Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a32363a3a2f34382d3438203d3e203133323133.roa
File: 326131333a393530303a32363a3a2f34382d3438203d3e203133323133.roa (raw, json)
Hash identifier: 750xdOqgMNC57hI1/qvc+sqFNxa5eOZaILXuW8NA9jc=
Subject key identifier: 0C:A4:4A:B3:59:BB:73:A0:E4:2F:76:2D:F7:73:C0:E4:FC:A1:EA:AC
Certificate issuer: /CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Certificate serial: 79DF064233FDA584B4F1E418E9D66E97A7E8759E
Authority key identifier: E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a32363a3a2f34382d3438203d3e203133323133.roa
Signing time: Thu 30 May 2024 12:39:55 +0000
ROA not before: Thu 30 May 2024 12:34:55 +0000
ROA not after: Thu 29 May 2025 12:39:55 +0000
asID: 13213
IP address blocks: 2a13:9500:26::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.mft
rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:df:06:42:33:fd:a5:84:b4:f1:e4:18:e9:d6:6e:97:a7:e8:75:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Validity
Not Before: May 30 12:34:55 2024 GMT
Not After : May 29 12:39:55 2025 GMT
Subject: CN=0CA44AB359BB73A0E42F762DF773C0E4FCA1EAAC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:78:d0:e0:87:e4:96:a9:fc:5e:d9:05:de:d8:
cf:3a:d7:67:5b:bd:66:a4:5d:b0:82:e3:23:10:1c:
eb:d2:5a:21:c0:f5:af:eb:05:5d:a6:77:0c:d1:24:
82:d6:6f:c5:de:34:be:c4:bf:26:d0:02:16:45:b8:
40:df:e6:64:fc:34:73:0c:40:9e:7f:44:49:df:84:
5f:ef:72:ec:33:66:2b:35:ec:ae:8c:cd:97:cb:fa:
27:b3:0b:7b:f7:8e:f3:60:4f:96:d6:b4:bd:fc:7b:
9f:fe:d4:dd:3a:7b:90:cb:25:54:e5:6f:15:15:f7:
f2:dc:46:a2:cf:9d:18:e0:fe:c8:a3:2d:f0:b5:53:
e8:65:9f:61:e1:d7:22:ed:27:67:ad:0d:a8:a9:96:
33:ca:71:88:7f:06:50:46:5c:40:e6:cd:6b:67:f5:
56:6b:54:3f:a8:e0:1b:fe:fb:e5:95:92:3e:ca:40:
22:49:2d:4a:52:16:f3:eb:c3:4f:c6:15:18:09:5a:
36:32:94:9b:d0:7c:c4:6d:b9:8a:4a:be:59:1a:4e:
91:46:48:a2:ff:fc:10:81:7a:4c:c0:57:49:9a:8c:
cb:19:04:74:9f:c7:0e:4f:45:0b:03:f6:5a:e0:15:
dd:98:ed:55:cb:f2:17:d1:6b:e2:f8:d9:dd:ac:01:
1f:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:A4:4A:B3:59:BB:73:A0:E4:2F:76:2D:F7:73:C0:E4:FC:A1:EA:AC
X509v3 Authority Key Identifier:
keyid:E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a32363a3a2f34382d3438203d3e203133323133.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:26::/48
Signature Algorithm: sha256WithRSAEncryption
2c:78:eb:5b:f7:0d:57:91:a2:82:f9:04:fa:ea:c5:f8:c7:e4:
dc:33:66:4a:dd:82:44:b3:e4:3d:ec:05:95:09:f1:4f:dc:ff:
00:f6:59:19:26:34:6d:dc:27:3b:db:d3:16:31:ec:07:ce:82:
0a:e8:0c:b8:2b:57:81:18:29:07:f7:f3:e8:c5:64:61:6e:f8:
c6:02:d4:e6:0e:fa:64:f1:78:c5:c3:4a:55:ef:90:9e:13:f1:
cc:3c:23:fe:ae:a3:b3:3a:30:dd:1c:31:62:86:1f:f2:8d:82:
eb:f4:5a:56:df:1b:d3:ae:40:a5:5c:60:0c:c9:fe:5d:f7:73:
c5:a4:21:21:e9:7f:8c:58:2f:87:5c:82:34:a0:05:42:7c:20:
00:70:16:f4:f9:7c:c8:50:5c:71:1a:b5:b2:43:e6:0f:be:44:
c9:3d:32:92:0f:7c:47:0f:1a:2f:78:bd:e5:a4:73:f6:52:7d:
70:4e:6b:42:4d:18:1b:47:df:f2:9d:ce:88:43:66:57:1a:93:
12:b5:d7:af:c9:c6:b8:11:68:30:4a:6a:4d:2a:74:16:12:6b:
81:8c:7a:2b:25:76:1a:89:2e:89:13:c3:39:36:70:41:46:30:
2f:36:6e:8c:2c:e7:60:8f:6d:22:b8:3b:32:22:67:ca:79:0f:
28:fc:83:b1
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri Nov 22 00:59:20 2024 by rpki-client on console-fra.rpki-client.org