Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a31663a3a2f34382d3438203d3e203239383032.roa
File: 326131333a393530303a31663a3a2f34382d3438203d3e203239383032.roa (raw, json)
Hash identifier: 0YLP+Kee3YIycms7Z529fkX68qdesT3OlDIVM8KbKX8=
Subject key identifier: CC:50:D6:0F:AE:78:1F:A6:39:B4:2F:69:58:36:C4:1F:05:87:0C:30
Certificate issuer: /CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Certificate serial: 53AD369AE2C1E2B3CDCD6B04AF197BBD694EFDA5
Authority key identifier: E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a31663a3a2f34382d3438203d3e203239383032.roa
Signing time: Fri 26 Apr 2024 12:20:20 +0000
ROA not before: Fri 26 Apr 2024 12:15:20 +0000
ROA not after: Fri 25 Apr 2025 12:20:20 +0000
asID: 29802
IP address blocks: 2a13:9500:1f::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.mft
rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 15 Jun 2024 02:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:ad:36:9a:e2:c1:e2:b3:cd:cd:6b:04:af:19:7b:bd:69:4e:fd:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Validity
Not Before: Apr 26 12:15:20 2024 GMT
Not After : Apr 25 12:20:20 2025 GMT
Subject: CN=CC50D60FAE781FA639B42F695836C41F05870C30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:1c:d2:db:33:36:40:63:cb:6c:56:de:ef:a9:
c7:9b:4b:d8:66:38:22:b6:93:99:8b:16:32:0b:ee:
b4:cd:33:66:bb:12:59:28:b4:16:98:4a:16:64:31:
fb:81:f2:c9:6f:64:72:7c:b5:b1:98:a5:f6:91:09:
f4:bb:4b:db:34:58:9d:37:89:6c:be:48:81:a0:f5:
7a:d3:15:bc:40:72:4b:64:30:48:03:62:0a:08:5e:
ae:37:9a:8e:34:ff:fa:5a:db:36:2b:2f:00:1e:f3:
4e:5b:46:6a:0c:70:f8:41:79:e9:89:84:76:ad:0d:
8d:55:de:7f:77:df:39:3f:bc:1e:af:8c:9f:e8:c8:
09:a8:71:56:53:de:5f:10:87:d3:56:25:a1:48:55:
7e:e6:4e:40:b1:9a:a8:a9:9f:82:5b:cd:3e:ec:ab:
b3:7a:78:67:23:79:2c:4b:69:a2:39:7f:7b:2c:77:
16:47:d9:c5:53:4b:92:3b:05:1c:37:0f:f1:f9:c3:
67:9c:8a:e9:14:be:49:22:db:b9:21:25:c4:c9:c7:
11:db:50:08:81:53:b8:7a:f9:bf:48:42:99:ed:36:
72:11:7e:e8:37:78:74:da:a1:e1:b5:2b:3c:1f:b8:
5e:c3:76:51:29:b9:74:e1:58:a2:d9:ba:30:5b:1d:
02:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:50:D6:0F:AE:78:1F:A6:39:B4:2F:69:58:36:C4:1F:05:87:0C:30
X509v3 Authority Key Identifier:
keyid:E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a31663a3a2f34382d3438203d3e203239383032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:1f::/48
Signature Algorithm: sha256WithRSAEncryption
73:a2:5e:aa:23:aa:ec:ec:45:76:48:a8:eb:ca:31:b1:15:9d:
d2:14:f6:b0:09:9f:76:54:dc:ac:0e:c7:39:16:c3:62:ce:7d:
03:ec:31:7e:33:67:d8:f4:e4:c7:55:df:cc:ad:d3:62:02:de:
60:73:b6:ce:9e:99:5a:03:fd:24:00:57:f7:e0:1a:59:f3:b6:
5f:57:de:65:c1:8e:b0:7f:fd:ce:01:0f:e1:ee:65:9b:e7:ec:
58:36:99:13:f3:fe:56:eb:68:bf:00:fa:6b:51:67:91:3b:c9:
d1:86:2f:28:bc:92:ad:3c:f4:e2:87:51:40:6b:8c:09:6a:87:
de:e9:eb:80:ef:c4:db:51:8d:09:02:ae:7e:38:dd:86:12:f1:
df:56:83:b1:1a:0f:ce:bd:16:a3:30:b2:16:5c:31:a1:36:30:
e8:78:24:46:7e:d7:72:ad:b3:c7:19:ab:04:b9:4e:fd:b4:13:
5a:fb:a8:1a:e7:9a:19:41:d6:8b:6b:71:89:a6:60:34:14:85:
3c:df:9f:bf:38:1a:76:7a:e1:4f:46:05:bc:6f:c2:d3:6c:1e:
98:f9:8d:b7:75:93:85:fa:2b:6a:19:27:21:34:46:0d:82:4f:
5d:00:c0:e0:21:9e:34:24:6f:67:4b:97:87:7e:40:fe:72:f5:
0e:39:e6:5b
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri Jun 14 13:58:02 2024 by rpki-client on console-ams.rpki-client.org