Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a31353a3a2f34382d3438203d3e2039303039.roa
File: 326131333a393530303a31353a3a2f34382d3438203d3e2039303039.roa (raw, json)
Hash identifier: I3UnT7ri91+JiJHr+op1xHpGm5XbVdp5JR33OAWdtKE=
Subject key identifier: 4A:FB:38:07:29:D2:36:F5:10:51:DC:BF:08:5B:7A:21:1E:A6:AF:1D
Certificate issuer: /CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Certificate serial: 5B9EFFE447164665C432501E05B176A0A54D011B
Authority key identifier: E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a31353a3a2f34382d3438203d3e2039303039.roa
Signing time: Wed 15 May 2024 12:02:41 +0000
ROA not before: Wed 15 May 2024 11:57:41 +0000
ROA not after: Wed 14 May 2025 12:02:41 +0000
asID: 9009
IP address blocks: 2a13:9500:15::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.mft
rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:9e:ff:e4:47:16:46:65:c4:32:50:1e:05:b1:76:a0:a5:4d:01:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Validity
Not Before: May 15 11:57:41 2024 GMT
Not After : May 14 12:02:41 2025 GMT
Subject: CN=4AFB380729D236F51051DCBF085B7A211EA6AF1D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c3:c8:b7:10:01:0f:79:1e:54:94:37:80:44:
3b:9d:5a:98:45:4b:a1:20:2c:20:b1:19:e9:ed:22:
30:38:8b:8e:ad:93:1a:62:16:e1:fe:55:6c:d0:11:
db:70:77:20:32:27:c2:e2:d1:10:f1:e8:c6:9f:c7:
29:d4:70:f5:50:a8:58:43:e6:de:4f:e7:3c:1e:d9:
8b:2f:8f:ab:14:28:0f:45:54:4f:0a:8d:32:8a:c2:
58:1f:75:a7:05:e1:43:4e:21:8c:1a:c7:44:c8:52:
ee:86:51:2f:59:0d:08:34:55:b6:d8:55:eb:b6:b1:
90:61:88:78:a2:1c:b7:ca:ae:2c:c6:bc:74:c2:38:
cd:3b:0a:f1:db:ac:b4:ec:b9:40:82:f5:2b:d1:5e:
ee:bf:6a:12:d7:4c:d4:27:ef:bf:da:a7:ee:01:43:
cd:c7:f8:5c:ee:53:07:c7:a8:17:f9:68:6d:0c:f8:
5d:c3:f2:33:3d:a4:40:fd:a7:58:d5:7b:ac:5d:fd:
e5:c4:0f:34:36:b5:24:eb:7c:2d:3b:8f:91:87:ec:
c1:13:ae:da:e5:bd:32:00:00:67:4f:1e:65:b8:09:
ec:7f:80:61:3f:1e:22:09:ff:4e:e4:6c:d2:eb:76:
85:22:d7:0f:12:94:81:3c:91:36:ec:43:16:ca:c0:
b3:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:FB:38:07:29:D2:36:F5:10:51:DC:BF:08:5B:7A:21:1E:A6:AF:1D
X509v3 Authority Key Identifier:
keyid:E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a31353a3a2f34382d3438203d3e2039303039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:15::/48
Signature Algorithm: sha256WithRSAEncryption
5b:fa:60:f8:7f:e1:d3:a5:d5:0b:c5:be:7b:0c:80:22:65:39:
ce:e7:27:b2:85:24:64:e7:ae:0e:ea:3c:21:ed:23:03:21:eb:
20:1c:78:26:b9:15:76:80:2f:66:6e:fa:a2:67:6b:e4:30:fd:
02:2a:45:2b:88:2d:c2:ac:fc:de:c0:dd:93:31:9c:a8:2b:32:
3c:34:78:82:92:20:6c:91:bb:1b:d0:e2:48:7b:68:64:57:e5:
4b:77:b2:a7:47:d0:7b:7d:dd:80:83:3b:87:bf:7c:0a:39:e2:
ad:a6:ff:a9:d4:0b:2e:2c:3e:bc:84:c9:21:2f:6c:77:7e:e6:
92:4d:d1:1c:d5:db:b0:35:fd:d8:b3:9e:b6:63:8f:94:31:b8:
00:0b:51:c5:07:f7:85:02:2b:65:0e:13:08:d4:7a:f9:bf:dd:
ca:05:d3:7c:22:33:db:c3:af:ea:7e:72:dd:50:df:6b:c7:f6:
13:f8:f3:c2:79:d4:20:0d:f9:bf:c2:74:2a:22:1d:50:1e:1a:
ba:4b:12:6e:ac:7e:09:5c:b7:be:9a:c8:54:6d:b1:a9:7b:e7:
7e:07:17:c2:09:b6:e6:7c:e6:e8:b3:06:55:0e:78:4f:00:3b:
57:83:6d:cc:7c:0d:8a:5b:f0:39:61:94:b0:2d:9f:8a:76:c1:
fa:c4:eb:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 00:59:20 2024 by rpki-client on console-fra.rpki-client.org