Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a4c6bdc5-eb4e-4b6e-95f6-62790e57f3be/0/326131333a656534303a3430303a3a2f34302d3438203d3e20313939313038.roa
File: 326131333a656534303a3430303a3a2f34302d3438203d3e20313939313038.roa (raw, json)
Hash identifier: HUtB1GUiy0M5xUc0pDXuCra+E8/ieAS+dZF4+T7DUhk=
Subject key identifier: 3B:D1:19:51:84:2A:0B:55:13:4C:68:BF:75:7F:83:06:E9:BC:D4:9E
Certificate issuer: /CN=9da23cc2cf88ae4585cf8aaf9a714a9ad2e6f198
Certificate serial: 45158E57D331D8A489071140FBA14F18924F307C
Authority key identifier: 9D:A2:3C:C2:CF:88:AE:45:85:CF:8A:AF:9A:71:4A:9A:D2:E6:F1:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/naI8ws-IrkWFz4qvmnFKmtLm8Zg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a4c6bdc5-eb4e-4b6e-95f6-62790e57f3be/0/326131333a656534303a3430303a3a2f34302d3438203d3e20313939313038.roa
Signing time: Tue 23 Jan 2024 05:21:13 +0000
ROA not before: Tue 23 Jan 2024 05:16:13 +0000
ROA not after: Tue 21 Jan 2025 05:21:13 +0000
asID: 199108
IP address blocks: 2a13:ee40:400::/40 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a4c6bdc5-eb4e-4b6e-95f6-62790e57f3be/0/9DA23CC2CF88AE4585CF8AAF9A714A9AD2E6F198.crl
rsync://rsync.paas.rpki.ripe.net/repository/a4c6bdc5-eb4e-4b6e-95f6-62790e57f3be/0/9DA23CC2CF88AE4585CF8AAF9A714A9AD2E6F198.mft
rsync://rpki.ripe.net/repository/DEFAULT/naI8ws-IrkWFz4qvmnFKmtLm8Zg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 26 Apr 2024 14:10:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:15:8e:57:d3:31:d8:a4:89:07:11:40:fb:a1:4f:18:92:4f:30:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9da23cc2cf88ae4585cf8aaf9a714a9ad2e6f198
Validity
Not Before: Jan 23 05:16:13 2024 GMT
Not After : Jan 21 05:21:13 2025 GMT
Subject: CN=3BD11951842A0B55134C68BF757F8306E9BCD49E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:5b:29:11:a7:aa:ca:48:7c:00:73:a8:54:c2:
62:86:3e:9e:7d:e3:fc:a0:68:4b:28:52:34:16:6a:
73:90:58:4b:0c:91:7a:6a:2a:d2:21:18:c6:af:ce:
88:90:23:f8:8a:1f:83:dd:c3:07:4e:ba:59:4e:b8:
99:fd:b2:40:9d:81:3a:37:69:fd:bb:97:40:a6:71:
e3:0a:1e:50:90:b7:35:bd:4f:be:a2:49:c3:5a:eb:
c0:1d:d1:bc:5f:ad:22:2e:46:75:fa:25:3a:80:15:
84:ce:49:a9:65:1f:1d:57:8a:bf:55:22:65:9f:93:
61:01:52:ba:0d:cb:be:00:4a:11:c0:f2:d1:82:e6:
47:e4:40:8e:ce:73:5b:a1:03:4c:82:34:86:15:1f:
3f:4d:d0:97:c5:9f:9c:65:d0:cc:11:9c:9e:eb:7a:
a8:76:90:21:be:ae:dc:5c:85:a2:2b:51:d8:9d:b1:
85:ec:b6:c7:ba:49:5d:cf:0d:d0:52:c2:84:42:70:
19:52:59:bc:c0:1b:f1:f7:b0:9a:64:3c:0f:b1:a0:
bb:8b:8a:a8:56:27:15:82:d4:68:c0:84:f2:c8:5d:
90:60:df:9f:5c:19:75:ee:b0:e9:6c:20:c9:18:57:
dd:42:d8:7c:a9:4a:36:45:56:5d:41:ef:0a:52:68:
71:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:D1:19:51:84:2A:0B:55:13:4C:68:BF:75:7F:83:06:E9:BC:D4:9E
X509v3 Authority Key Identifier:
keyid:9D:A2:3C:C2:CF:88:AE:45:85:CF:8A:AF:9A:71:4A:9A:D2:E6:F1:98
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a4c6bdc5-eb4e-4b6e-95f6-62790e57f3be/0/9DA23CC2CF88AE4585CF8AAF9A714A9AD2E6F198.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/naI8ws-IrkWFz4qvmnFKmtLm8Zg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a4c6bdc5-eb4e-4b6e-95f6-62790e57f3be/0/326131333a656534303a3430303a3a2f34302d3438203d3e20313939313038.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:ee40:400::/40
Signature Algorithm: sha256WithRSAEncryption
ab:4a:f9:01:96:8e:9a:6a:45:98:dd:a3:cb:2e:a6:8b:4f:44:
e8:08:22:13:08:f7:12:b8:74:58:46:7e:1c:f9:3b:14:0e:a3:
0b:5e:a7:81:33:3c:66:66:73:58:b0:f6:50:53:a1:88:86:89:
2d:29:db:0d:7e:a8:25:52:77:50:f8:e0:3b:c8:37:e5:2c:b8:
64:e7:68:6a:f7:73:dd:5a:79:b0:74:67:28:cd:fd:25:89:16:
7f:8f:01:ed:03:f9:d1:96:48:59:f1:ce:3d:aa:dc:c3:c2:4d:
3c:4c:5e:5c:01:3d:fa:a2:be:62:92:ed:1d:a6:e0:83:7d:de:
06:e1:49:d8:d5:22:76:7c:73:3d:56:14:7c:c9:f5:63:fa:53:
18:e9:cf:76:6f:7e:e9:44:4a:94:e0:a6:82:c5:15:bf:dd:d6:
92:ba:54:91:99:db:cb:2e:7e:ad:53:94:f7:e9:7e:7d:8d:e6:
06:a3:65:4c:2a:f4:3e:38:7d:20:2f:04:4a:cb:59:08:0c:9d:
bf:e0:b2:e2:9a:43:35:e0:7d:11:05:89:be:e3:6a:1d:c3:a1:
8d:a8:f8:98:90:7f:09:76:96:38:10:1e:6a:ec:5e:04:eb:f6:
96:04:ba:ac:26:a3:da:d4:23:5f:dc:03:f9:ed:e5:73:9e:aa:
20:93:cb:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 20:32:52 2024 by rpki-client on console-ams.rpki-client.org