Route Origin Authorization
$ rpki-client -vvf rpki.xindi.eu/repo/XINDI/0/39312e3230372e3132302e302f32332d3233203d3e203438313132.roa
File: 39312e3230372e3132302e302f32332d3233203d3e203438313132.roa (raw, json)
Hash identifier: nGWxVDfCcoNhui7XSuJwQEjI2Yq/lpsocEF9ao2GseM=
Subject key identifier: 1F:ED:1D:FB:09:FA:D7:57:90:35:35:2F:E5:01:01:FF:FD:15:16:8A
Certificate issuer: /CN=60183287eb08ece0c65fa49a3f45621c612ddbd1
Certificate serial: 0546AF504FBC98FEC60EF0284AF5817F0178BCDC
Authority key identifier: 60:18:32:87:EB:08:EC:E0:C6:5F:A4:9A:3F:45:62:1C:61:2D:DB:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YBgyh-sI7ODGX6SaP0ViHGEt29E.cer
Subject info access: rsync://rpki.xindi.eu/repo/XINDI/0/39312e3230372e3132302e302f32332d3233203d3e203438313132.roa
Signing time: Wed 27 Sep 2023 11:50:58 +0000
ROA not before: Wed 27 Sep 2023 11:45:58 +0000
ROA not after: Wed 25 Sep 2024 11:50:58 +0000
asID: 48112
IP address blocks: 91.207.120.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.xindi.eu/repo/XINDI/0/60183287EB08ECE0C65FA49A3F45621C612DDBD1.crl
rsync://rpki.xindi.eu/repo/XINDI/0/60183287EB08ECE0C65FA49A3F45621C612DDBD1.mft
rsync://rpki.ripe.net/repository/DEFAULT/YBgyh-sI7ODGX6SaP0ViHGEt29E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Jun 2024 16:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:46:af:50:4f:bc:98:fe:c6:0e:f0:28:4a:f5:81:7f:01:78:bc:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60183287eb08ece0c65fa49a3f45621c612ddbd1
Validity
Not Before: Sep 27 11:45:58 2023 GMT
Not After : Sep 25 11:50:58 2024 GMT
Subject: CN=1FED1DFB09FAD7579035352FE50101FFFD15168A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:02:33:15:35:23:5e:35:39:99:d3:79:5f:ae:
03:87:25:b0:e8:44:3c:d5:a9:ef:47:8b:9b:fb:e2:
1a:d9:84:b3:17:9d:1e:c6:5d:22:4e:77:12:83:0b:
3c:91:4f:95:1f:44:3d:6c:6d:e2:95:4c:c6:e7:c9:
cb:0d:6b:ea:ba:10:c0:d5:4e:68:4f:cf:f0:d0:81:
fb:5b:09:34:6f:86:d0:f3:c8:63:11:89:e6:6f:6f:
f3:a5:e5:4a:6f:ea:0a:2a:3b:e5:e8:3c:a1:f3:44:
b8:14:c0:84:59:88:c3:9e:c1:9d:12:af:62:3d:d1:
4f:6d:c7:e2:3c:5a:9e:ad:4e:8e:e4:9e:9b:32:eb:
25:a2:a7:68:7e:c9:95:2e:78:99:1d:ef:b1:fa:09:
05:11:63:a6:d4:cf:e8:d3:a4:f6:53:53:e4:a4:98:
3c:7e:66:11:f1:5b:63:5d:f8:fe:1e:1d:00:35:a2:
bc:87:f4:8a:08:47:b2:29:1b:61:a0:84:30:01:49:
7f:17:90:52:f8:c7:39:56:fe:27:0a:18:e8:8a:15:
35:d9:28:8e:f9:ac:22:37:ab:ac:e2:5b:5c:0e:21:
8f:d9:fd:3e:a3:04:03:b1:4f:fe:9b:95:0d:c5:4f:
71:39:bf:81:16:91:87:28:34:fe:44:6c:f8:8d:f7:
3c:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:ED:1D:FB:09:FA:D7:57:90:35:35:2F:E5:01:01:FF:FD:15:16:8A
X509v3 Authority Key Identifier:
keyid:60:18:32:87:EB:08:EC:E0:C6:5F:A4:9A:3F:45:62:1C:61:2D:DB:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.xindi.eu/repo/XINDI/0/60183287EB08ECE0C65FA49A3F45621C612DDBD1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YBgyh-sI7ODGX6SaP0ViHGEt29E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.xindi.eu/repo/XINDI/0/39312e3230372e3132302e302f32332d3233203d3e203438313132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.207.120.0/23
Signature Algorithm: sha256WithRSAEncryption
34:23:f1:63:fe:c5:a8:73:60:84:3a:a8:58:5d:a5:45:fa:7f:
d8:d4:77:16:1e:82:3c:23:29:c4:c9:41:8a:99:c1:76:85:3a:
7f:ac:a7:31:99:e6:9d:28:a2:7a:0b:fc:ae:40:95:ae:9a:ca:
32:a7:10:f7:9c:fe:40:49:3a:a3:fd:81:06:e4:b0:73:9a:01:
1b:dc:ab:5b:17:74:14:05:62:3c:11:98:13:24:e4:3d:2f:62:
0e:80:c5:c8:ad:d1:0e:89:2b:db:85:2d:81:1b:e7:95:a3:71:
57:84:a9:9f:45:f8:29:89:70:9b:9e:d2:03:84:6c:7e:80:bc:
81:ab:fb:2e:de:39:70:27:75:d9:f5:b6:b1:c7:65:bb:b6:62:
fe:8f:8d:99:4f:88:ba:94:b4:9e:69:70:fb:bc:55:af:53:c4:
9c:0c:60:ce:65:34:e4:0d:24:d3:ce:f0:9d:5a:63:41:a2:2c:
06:2c:f5:f4:eb:02:e0:3c:bc:8f:c4:e7:f2:3b:fa:b0:99:4a:
95:d4:08:e3:a0:2f:27:7f:f5:17:14:99:b6:fb:44:47:dd:b7:
f2:c2:b8:76:4c:71:93:6c:23:5e:20:8a:fa:b5:b1:0b:d5:31:
03:99:bf:d4:6b:0c:3a:64:9e:7e:d7:82:88:a1:b3:55:99:46:
10:63:67:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 31 23:15:47 2024 by rpki-client on console-ams.rpki-client.org