Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/326130623a346530343a3a2f34382d3438203d3e20323135373531.roa
File: 326130623a346530343a3a2f34382d3438203d3e20323135373531.roa (raw, json)
Hash identifier: f3x/pqwo0LrKdmMgvMJV5lxshuppztf6Fl24zgXV+Vc=
Subject key identifier: B5:E1:4C:3C:24:27:D5:71:A8:EE:47:60:A5:5D:2B:A6:14:C9:B6:3D
Certificate issuer: /CN=42e508fba8960f48071b119accbf57bdbf3a8057
Certificate serial: 0E3C599B67F74B8EDB8298D4B7796BE5DC6B6322
Authority key identifier: 42:E5:08:FB:A8:96:0F:48:07:1B:11:9A:CC:BF:57:BD:BF:3A:80:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/326130623a346530343a3a2f34382d3438203d3e20323135373531.roa
Signing time: Tue 23 Jul 2024 02:27:19 +0000
ROA not before: Tue 23 Jul 2024 02:22:19 +0000
ROA not after: Tue 22 Jul 2025 02:27:19 +0000
asID: 215751
IP address blocks: 2a0b:4e04::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl
rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft
rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Sep 2024 02:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:3c:59:9b:67:f7:4b:8e:db:82:98:d4:b7:79:6b:e5:dc:6b:63:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42e508fba8960f48071b119accbf57bdbf3a8057
Validity
Not Before: Jul 23 02:22:19 2024 GMT
Not After : Jul 22 02:27:19 2025 GMT
Subject: CN=B5E14C3C2427D571A8EE4760A55D2BA614C9B63D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:21:80:54:a1:aa:57:26:a3:0e:9e:ec:9a:3b:
93:3c:4d:95:47:16:63:9a:19:a4:73:fa:dd:5f:1c:
3c:c8:13:8e:05:f4:40:57:58:7b:95:f0:bc:e4:b4:
95:57:4b:f1:79:2b:c2:f9:c4:41:b9:99:d3:e5:7e:
31:a6:28:8c:e6:8b:ba:4a:da:da:2c:a2:a3:8f:17:
1e:f9:45:6f:66:96:9e:bd:6c:ac:df:05:be:37:01:
ef:71:7d:77:62:64:ed:a1:03:2d:4b:83:23:99:bc:
ef:ae:61:31:74:16:3e:7b:2e:1e:14:c2:9e:19:10:
ba:9f:66:0f:0c:fb:2d:f1:00:23:d3:1f:55:45:ed:
f1:c1:78:74:82:c0:f3:e2:2a:1f:8b:51:ca:5e:00:
c3:1e:f0:cb:ac:36:46:c2:6e:b8:05:89:98:69:05:
70:94:1c:06:ad:94:8b:7c:c8:35:40:31:fb:21:06:
9a:25:a1:75:b3:00:56:48:f7:ba:64:d6:3c:97:d0:
9f:2b:97:0b:b2:6a:14:a7:9a:a9:32:15:92:80:ac:
a2:74:e7:1a:65:ac:89:ec:09:f1:9d:1b:64:2a:75:
18:b7:de:e2:55:d0:70:3e:cc:ab:b7:68:76:57:50:
ef:bd:de:d7:18:33:4e:6b:3a:87:dc:a6:4c:01:0d:
eb:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:E1:4C:3C:24:27:D5:71:A8:EE:47:60:A5:5D:2B:A6:14:C9:B6:3D
X509v3 Authority Key Identifier:
keyid:42:E5:08:FB:A8:96:0F:48:07:1B:11:9A:CC:BF:57:BD:BF:3A:80:57
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/326130623a346530343a3a2f34382d3438203d3e20323135373531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:4e04::/48
Signature Algorithm: sha256WithRSAEncryption
9f:7d:f5:b1:0f:11:60:e0:c6:87:0b:ac:c7:e9:b7:18:6c:51:
97:88:aa:d1:2a:eb:5f:7b:5c:dc:20:12:47:42:4b:15:33:9f:
39:44:77:77:44:8d:9d:4d:3e:02:3a:1d:2f:83:f6:38:2e:69:
68:e6:77:fd:13:46:89:8d:f4:97:7a:42:9c:ef:54:f1:93:80:
8b:51:ac:08:38:d6:08:cf:f4:30:50:b4:12:ff:2f:b9:bd:77:
d3:d6:5d:2c:5b:a3:5b:67:1d:ed:eb:03:76:d7:98:9d:0b:ec:
87:f0:10:23:7a:03:bb:61:93:65:28:31:a5:44:df:e2:35:ff:
61:86:a1:3c:3b:2c:96:8a:38:1d:0b:f2:53:74:4b:4d:95:29:
9f:72:8b:8c:92:92:65:4c:f5:90:d0:49:66:9b:16:b1:39:d9:
ab:f7:d0:01:07:1e:49:de:49:0c:29:35:7d:99:69:0d:ae:03:
08:94:c7:ec:41:3f:28:e1:11:70:ed:b2:7f:41:c5:ac:ca:79:
55:42:90:eb:95:98:b5:c9:3b:f9:b8:41:7f:6b:fc:43:bc:b0:
4f:52:07:a2:30:57:68:03:b1:42:aa:bd:87:99:53:08:3a:58:
d2:0f:26:43:a1:f8:06:c3:9c:d9:42:0d:5b:3f:6f:6a:2a:61:
d8:02:f9:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 18 07:44:06 2024 by rpki-client on console-fra.rpki-client.org