Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a31613a3a2f34382d3438203d3e2039303039.roa
File: 326131333a393530303a31613a3a2f34382d3438203d3e2039303039.roa (raw, json)
Hash identifier: 6kInI2tPWVQRBdYg/RiBEk+AygGs7OMm38eg1euA+EY=
Subject key identifier: 0E:BD:62:89:8E:2F:1C:B4:4A:DF:81:BD:51:BB:0D:2D:2C:89:12:78
Certificate issuer: /CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Certificate serial: 351150DB9CB2713F44330C587C179F1E5D586266
Authority key identifier: E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a31613a3a2f34382d3438203d3e2039303039.roa
Signing time: Wed 29 May 2024 09:29:15 +0000
ROA not before: Wed 29 May 2024 09:24:15 +0000
ROA not after: Wed 28 May 2025 09:29:15 +0000
asID: 9009
IP address blocks: 2a13:9500:1a::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.mft
rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:11:50:db:9c:b2:71:3f:44:33:0c:58:7c:17:9f:1e:5d:58:62:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Validity
Not Before: May 29 09:24:15 2024 GMT
Not After : May 28 09:29:15 2025 GMT
Subject: CN=0EBD62898E2F1CB44ADF81BD51BB0D2D2C891278
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:51:74:d7:d6:c4:d3:0b:c5:aa:22:16:ab:45:
72:f8:5e:7a:4f:57:fc:89:3e:ad:e2:8c:96:6f:46:
ea:e5:da:84:ae:ad:22:3c:c2:2b:d4:dd:9d:98:9f:
46:b2:37:a8:e8:4a:3a:47:66:ba:14:33:22:8d:d7:
d3:77:4d:ff:7e:bd:4c:78:80:03:fa:35:27:3c:ae:
e2:63:40:e3:1d:5d:83:05:54:74:4a:35:ce:8b:20:
d1:3b:69:92:94:f2:42:7d:db:63:81:95:30:de:09:
42:98:02:4f:bb:61:f6:7b:2f:cc:32:36:ea:37:63:
ac:68:1b:37:bc:31:1f:8b:44:95:e2:b4:19:18:c3:
42:c8:8b:79:b7:c6:d1:4f:95:70:58:5b:d4:dc:4f:
7f:fc:77:f0:1b:5c:7b:02:e1:7b:2b:0c:6a:7a:bb:
de:bd:55:b7:76:bb:7e:b3:85:97:f7:96:30:8b:b3:
4c:f7:e1:bd:f9:aa:7c:cf:04:8d:eb:6a:92:b4:26:
11:63:ad:7a:75:ce:62:2b:58:30:76:95:ad:57:74:
95:c0:70:4d:ae:dc:6d:32:15:88:16:7a:e5:3f:29:
8e:e4:6b:ac:a4:54:4a:a4:35:b0:ba:4f:30:f1:a5:
ee:e3:e4:cc:1d:06:c5:31:d4:6a:55:49:3c:b0:51:
58:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:BD:62:89:8E:2F:1C:B4:4A:DF:81:BD:51:BB:0D:2D:2C:89:12:78
X509v3 Authority Key Identifier:
keyid:E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a31613a3a2f34382d3438203d3e2039303039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:1a::/48
Signature Algorithm: sha256WithRSAEncryption
12:4e:84:d2:58:a1:52:44:fc:c9:70:b2:22:c4:fb:f6:47:e9:
fd:db:6f:62:ba:e1:05:2b:54:43:c2:d9:b2:0b:40:a0:e2:ca:
17:c1:a4:b0:f3:46:b4:c9:6c:18:c0:30:73:dc:59:54:29:68:
79:b6:c6:ed:b9:c0:69:53:07:04:63:f9:14:6f:e2:48:34:a7:
2b:69:77:e7:4e:9e:f1:75:44:5d:0d:4c:f1:4c:6a:44:16:9c:
12:72:59:44:8a:ec:d3:05:eb:14:e1:7e:f0:d6:37:6e:f9:7e:
62:01:35:3a:a7:f6:ab:97:18:67:09:fd:0e:8b:66:d9:6c:ed:
30:a7:a2:0b:ab:8b:ba:72:37:09:f9:57:3e:57:2d:ff:f4:01:
de:b3:cf:16:e8:bb:a5:9c:6e:60:b3:f6:fe:c3:12:f1:d6:67:
21:30:c4:b0:ee:a7:71:20:f1:38:d4:de:28:d1:bd:b7:6d:92:
84:d4:d4:ad:cf:c1:84:29:10:a3:c8:75:a1:92:49:08:84:60:
7e:e4:a6:e4:bd:1c:80:c2:0b:f0:81:c1:68:1f:69:48:d6:58:
7f:46:0e:8f:e1:6b:d5:bd:39:dc:6a:af:97:3c:e1:85:a5:29:
e3:d0:b3:f9:ec:9f:e3:91:06:1d:b9:60:d7:6e:13:ea:a3:0a:
c4:ff:f2:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 06:13:28 2024 by rpki-client on console-ams.rpki-client.org