Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a31343a3a2f34382d3438203d3e2039303039.roa
File: 326131333a393530303a31343a3a2f34382d3438203d3e2039303039.roa (raw, json)
Hash identifier: NLvbR/tSpK6JxTY5LVrm55t3NR1KixfYG34MC04E3uY=
Subject key identifier: 5A:2E:17:B9:A5:12:A6:60:1C:A8:FA:D5:65:6C:41:5C:A7:B5:E6:5A
Certificate issuer: /CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Certificate serial: 4E92DF6B1F23105E674E91EE4BD13FF1EF7374E9
Authority key identifier: E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a31343a3a2f34382d3438203d3e2039303039.roa
Signing time: Wed 15 May 2024 12:02:39 +0000
ROA not before: Wed 15 May 2024 11:57:39 +0000
ROA not after: Wed 14 May 2025 12:02:39 +0000
asID: 9009
IP address blocks: 2a13:9500:14::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.mft
rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:92:df:6b:1f:23:10:5e:67:4e:91:ee:4b:d1:3f:f1:ef:73:74:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Validity
Not Before: May 15 11:57:39 2024 GMT
Not After : May 14 12:02:39 2025 GMT
Subject: CN=5A2E17B9A512A6601CA8FAD5656C415CA7B5E65A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:12:9d:cf:f0:b9:e0:2c:87:28:13:73:09:fa:
5e:7c:69:1f:c9:46:65:ea:51:02:a4:2a:50:b1:4d:
2f:d7:6a:37:6a:1d:38:f1:80:bf:9d:25:60:20:1d:
c9:2c:53:bd:1b:4a:cb:a0:0f:97:2b:4e:00:11:ce:
fc:3a:4f:3b:48:3b:12:5c:c5:b2:e0:6a:55:aa:87:
92:c2:a7:74:f0:12:91:05:a1:ed:d8:77:36:f0:b8:
6e:38:fa:1f:ba:5d:20:93:60:b9:ae:46:7e:65:99:
b5:56:83:ea:1a:85:ac:34:b6:06:10:d0:5d:40:93:
62:21:09:a8:5c:d2:65:97:f3:0d:64:e2:9f:1a:4b:
79:04:1a:2d:22:d5:13:a0:39:15:fb:9e:3b:39:9f:
1d:d6:86:cf:13:02:a1:77:42:4d:ac:46:49:da:63:
71:64:f6:35:b9:a8:a8:75:16:90:2a:f3:29:35:fd:
e3:c8:46:d3:4b:24:2f:fd:4a:5e:1f:62:ee:7e:2a:
fd:07:5b:ed:e0:52:22:67:52:f2:31:3f:6d:71:d0:
a3:4e:8a:ac:00:7d:76:41:c3:b9:73:57:73:43:1a:
a1:6b:52:88:a2:c0:ca:f8:1e:ff:b4:64:23:7d:a9:
72:35:18:ed:97:97:62:41:19:db:03:fa:df:3b:2b:
71:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:2E:17:B9:A5:12:A6:60:1C:A8:FA:D5:65:6C:41:5C:A7:B5:E6:5A
X509v3 Authority Key Identifier:
keyid:E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a31343a3a2f34382d3438203d3e2039303039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:14::/48
Signature Algorithm: sha256WithRSAEncryption
78:20:07:04:4d:37:04:f5:52:3c:dc:6c:43:31:ad:18:b2:34:
34:74:30:42:7e:c2:e4:a2:fa:3e:61:50:24:6c:72:a8:d8:34:
70:7a:a7:06:91:0f:e9:4c:8f:6d:df:b5:f1:88:bc:5d:e9:6e:
5a:64:6c:31:11:a4:c1:9e:49:e3:37:0b:6b:c6:10:6c:bf:9a:
84:4f:b4:8e:0e:c0:0c:03:6d:74:9b:df:9b:cb:b2:f1:35:93:
15:b2:b8:c7:a1:55:5f:67:b8:11:ff:8c:3e:30:30:17:d6:8e:
8f:49:e3:21:cb:3b:a0:21:77:48:06:10:e8:31:4e:81:81:6e:
0a:73:2f:27:40:6e:2e:25:e8:7c:c4:90:29:65:f9:35:ee:49:
2b:d0:13:49:a8:13:1f:3f:5a:10:16:ad:2a:90:e2:f2:49:4d:
c1:7a:bf:fd:89:15:93:70:ad:4e:e7:4e:4a:f6:5c:90:43:a0:
a2:80:e0:6b:f0:4c:01:cb:02:66:c8:0f:d4:90:71:eb:0c:4d:
c9:88:e6:e3:3b:57:e6:2e:f2:8e:c2:59:1c:79:f4:1c:9a:05:
3c:ac:dc:05:25:ba:ae:71:af:51:3b:2e:49:b1:c4:46:f4:ac:
38:a7:22:b4:1e:1d:b6:7e:43:07:b0:dc:34:09:b5:e9:d5:55:
f1:0a:e2:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 06:13:28 2024 by rpki-client on console-ams.rpki-client.org