Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a31623a3a2f34382d3438203d3e2039303039.roa
File: 326131333a393530303a31623a3a2f34382d3438203d3e2039303039.roa (raw, json)
Hash identifier: PFSHJAt4c5MBoCJoWQZyQMbO/t8PoNZtSHBE5epaIMQ=
Subject key identifier: C4:B7:E2:B3:9A:2D:D8:D2:54:EF:60:8B:5F:78:68:0F:11:9A:B2:0F
Certificate issuer: /CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Certificate serial: 7588160CDF87826CE498717118FF5C60CC0BC3AF
Authority key identifier: E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a31623a3a2f34382d3438203d3e2039303039.roa
Signing time: Wed 29 May 2024 09:29:16 +0000
ROA not before: Wed 29 May 2024 09:24:16 +0000
ROA not after: Wed 28 May 2025 09:29:16 +0000
asID: 9009
IP address blocks: 2a13:9500:1b::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.mft
rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:88:16:0c:df:87:82:6c:e4:98:71:71:18:ff:5c:60:cc:0b:c3:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Validity
Not Before: May 29 09:24:16 2024 GMT
Not After : May 28 09:29:16 2025 GMT
Subject: CN=C4B7E2B39A2DD8D254EF608B5F78680F119AB20F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:95:48:20:cd:35:76:41:14:a1:a4:ee:85:5b:
5d:67:24:b7:87:40:57:a1:81:35:97:c4:d0:fe:6c:
17:b4:a8:ab:86:de:86:3c:9f:82:61:85:97:f1:93:
5f:4e:4e:07:2c:25:3a:9c:bd:d0:7c:e1:f8:9c:9e:
16:24:db:4d:d5:a2:d5:7b:5b:69:8f:b9:d8:89:dd:
29:e2:fe:82:5f:e6:25:fd:dd:a1:68:ae:ce:59:71:
0a:30:52:53:de:31:ff:88:2c:5f:35:48:2d:de:d4:
7c:8d:03:75:a1:61:dd:6f:8a:3d:6b:3c:0e:62:7e:
6d:36:77:e1:30:8e:a2:a8:c8:e5:33:c5:33:06:6b:
b0:76:6c:af:f7:bd:85:ba:35:18:76:99:7a:86:c6:
c0:dd:15:f8:d8:6e:45:cf:21:4a:eb:5a:26:e9:a1:
55:6a:b9:16:57:3f:40:9a:ef:a7:7a:cf:5a:76:91:
b8:f5:19:66:8b:19:8b:a0:dd:25:41:36:58:66:c3:
ed:70:65:14:ed:59:72:c6:44:2e:fe:c6:47:60:85:
1a:13:65:c2:a0:38:5e:36:f0:44:89:e1:64:45:89:
68:eb:67:54:a1:76:d8:82:7c:6b:7f:c6:40:1b:6d:
16:4d:99:57:1f:8a:5b:ec:8c:ae:1b:38:cd:d4:ef:
f8:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:B7:E2:B3:9A:2D:D8:D2:54:EF:60:8B:5F:78:68:0F:11:9A:B2:0F
X509v3 Authority Key Identifier:
keyid:E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a31623a3a2f34382d3438203d3e2039303039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:1b::/48
Signature Algorithm: sha256WithRSAEncryption
1f:3c:29:37:9a:98:ee:2b:9a:f5:34:02:97:91:ad:c1:24:2c:
81:57:af:34:04:cb:6f:9d:cf:5d:aa:92:eb:f2:e6:d5:19:65:
cd:a7:e5:01:e3:6a:4e:0e:c1:b0:c3:82:4a:7e:2d:92:fa:ce:
73:1a:cd:32:f1:82:df:de:0f:8d:d0:a2:9a:cf:3e:74:de:d4:
30:68:69:43:76:72:d4:70:ae:5a:77:29:22:1b:52:82:ff:a8:
cf:97:21:7c:d5:ce:c1:8d:88:86:5e:98:77:d7:3c:fd:7e:57:
ef:06:e5:80:da:61:30:1a:70:48:6b:1c:d0:f5:e9:c9:8b:5e:
f8:c1:99:3b:32:e7:63:69:96:13:0c:61:00:fc:ee:23:55:8d:
b2:5c:f8:31:32:98:cc:9a:03:0d:ce:70:72:fb:ad:3a:f0:40:
1f:a1:7b:2d:cc:f2:2f:40:be:d0:b1:32:8a:0b:3b:1f:07:e4:
c8:0c:61:0e:b7:0e:50:ea:83:1b:18:29:6c:11:2c:dd:c3:5d:
3b:9e:27:c0:63:32:ae:37:a5:68:20:db:73:66:42:7a:ec:d2:
ba:95:42:b1:8e:df:73:18:97:a9:2c:4d:1f:85:6e:e0:51:ed:
88:9c:11:47:e2:d2:fe:a0:8c:7a:1b:ed:ca:18:fe:0d:1c:e0:
14:da:5e:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 06:13:28 2024 by rpki-client on console-ams.rpki-client.org