Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a4c6bdc5-eb4e-4b6e-95f6-62790e57f3be/0/326131333a656534363a3a2f33322d3332203d3e203537353635.roa
File: 326131333a656534363a3a2f33322d3332203d3e203537353635.roa (raw, json)
Hash identifier: a+/Ru8grEdS4sqWE1uuVv37ol5ge6JOIJW2FiUegGBY=
Subject key identifier: FD:96:FB:3D:32:CD:04:B1:98:D6:37:02:4F:E7:DE:B7:DA:8C:C6:4D
Certificate issuer: /CN=9da23cc2cf88ae4585cf8aaf9a714a9ad2e6f198
Certificate serial: 57411782D955A832D2B4F26F124A5B3E87206E2E
Authority key identifier: 9D:A2:3C:C2:CF:88:AE:45:85:CF:8A:AF:9A:71:4A:9A:D2:E6:F1:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/naI8ws-IrkWFz4qvmnFKmtLm8Zg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a4c6bdc5-eb4e-4b6e-95f6-62790e57f3be/0/326131333a656534363a3a2f33322d3332203d3e203537353635.roa
Signing time: Mon 20 Nov 2023 10:09:55 +0000
ROA not before: Mon 20 Nov 2023 10:04:55 +0000
ROA not after: Mon 18 Nov 2024 10:09:55 +0000
asID: 57565
IP address blocks: 2a13:ee46::/32 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a4c6bdc5-eb4e-4b6e-95f6-62790e57f3be/0/9DA23CC2CF88AE4585CF8AAF9A714A9AD2E6F198.crl
rsync://rsync.paas.rpki.ripe.net/repository/a4c6bdc5-eb4e-4b6e-95f6-62790e57f3be/0/9DA23CC2CF88AE4585CF8AAF9A714A9AD2E6F198.mft
rsync://rpki.ripe.net/repository/DEFAULT/naI8ws-IrkWFz4qvmnFKmtLm8Zg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 26 Apr 2024 14:10:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:41:17:82:d9:55:a8:32:d2:b4:f2:6f:12:4a:5b:3e:87:20:6e:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9da23cc2cf88ae4585cf8aaf9a714a9ad2e6f198
Validity
Not Before: Nov 20 10:04:55 2023 GMT
Not After : Nov 18 10:09:55 2024 GMT
Subject: CN=FD96FB3D32CD04B198D637024FE7DEB7DA8CC64D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:2f:1e:da:3c:68:e6:e9:0d:12:7a:af:03:a9:
db:50:b8:6f:6a:cd:bf:1d:a0:24:57:f4:84:89:29:
dc:c7:4d:05:0f:60:49:5d:8b:54:e0:24:38:26:7f:
49:99:78:d3:60:48:32:72:4b:2c:f3:90:ef:2e:06:
02:57:c0:35:5f:23:14:d9:60:e3:8e:8a:ab:13:5b:
12:7b:88:78:8a:34:94:3e:62:34:ac:cd:95:f2:90:
81:3f:55:b3:a2:5e:1c:36:08:3e:a7:5d:52:59:51:
6d:cd:ac:de:7e:5b:2a:cc:03:b8:e1:57:43:fe:86:
a6:2c:89:97:2e:2f:35:48:4d:fd:3c:21:13:1f:b9:
6b:ad:42:04:94:68:c1:e4:ed:83:fa:42:b9:09:c5:
83:bd:8c:0b:67:59:f8:8d:fb:8b:c3:db:a9:74:2b:
19:0b:80:e2:47:24:7b:43:52:53:e0:9f:aa:fc:84:
51:d4:0d:7c:58:6d:1c:ac:ba:11:e2:c0:f5:73:91:
fb:b2:26:7d:76:b2:9f:d4:b1:5c:ab:81:57:6c:61:
e1:4a:3f:4f:6d:2b:da:55:dc:5d:46:94:26:d4:de:
20:26:33:82:44:ae:2e:cc:97:ed:87:44:21:c7:63:
fa:06:e9:44:2e:b6:4d:1d:11:3a:d4:29:2b:05:8b:
77:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:96:FB:3D:32:CD:04:B1:98:D6:37:02:4F:E7:DE:B7:DA:8C:C6:4D
X509v3 Authority Key Identifier:
keyid:9D:A2:3C:C2:CF:88:AE:45:85:CF:8A:AF:9A:71:4A:9A:D2:E6:F1:98
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a4c6bdc5-eb4e-4b6e-95f6-62790e57f3be/0/9DA23CC2CF88AE4585CF8AAF9A714A9AD2E6F198.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/naI8ws-IrkWFz4qvmnFKmtLm8Zg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a4c6bdc5-eb4e-4b6e-95f6-62790e57f3be/0/326131333a656534363a3a2f33322d3332203d3e203537353635.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:ee46::/32
Signature Algorithm: sha256WithRSAEncryption
9d:f7:a7:74:b9:6d:0d:6b:87:4e:f6:ea:30:fc:54:42:0d:3f:
e2:3b:f7:ad:10:40:a1:65:df:54:01:3b:e4:8d:90:2f:77:5a:
ce:63:e6:85:68:3d:20:c0:b4:41:05:28:6c:b0:aa:f2:28:22:
18:8d:e2:a7:97:97:7f:bf:e1:52:33:b6:5e:38:b8:d1:b7:2d:
94:bd:f3:a8:2f:a9:81:90:fd:ef:66:40:21:62:85:60:92:10:
ae:c2:ce:08:b1:7d:3c:5d:d5:c3:d4:3e:17:c9:6d:18:3f:b4:
53:8f:61:e8:60:47:d5:37:eb:7b:42:46:94:1a:f4:52:79:33:
23:89:d8:99:e0:de:6a:06:3e:ae:e3:27:67:49:ab:54:42:bb:
5b:fd:51:fb:a7:71:9d:e7:16:7e:98:35:65:8f:45:64:82:8b:
10:27:4a:fd:b6:d8:c2:8e:94:da:ef:13:0b:55:e1:76:59:f0:
83:a2:9e:81:6e:5e:90:a9:2c:e4:82:26:5a:ac:de:d2:d9:47:
3a:6e:1b:03:ce:6c:b9:8f:6d:61:19:b6:4e:a7:b5:80:2e:3b:
80:f2:97:05:bd:dd:b9:6e:41:6b:39:35:32:9a:88:c6:06:89:
a1:06:c9:12:0c:c5:59:bd:c4:20:7a:56:12:06:84:bd:c5:f2:
72:07:db:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 20:32:52 2024 by rpki-client on console-ams.rpki-client.org