Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/326130653a666363303a3a2f32392d3239203d3e20323031393633.roa
File: 326130653a666363303a3a2f32392d3239203d3e20323031393633.roa (raw, json)
Hash identifier: qdebRShI1BsDkowxWmjmO/ySQ67z1G0tcY+aaojgUVA=
Subject key identifier: E9:5A:22:D1:F1:68:EB:0A:82:41:F1:13:68:93:99:7B:74:D7:4A:AA
Certificate issuer: /CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Certificate serial: 7C98177C940286A95030F3B58D15C36C198CC3D1
Authority key identifier: 83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/326130653a666363303a3a2f32392d3239203d3e20323031393633.roa
Signing time: Sat 24 Aug 2024 13:05:19 +0000
ROA not before: Sat 24 Aug 2024 13:00:19 +0000
ROA not after: Sat 23 Aug 2025 13:05:19 +0000
asID: 201963
IP address blocks: 2a0e:fcc0::/29 maxlen: 29
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.mft
rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:98:17:7c:94:02:86:a9:50:30:f3:b5:8d:15:c3:6c:19:8c:c3:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Validity
Not Before: Aug 24 13:00:19 2024 GMT
Not After : Aug 23 13:05:19 2025 GMT
Subject: CN=E95A22D1F168EB0A8241F1136893997B74D74AAA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:5f:42:11:88:7b:24:23:80:ce:9a:cc:d9:cb:
2f:06:aa:28:7d:90:2e:ee:f6:16:db:ab:df:c6:5c:
33:ce:73:31:6e:47:2d:cc:81:be:64:ce:76:ce:46:
4b:09:e8:04:2f:48:db:eb:dd:8e:0c:6a:5e:1a:10:
1e:c7:92:78:22:69:db:60:17:6d:23:70:11:b4:21:
c8:72:b1:4d:e3:93:c5:03:b2:7a:db:51:79:24:92:
cd:57:84:28:25:6f:8e:54:7b:b4:2a:cc:00:43:5c:
70:5f:78:88:ef:99:0b:c8:99:65:42:bd:44:f8:65:
73:26:6e:27:e4:54:9e:e3:7f:ba:a5:3e:5c:74:6d:
1a:33:6b:9b:30:b8:4e:00:73:8c:7a:75:fb:15:bd:
ae:f5:a3:77:0a:99:4f:38:22:a9:0e:ce:38:9c:99:
73:c0:1d:ac:14:17:3a:8b:7e:b0:21:68:1f:9f:45:
af:77:29:c4:24:92:bd:6b:ca:3e:6c:86:f9:e8:1e:
f5:1d:98:40:72:be:1a:50:7c:94:b5:87:5c:2e:a9:
c6:2c:a7:18:8a:15:49:0f:cb:7e:af:6d:be:a2:6c:
7d:9c:e1:4c:17:a7:93:8b:68:02:f6:93:67:40:5c:
9f:f2:0f:54:5e:e8:b9:cf:3e:c0:1d:59:a0:f8:3c:
91:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:5A:22:D1:F1:68:EB:0A:82:41:F1:13:68:93:99:7B:74:D7:4A:AA
X509v3 Authority Key Identifier:
keyid:83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/326130653a666363303a3a2f32392d3239203d3e20323031393633.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:fcc0::/29
Signature Algorithm: sha256WithRSAEncryption
43:eb:a0:1b:58:01:ce:ca:1f:2b:fa:0a:62:b4:cc:bb:1e:f6:
a2:97:23:5a:fc:cc:f4:f1:b1:cf:d0:3a:d7:71:b1:cd:05:0c:
8d:b5:27:64:4d:80:fc:40:f9:78:7d:65:c2:09:34:d9:4c:d5:
a3:32:54:65:c2:83:55:b1:c5:70:37:49:17:15:64:5a:f7:73:
66:c9:28:df:55:14:6c:b7:c2:5e:2b:99:7d:45:12:dd:ea:4b:
b8:e5:33:a8:6e:d9:e4:56:6e:cb:a1:68:08:8a:8c:9c:65:f1:
5a:4b:0e:b7:7e:94:cc:21:cd:4a:b2:29:ef:e0:1d:98:8e:85:
92:97:38:2e:82:3a:45:67:0f:85:c1:d9:f8:70:5b:14:8a:a0:
76:61:69:1b:0c:33:5d:c6:a5:b9:bd:d7:f9:dc:d7:90:89:f4:
aa:aa:c3:8e:0f:70:35:3f:b3:84:7e:93:38:3d:b4:94:d3:66:
72:7d:33:33:60:7b:82:78:30:bf:15:22:84:8d:a5:9b:7e:a5:
71:03:68:40:2e:37:2f:18:c6:26:40:e8:b6:4d:48:66:8c:a8:
cc:32:5e:6f:4d:21:1d:71:5c:65:f2:53:77:30:44:05:dd:bf:
69:cf:7f:a3:54:7a:5f:88:45:2d:2d:f4:2c:e5:4d:db:40:de:
38:89:67:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 12:08:36 2024 by rpki-client on console-fra.rpki-client.org