Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a32353a3a2f34382d3438203d3e203133323133.roa
File: 326131333a393530303a32353a3a2f34382d3438203d3e203133323133.roa (raw, json)
Hash identifier: MTLp4CLO7nLg62KWRxuPOeG5ZTI9yQXZVd2L9wWBX48=
Subject key identifier: BF:CE:5A:C0:77:F3:0E:D8:3C:36:E5:17:43:8F:B2:87:44:11:2C:71
Certificate issuer: /CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Certificate serial: 08E85C8F3B714F6EA649C9F1973716CBB367A0DE
Authority key identifier: E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a32353a3a2f34382d3438203d3e203133323133.roa
Signing time: Thu 30 May 2024 12:39:53 +0000
ROA not before: Thu 30 May 2024 12:34:53 +0000
ROA not after: Thu 29 May 2025 12:39:53 +0000
asID: 13213
IP address blocks: 2a13:9500:25::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.mft
rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:e8:5c:8f:3b:71:4f:6e:a6:49:c9:f1:97:37:16:cb:b3:67:a0:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Validity
Not Before: May 30 12:34:53 2024 GMT
Not After : May 29 12:39:53 2025 GMT
Subject: CN=BFCE5AC077F30ED83C36E517438FB28744112C71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ae:df:5e:55:5a:d2:af:eb:71:9d:d3:c8:fb:
a2:d6:34:5b:88:fe:e3:0d:3f:d4:3c:95:37:3a:7b:
af:35:2e:9f:88:35:f2:00:6e:91:d0:99:3d:0c:50:
fa:53:42:83:3a:4a:e7:27:14:54:48:36:e9:ff:5a:
7e:b3:bc:84:7d:7a:0a:eb:49:cc:84:45:ab:9a:7e:
91:02:81:cb:4e:c1:0e:62:8d:a7:cc:f6:d4:df:e1:
70:a4:89:a5:ad:c5:66:88:8f:49:1d:6b:0c:50:5e:
0c:10:8a:19:bb:05:8d:0b:ad:01:a9:96:a0:85:1d:
e1:13:9e:c6:98:dc:90:02:b9:0b:29:b1:44:a2:79:
49:be:5b:a6:9e:68:08:ff:9d:8c:54:fd:a2:26:eb:
5d:f6:47:86:be:9a:4c:19:65:27:81:8b:7d:0c:4a:
ed:f9:03:23:e9:98:ee:a9:48:a4:cc:69:a0:0e:c7:
d0:aa:a5:31:9f:93:02:f4:ec:b3:ce:db:c2:6f:31:
84:3f:1e:94:c1:4b:c7:4d:4f:66:e7:77:eb:f2:ed:
0c:93:35:79:21:97:71:47:a8:3c:98:f3:de:b9:93:
cf:40:2c:37:a2:07:ab:d9:70:f5:43:20:97:54:e2:
3a:96:99:4a:a0:ea:0e:c7:7d:f3:f1:02:11:22:7e:
f5:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:CE:5A:C0:77:F3:0E:D8:3C:36:E5:17:43:8F:B2:87:44:11:2C:71
X509v3 Authority Key Identifier:
keyid:E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a32353a3a2f34382d3438203d3e203133323133.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:25::/48
Signature Algorithm: sha256WithRSAEncryption
9b:7b:4a:fe:0b:0f:a2:a3:14:a1:5b:d7:bc:0c:ad:05:7a:76:
ff:72:ee:44:8a:91:b1:52:9d:e2:54:0c:38:4a:38:65:38:5d:
9a:2d:7f:6e:c7:7a:0b:86:0f:81:c7:6b:37:6f:a2:82:75:95:
53:7c:f1:aa:d7:e7:a6:1a:01:66:df:0f:56:3e:39:27:fa:8b:
44:4a:0f:a3:c0:7e:2f:eb:59:fc:a3:fe:1b:fa:26:20:7f:ea:
e9:71:56:b6:24:6b:98:6b:2b:2c:2a:4b:ba:a1:b6:2f:8e:36:
bd:9c:49:e4:a4:b7:76:3e:be:48:af:45:f5:b8:7a:a4:61:76:
9f:e4:7b:47:5d:1c:e1:fe:6a:45:b4:9b:52:db:b3:1d:3d:d9:
4f:eb:f7:32:49:ac:a6:d1:db:ec:76:9b:9c:ae:a7:58:44:28:
2b:25:08:06:8f:ca:21:fb:76:98:6b:21:bb:e7:3c:ae:98:eb:
6e:67:98:0b:15:d6:cd:6d:f8:03:e8:6e:33:ce:8c:b5:74:5b:
ed:6c:f8:0a:96:9a:53:60:ec:d9:d1:7b:67:e8:eb:da:c2:fa:
f0:5b:b2:e4:93:0b:f5:d7:44:aa:ea:3c:b9:7b:08:5d:8f:a5:
0d:26:9a:4b:c6:1b:f7:bb:a8:6a:f2:ed:69:3c:84:ef:7f:66:
fd:1a:1b:7a
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri Nov 22 00:59:20 2024 by rpki-client on console-fra.rpki-client.org