Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/0c8bb446-91c0-4138-a33a-b47865de55c5/1/326130323a326262383a3a2f33322d3332203d3e203234383531.roa
File: 326130323a326262383a3a2f33322d3332203d3e203234383531.roa (raw, json)
Hash identifier: bWui68UTbRhcPhlwEAxty4T3/DDJWgLbqMK6lGY8QTg=
Subject key identifier: 4E:FA:09:68:72:A8:39:B8:79:13:A0:31:53:3E:7A:A4:E0:C4:91:A0
Certificate issuer: /CN=a6c509ba48e5b50494572e05c45c58e7e16d87fb
Certificate serial: 6DB07D0E0E98D8C502F4A410E6528C0DC1EB9725
Authority key identifier: A6:C5:09:BA:48:E5:B5:04:94:57:2E:05:C4:5C:58:E7:E1:6D:87:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/psUJukjltQSUVy4FxFxY5-Fth_s.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/0c8bb446-91c0-4138-a33a-b47865de55c5/1/326130323a326262383a3a2f33322d3332203d3e203234383531.roa
Signing time: Fri 29 Dec 2023 13:05:08 +0000
ROA not before: Fri 29 Dec 2023 13:00:08 +0000
ROA not after: Fri 27 Dec 2024 13:05:08 +0000
asID: 24851
IP address blocks: 2a02:2bb8::/32 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/0c8bb446-91c0-4138-a33a-b47865de55c5/1/A6C509BA48E5B50494572E05C45C58E7E16D87FB.crl
rsync://rsync.paas.rpki.ripe.net/repository/0c8bb446-91c0-4138-a33a-b47865de55c5/1/A6C509BA48E5B50494572E05C45C58E7E16D87FB.mft
rsync://rpki.ripe.net/repository/DEFAULT/psUJukjltQSUVy4FxFxY5-Fth_s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 14:42:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:b0:7d:0e:0e:98:d8:c5:02:f4:a4:10:e6:52:8c:0d:c1:eb:97:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6c509ba48e5b50494572e05c45c58e7e16d87fb
Validity
Not Before: Dec 29 13:00:08 2023 GMT
Not After : Dec 27 13:05:08 2024 GMT
Subject: CN=4EFA096872A839B87913A031533E7AA4E0C491A0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:4e:1e:ee:57:13:fa:79:14:7a:e5:d1:6e:27:
9d:45:60:98:8e:5d:5f:3f:22:8e:dc:72:48:d4:4f:
cb:3b:ae:cd:41:49:5f:7e:6f:e3:a1:5c:d3:4e:25:
c8:f3:7f:3e:a7:14:23:bf:7f:5a:53:a9:6f:3b:69:
60:30:ea:73:b0:a9:6c:c1:91:f3:07:33:92:3a:e3:
66:b2:40:ac:89:81:df:9b:05:41:d1:ba:52:4e:ef:
c4:7f:75:ad:de:d7:6a:d5:0f:a2:a4:45:cc:c8:fc:
f4:da:07:18:a1:30:b7:41:f4:a8:4f:b9:32:09:95:
c2:ce:80:1b:29:3b:fc:68:15:6a:a2:7c:88:0a:d0:
f5:6b:b4:33:ec:12:84:ee:22:6c:c9:24:08:66:b4:
ab:23:c2:a7:c1:f2:90:55:0d:e2:cc:55:c3:df:40:
07:fb:f5:88:67:5c:89:65:31:b8:e9:48:1c:46:93:
0b:99:17:1a:eb:db:e7:81:a1:92:3a:7d:b3:5b:28:
5c:8a:87:21:87:f5:1d:36:77:e6:ee:72:53:e5:a1:
97:9e:3a:fd:a2:e4:ce:32:e1:59:39:2c:93:0e:42:
76:50:40:6c:e1:21:e0:16:98:2f:e9:c4:0e:58:26:
a1:40:63:f7:a3:da:52:cf:17:71:7b:71:d3:f0:73:
b5:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:FA:09:68:72:A8:39:B8:79:13:A0:31:53:3E:7A:A4:E0:C4:91:A0
X509v3 Authority Key Identifier:
keyid:A6:C5:09:BA:48:E5:B5:04:94:57:2E:05:C4:5C:58:E7:E1:6D:87:FB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/0c8bb446-91c0-4138-a33a-b47865de55c5/1/A6C509BA48E5B50494572E05C45C58E7E16D87FB.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/psUJukjltQSUVy4FxFxY5-Fth_s.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/0c8bb446-91c0-4138-a33a-b47865de55c5/1/326130323a326262383a3a2f33322d3332203d3e203234383531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:2bb8::/32
Signature Algorithm: sha256WithRSAEncryption
0d:4c:ce:61:28:66:3c:9b:d0:04:74:f6:92:8d:d4:fc:29:7c:
46:3a:9d:70:b6:b3:69:96:91:f1:55:4e:9c:5b:39:a8:af:7a:
e4:76:4e:64:68:be:39:4c:f9:73:27:21:64:92:1a:3e:77:e9:
fc:f8:3d:de:eb:62:a0:dc:49:50:84:75:a6:ed:58:ad:fc:48:
02:34:0c:ce:87:df:8b:93:84:d8:61:2f:84:a8:be:91:73:34:
a7:2a:e1:a5:c2:5c:1e:34:3b:f6:19:b0:43:d3:1f:20:1b:76:
f8:40:44:8a:0e:a2:63:36:8a:9f:97:e4:9d:1b:76:5e:a7:0d:
58:0e:ac:b1:d5:5d:a2:74:6f:03:1c:06:03:2e:cc:f1:7d:0b:
27:fc:9a:63:bd:7a:37:76:9f:a3:2f:29:27:39:3a:3c:62:65:
9c:d7:d9:6c:ff:19:7f:1a:4b:70:48:ef:2f:d3:f9:4b:3e:21:
fb:c1:4e:0a:dd:64:82:53:bf:56:f1:43:cc:1e:89:19:b7:3f:
3a:4a:ae:fd:28:24:87:e8:37:c4:96:b4:cd:33:f9:96:06:61:
aa:db:5e:e7:a5:3f:99:dd:80:41:99:c1:87:c6:d2:58:36:6c:
91:fa:f3:e6:99:19:bd:48:72:7b:63:70:ad:0c:23:e1:04:80:
7a:01:1c:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 16:43:58 2024 by rpki-client on console-fra.rpki-client.org