzZ+Fjk9BMitDLKLgCetuuBDcgQ8Qbjw==
-----END CERTIFICATE-----
Generated at Wed Dec 4 05:40:00 2024 by rpki-client on console-fra.rpki-client.org