Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a4c6bdc5-eb4e-4b6e-95f6-62790e57f3be/0/326131333a656534303a3330303a3a2f34302d3438203d3e20323135393335.roa
File: 326131333a656534303a3330303a3a2f34302d3438203d3e20323135393335.roa (raw, json)
Hash identifier: 24vmDVjQfWtJF+fpx3aVHzMW7ti/LNVda8qWaKhasNI=
Subject key identifier: FB:CA:99:7E:2B:A9:60:EF:BA:F2:89:7C:14:60:0B:C8:5B:5A:C5:67
Certificate issuer: /CN=9da23cc2cf88ae4585cf8aaf9a714a9ad2e6f198
Certificate serial: 19828D7F30976880A84BB6AAECBAC6B34B89238E
Authority key identifier: 9D:A2:3C:C2:CF:88:AE:45:85:CF:8A:AF:9A:71:4A:9A:D2:E6:F1:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/naI8ws-IrkWFz4qvmnFKmtLm8Zg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a4c6bdc5-eb4e-4b6e-95f6-62790e57f3be/0/326131333a656534303a3330303a3a2f34302d3438203d3e20323135393335.roa
Signing time: Tue 23 Jan 2024 05:20:54 +0000
ROA not before: Tue 23 Jan 2024 05:15:54 +0000
ROA not after: Tue 21 Jan 2025 05:20:54 +0000
asID: 215935
IP address blocks: 2a13:ee40:300::/40 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a4c6bdc5-eb4e-4b6e-95f6-62790e57f3be/0/9DA23CC2CF88AE4585CF8AAF9A714A9AD2E6F198.crl
rsync://rsync.paas.rpki.ripe.net/repository/a4c6bdc5-eb4e-4b6e-95f6-62790e57f3be/0/9DA23CC2CF88AE4585CF8AAF9A714A9AD2E6F198.mft
rsync://rpki.ripe.net/repository/DEFAULT/naI8ws-IrkWFz4qvmnFKmtLm8Zg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 26 Apr 2024 14:10:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:82:8d:7f:30:97:68:80:a8:4b:b6:aa:ec:ba:c6:b3:4b:89:23:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9da23cc2cf88ae4585cf8aaf9a714a9ad2e6f198
Validity
Not Before: Jan 23 05:15:54 2024 GMT
Not After : Jan 21 05:20:54 2025 GMT
Subject: CN=FBCA997E2BA960EFBAF2897C14600BC85B5AC567
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:af:99:3e:0c:56:f3:b8:35:3b:02:25:4d:58:
14:28:fe:56:01:9e:3b:29:b4:6e:26:12:78:a7:0c:
d6:d8:6b:49:7f:5b:54:ef:6f:ac:6c:9b:3f:41:55:
13:a6:be:69:b3:19:39:da:38:35:dc:ac:bd:6a:74:
0f:34:51:ea:06:65:41:bf:f0:bc:45:7c:e3:64:2f:
a7:79:99:c7:18:28:0e:67:be:fa:79:8f:6c:22:93:
c5:d7:f3:39:ec:69:91:94:9f:9b:24:04:51:c2:bc:
3d:40:fc:1f:19:6e:fa:f4:f8:f8:3a:02:52:90:5c:
67:f9:ed:82:e9:8e:4f:ca:03:e1:7b:d3:fe:44:4f:
70:d3:87:28:fe:b8:1c:2b:b5:78:d3:f7:92:59:a7:
52:9a:47:b5:f3:8e:70:e5:0c:b5:29:e6:b3:35:21:
5c:3f:04:16:66:6d:fb:5e:56:c5:04:08:85:22:25:
2b:e3:7c:a0:3f:a5:f0:b2:07:05:26:d6:af:1c:fd:
f8:90:51:28:2f:c9:07:72:84:c8:8f:2d:76:68:49:
25:7a:ec:2d:a0:39:ef:92:6d:40:6b:71:37:f6:d1:
47:61:0e:d3:2a:08:0a:d5:64:0a:46:1c:f7:83:57:
92:09:48:96:e7:11:17:aa:f3:58:6a:c2:c1:72:94:
d1:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:CA:99:7E:2B:A9:60:EF:BA:F2:89:7C:14:60:0B:C8:5B:5A:C5:67
X509v3 Authority Key Identifier:
keyid:9D:A2:3C:C2:CF:88:AE:45:85:CF:8A:AF:9A:71:4A:9A:D2:E6:F1:98
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a4c6bdc5-eb4e-4b6e-95f6-62790e57f3be/0/9DA23CC2CF88AE4585CF8AAF9A714A9AD2E6F198.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/naI8ws-IrkWFz4qvmnFKmtLm8Zg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a4c6bdc5-eb4e-4b6e-95f6-62790e57f3be/0/326131333a656534303a3330303a3a2f34302d3438203d3e20323135393335.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:ee40:300::/40
Signature Algorithm: sha256WithRSAEncryption
56:f5:a2:c7:e3:1c:c4:ee:4d:64:bd:fe:5b:63:8c:ed:2f:3d:
38:22:17:b9:a6:c1:87:bc:6d:0d:bb:1f:f7:1d:39:05:04:23:
0c:24:fa:e7:7c:33:0b:43:ca:3e:80:eb:f4:53:0c:d3:b6:0c:
3f:f6:70:91:55:81:2f:f8:9c:4f:d2:e3:80:a2:6b:e8:96:e3:
19:f8:ac:94:58:3f:97:20:d5:aa:78:db:f7:88:5d:98:f5:a9:
dd:19:4f:8a:0e:43:db:bd:fb:22:43:00:0f:8d:49:4c:03:68:
53:64:08:29:b9:21:e9:61:95:19:8c:40:93:0e:59:67:0f:82:
16:81:59:2b:45:c8:d1:02:b7:7b:7f:f3:30:b7:b2:22:0b:ec:
84:b8:64:b5:7a:39:81:67:42:46:cf:95:53:28:ac:f7:73:72:
fa:5f:6a:b9:6f:2a:c3:6a:31:96:d5:4e:49:61:f9:8c:cb:b5:
9b:01:c0:75:2b:36:d5:12:c9:29:6b:03:62:77:27:85:72:10:
54:b6:5e:3b:bc:a5:2e:23:32:cb:58:75:64:79:a6:64:5f:43:
90:68:32:38:20:b4:33:13:ee:4e:df:a0:56:37:46:64:d6:f7:
b4:0e:c4:99:9a:c7:a1:32:dc:2a:88:3f:03:1a:0b:e3:77:4d:
91:25:82:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 20:32:52 2024 by rpki-client on console-ams.rpki-client.org