Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a31393a3a2f34382d3438203d3e2039303039.roa
File: 326131333a393530303a31393a3a2f34382d3438203d3e2039303039.roa (raw, json)
Hash identifier: 8NrK3czSMMkyrlmhU49y1h2EHPZeNz/H54D6wUNZmG8=
Subject key identifier: 76:35:76:DB:3C:D7:2D:3E:2D:B9:FC:7B:6E:AB:DD:7A:AE:08:B4:4D
Certificate issuer: /CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Certificate serial: 5112801012135669F77B156590211C7CB6F95ABE
Authority key identifier: E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a31393a3a2f34382d3438203d3e2039303039.roa
Signing time: Wed 29 May 2024 09:29:15 +0000
ROA not before: Wed 29 May 2024 09:24:15 +0000
ROA not after: Wed 28 May 2025 09:29:15 +0000
asID: 9009
IP address blocks: 2a13:9500:19::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.mft
rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:12:80:10:12:13:56:69:f7:7b:15:65:90:21:1c:7c:b6:f9:5a:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Validity
Not Before: May 29 09:24:15 2024 GMT
Not After : May 28 09:29:15 2025 GMT
Subject: CN=763576DB3CD72D3E2DB9FC7B6EABDD7AAE08B44D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:72:e7:80:2b:5d:e6:d7:a3:2d:04:35:34:65:
35:ba:b0:57:64:f9:e8:52:74:cd:87:0a:fe:a3:b7:
69:d3:14:94:59:55:19:3f:9b:00:51:62:61:e1:94:
99:0a:93:c5:7b:f6:6c:24:d2:7f:6c:5a:6a:f1:e4:
8c:e9:c4:e9:b3:8e:9c:7b:ca:da:61:56:70:df:58:
7d:9f:a4:45:62:bc:45:f2:a4:5c:6b:c3:3d:19:6f:
8f:1c:f3:de:3d:c4:9e:ed:52:16:f2:45:cc:cd:81:
68:67:28:f4:8a:94:ac:81:e5:5b:f7:db:90:13:82:
98:0f:95:63:c7:88:69:7b:9e:db:e1:12:04:a1:c9:
36:2c:d4:cd:df:95:be:76:62:ab:22:63:f5:e7:00:
50:14:a0:db:04:e0:b0:75:e5:00:12:c6:9c:3e:bb:
38:50:27:cc:8d:cf:ca:8e:86:da:4a:5e:f8:e3:4e:
6e:9e:8d:93:c9:a8:dd:89:06:b1:4b:3b:83:d5:cd:
71:67:80:b1:e4:ce:53:b0:d7:67:ef:9b:16:46:2f:
ac:8a:6f:3b:15:23:a6:b0:56:8e:70:50:c2:c3:45:
a3:f0:5f:44:0c:0d:89:a1:48:5f:17:f3:42:b6:1a:
a5:98:a4:b6:53:f8:51:fe:48:ed:89:2c:35:18:4a:
c6:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:35:76:DB:3C:D7:2D:3E:2D:B9:FC:7B:6E:AB:DD:7A:AE:08:B4:4D
X509v3 Authority Key Identifier:
keyid:E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a31393a3a2f34382d3438203d3e2039303039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:19::/48
Signature Algorithm: sha256WithRSAEncryption
12:3f:93:fc:bf:76:cf:a1:e9:9a:84:e1:a7:2e:7f:cd:59:12:
84:19:6b:d9:ca:21:df:0c:39:5f:b0:0f:f1:48:2c:33:b1:58:
21:3b:39:86:54:3c:d1:c4:89:a0:ac:04:50:a1:77:fa:ce:52:
02:a3:1a:3c:31:42:26:72:af:11:e4:7a:16:f6:d0:59:7d:e8:
54:0f:0c:83:98:05:b2:73:39:e9:00:11:6d:c1:bf:d1:ba:64:
b9:dc:4f:d7:27:8d:39:ec:70:29:dc:3c:5d:70:8a:23:6e:cd:
f4:a7:ac:e9:e8:53:01:72:fd:d2:34:bc:7f:2f:73:fa:12:7e:
a6:0e:72:23:b7:db:bb:08:fe:a9:4d:5b:43:cc:b3:25:a5:62:
8b:75:a2:f6:13:60:66:c7:9b:cb:53:24:bd:ca:fa:69:94:d6:
ca:4f:85:b6:04:a9:a2:d8:bc:2a:72:66:03:5a:72:a1:87:57:
36:52:99:16:dc:d6:56:b8:ab:75:01:95:72:de:91:4f:e0:df:
91:e4:9e:c5:34:ce:b9:b9:ca:21:58:ef:bc:00:48:36:3c:85:
1f:7e:6b:60:d1:2f:65:87:23:bf:56:07:64:78:7c:ac:b9:53:
01:c4:a5:97:18:6a:c3:49:23:75:de:39:79:82:01:f0:8c:37:
bf:8b:96:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 06:13:28 2024 by rpki-client on console-ams.rpki-client.org