Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a31363a3a2f34382d3438203d3e2039303039.roa
File: 326131333a393530303a31363a3a2f34382d3438203d3e2039303039.roa (raw, json)
Hash identifier: ds6nbNMs1pJAtbJUvA6J2tQAV7A90tVNN9u8Qf1WBdQ=
Subject key identifier: 59:69:DF:34:44:4A:A0:10:54:76:7C:4C:0C:84:B7:78:DC:2C:F5:70
Certificate issuer: /CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Certificate serial: 586579B53CC85CEAE0405849856A86D9BD4DD58F
Authority key identifier: E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a31363a3a2f34382d3438203d3e2039303039.roa
Signing time: Wed 29 May 2024 09:29:13 +0000
ROA not before: Wed 29 May 2024 09:24:13 +0000
ROA not after: Wed 28 May 2025 09:29:13 +0000
asID: 9009
IP address blocks: 2a13:9500:16::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.mft
rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:65:79:b5:3c:c8:5c:ea:e0:40:58:49:85:6a:86:d9:bd:4d:d5:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Validity
Not Before: May 29 09:24:13 2024 GMT
Not After : May 28 09:29:13 2025 GMT
Subject: CN=5969DF34444AA01054767C4C0C84B778DC2CF570
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:f4:69:22:3a:79:5c:b8:14:d5:67:61:68:f5:
bb:2a:27:2b:7f:fa:94:5e:99:64:c6:ac:ac:39:3c:
dc:de:8e:d8:78:27:cb:9d:3d:0f:a9:0d:8f:50:57:
dc:c3:fc:a2:32:a6:70:02:fb:bf:b2:e0:46:6c:56:
47:ee:6f:5b:d4:7a:c5:27:36:de:92:11:87:c8:e3:
03:bc:ac:4c:e3:d5:2a:25:d4:2e:ee:f6:42:f5:f2:
3a:73:df:eb:7d:55:e8:26:e4:38:d0:a7:29:28:7f:
42:80:3c:9a:c9:84:61:6e:5b:34:83:9b:1c:55:ed:
7e:4b:69:72:de:3d:8e:73:03:60:ba:19:b7:f6:3e:
70:a9:81:ca:f8:00:97:c1:e9:0d:5c:14:4c:0d:be:
f9:58:31:58:e8:1b:ec:d2:c6:bb:b7:5e:3e:eb:a9:
79:ee:a6:88:47:33:3c:f7:d5:2a:c5:68:8b:59:5b:
18:38:ca:48:d8:a8:7b:10:37:3f:01:95:73:5a:9c:
a1:a7:23:3f:2b:b2:e6:87:e6:4d:5d:bd:f3:8a:c6:
c8:f2:0f:05:a3:60:31:5a:17:46:ce:f9:94:cc:ea:
e5:65:ac:0e:ce:a9:57:5d:02:b6:60:1b:af:a7:f2:
f6:89:fe:98:59:6a:30:11:f0:a4:40:d0:44:88:36:
0e:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:69:DF:34:44:4A:A0:10:54:76:7C:4C:0C:84:B7:78:DC:2C:F5:70
X509v3 Authority Key Identifier:
keyid:E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a31363a3a2f34382d3438203d3e2039303039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:16::/48
Signature Algorithm: sha256WithRSAEncryption
10:36:aa:fe:bf:c8:ab:e6:e4:83:49:e0:8e:a1:d4:48:fd:c2:
77:45:52:3e:c4:74:c3:02:5e:15:15:d3:37:05:a6:ba:77:4d:
b8:19:2e:2a:72:29:4a:b5:42:9c:86:7f:74:1b:c0:27:d2:1b:
18:fe:df:94:5d:0c:21:de:13:bf:36:51:ad:59:5c:e7:d8:69:
d9:ff:95:dd:d0:e4:d2:f9:b1:ad:50:c7:92:72:81:9d:a0:b7:
c3:42:a4:36:5d:88:b7:4b:46:d9:bc:ab:30:a5:06:9c:d7:a9:
79:9f:e0:cf:0a:10:77:7b:77:16:7e:e8:ff:0d:cb:6e:0f:cd:
92:8d:1f:fb:f8:e6:af:24:72:5c:dc:15:57:80:4a:61:c5:d1:
1e:f8:4a:56:de:44:f6:72:93:85:7c:bf:fc:dc:51:18:2a:35:
e6:cb:ef:ef:bc:23:59:a6:16:b5:e6:f4:b8:fa:58:28:2c:43:
9e:d0:49:7a:a6:a6:94:73:ae:1a:07:80:e8:f6:08:6d:06:c3:
28:87:84:3c:8b:c0:1f:2d:f5:66:c3:82:49:5b:7d:ff:d2:5b:
3d:4b:16:78:fc:02:5a:87:69:8f:c4:d4:c1:97:1e:31:d1:36:
d1:a2:36:77:5d:69:00:0f:46:fa:ce:7a:34:b5:6d:4b:3b:df:
58:a1:3b:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 00:59:20 2024 by rpki-client on console-fra.rpki-client.org