Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a32373a3a2f34382d3438203d3e203133323133.roa
File: 326131333a393530303a32373a3a2f34382d3438203d3e203133323133.roa (raw, json)
Hash identifier: MSk0npP+g5OZt3XtVkSehBZvhrgjV/raLlEe7dbojIk=
Subject key identifier: 4F:35:60:FF:36:2E:DA:EA:65:56:72:C2:DF:78:D9:A4:50:BB:11:81
Certificate issuer: /CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Certificate serial: 666B76FED8EE7D53AA164AD254E1F933D3EBBE51
Authority key identifier: E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a32373a3a2f34382d3438203d3e203133323133.roa
Signing time: Thu 30 May 2024 12:39:57 +0000
ROA not before: Thu 30 May 2024 12:34:57 +0000
ROA not after: Thu 29 May 2025 12:39:57 +0000
asID: 13213
IP address blocks: 2a13:9500:27::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.mft
rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:6b:76:fe:d8:ee:7d:53:aa:16:4a:d2:54:e1:f9:33:d3:eb:be:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Validity
Not Before: May 30 12:34:57 2024 GMT
Not After : May 29 12:39:57 2025 GMT
Subject: CN=4F3560FF362EDAEA655672C2DF78D9A450BB1181
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:a4:a4:f0:dd:d2:cf:1a:92:5d:28:76:21:1c:
86:0b:79:2b:3e:59:93:d0:74:d1:15:06:17:83:2e:
57:a4:a1:e3:23:36:d8:79:ce:6e:8f:61:2c:c1:c3:
9b:f7:05:c6:1f:74:dd:ff:8d:8c:40:cc:cd:b1:a8:
2c:da:33:fa:12:1b:9e:db:41:f6:61:1e:57:c7:00:
cd:78:b4:26:6e:b7:00:cc:c2:da:a5:69:48:36:56:
4d:7e:d8:41:a9:de:06:a9:c3:af:bd:46:9a:3d:fd:
ec:1e:6f:26:d6:6d:5e:ad:79:f4:b6:2d:27:5d:f5:
24:4b:d0:e2:9c:ee:8c:93:c2:35:49:03:6e:f4:9b:
52:1c:13:22:5b:f9:39:d8:e5:6e:71:d5:88:5f:72:
41:45:7f:20:46:a5:85:1a:de:88:73:43:25:95:ba:
7d:18:50:b3:7e:7e:ac:8b:93:73:4a:ca:75:25:d6:
08:7f:ab:e5:27:53:60:2e:e2:29:da:3a:2b:5c:0e:
59:c0:cb:1a:bb:e4:e9:2c:24:81:98:a4:00:13:6e:
5e:05:e9:f8:fc:b7:bf:dc:5b:6a:82:ab:de:fa:4e:
86:52:5a:02:12:bb:c0:7c:3c:02:74:eb:21:25:e8:
74:c9:cf:fe:9e:7b:ab:e8:65:4e:09:36:d7:1b:9b:
d2:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:35:60:FF:36:2E:DA:EA:65:56:72:C2:DF:78:D9:A4:50:BB:11:81
X509v3 Authority Key Identifier:
keyid:E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a32373a3a2f34382d3438203d3e203133323133.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:27::/48
Signature Algorithm: sha256WithRSAEncryption
06:07:44:e2:dc:5a:8b:15:99:44:a3:fe:a6:2b:d5:9a:9c:c0:
2f:0c:f7:3b:24:6e:2e:2b:29:aa:78:39:7b:8e:cf:d9:d5:33:
b3:d7:1c:ce:ac:0a:70:72:e9:1d:7c:dc:96:9f:5f:d3:79:12:
9d:4a:2f:4f:1a:2c:70:f1:80:ca:55:51:61:04:1d:11:07:67:
64:66:2d:5e:49:7a:61:0a:4d:db:92:ff:92:4f:29:fd:e8:7e:
ee:68:ae:e8:ec:74:db:82:28:60:28:0b:d0:3c:2a:b3:0c:0d:
64:f9:44:d1:7f:bf:d6:10:74:b5:5e:3a:c3:c6:c1:6b:6e:08:
63:9b:59:4b:5f:b7:fe:a4:25:7d:e5:f3:ca:50:d3:b6:6e:0c:
36:00:18:7c:98:b4:78:ed:e9:15:4f:af:ed:99:b9:08:73:e6:
36:7f:62:56:12:63:6d:fb:51:5e:00:f6:b3:70:9b:8f:57:8c:
9e:19:7f:09:6f:3d:2e:1c:fd:7e:58:be:77:e1:2b:41:16:21:
b0:70:8e:02:2d:1f:1b:5a:4b:6d:b9:b7:d6:71:c5:fa:9f:67:
4e:d0:15:42:80:c3:b8:5b:d4:4d:59:ec:be:75:51:35:7d:6d:
61:28:8b:dc:4b:8a:ed:7e:77:66:9c:bc:f8:d7:05:cf:1f:09:
6f:65:bb:b6
-----BEGIN CERTIFICATE-----
MIIFOjCCBCKgAwIBAgIUZmt2/tjufVOqFkrSVOH5M9PrvlEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZThiMjljZjFiN2U3Yjk0ZjYzNmVkYTc1ZTIyOTk4NzM2
NGE0MGQ0ZDAeFw0yNDA1MzAxMjM0NTdaFw0yNTA1MjkxMjM5NTdaMDMxMTAvBgNV
BAMTKDRGMzU2MEZGMzYyRURBRUE2NTU2NzJDMkRGNzhEOUE0NTBCQjExODEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4pKTw3dLPGpJdKHYhHIYLeSs+
WZPQdNEVBheDLlekoeMjNth5zm6PYSzBw5v3BcYfdN3/jYxAzM2xqCzaM/oSG57b
QfZhHlfHAM14tCZutwDMwtqlaUg2Vk1+2EGp3gapw6+9Rpo9/ewebybWbV6tefS2
LSdd9SRL0OKc7oyTwjVJA270m1IcEyJb+TnY5W5x1YhfckFFfyBGpYUa3ohzQyWV
un0YULN+fqyLk3NKynUl1gh/q+UnU2Au4inaOitcDlnAyxq75OksJIGYpAATbl4F
6fj8t7/cW2qCq976ToZSWgISu8B8PAJ06yEl6HTJz/6ee6voZU4JNtcbm9J5AgMB
AAGjggJEMIICQDAdBgNVHQ4EFgQUTzVg/zYu2uplVnLC33jZpFC7EYEwHwYDVR0j
BBgwFoAU6LKc8bfnuU9jbtp14imYc2SkDU0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvY2M4ZmY3YTktNTRiYi00MmE1LWI1ODQtMWM2Njg0MDYy
ZDhhLzAvRThCMjlDRjFCN0U3Qjk0RjYzNkVEQTc1RTIyOTk4NzM2NEE0MEQ0RC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzZMS2M4YmZudVU5amJ0cDE0aW1ZYzJT
a0RVMC5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvY2M4ZmY3YTkt
NTRiYi00MmE1LWI1ODQtMWM2Njg0MDYyZDhhLzAvMzI2MTMxMzMzYTM5MzUzMDMw
M2EzMjM3M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzMyMzEzMy5yb2EwGAYD
VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw
CQMHACoTlQAAJzANBgkqhkiG9w0BAQsFAAOCAQEABgdE4txaixWZRKP+pivVmpzA
Lwz3OyRuLispqng5e47P2dUzs9cczqwKcHLpHXzclp9f03kSnUovTxoscPGAylVR
YQQdEQdnZGYtXkl6YQpN25L/kk8p/eh+7miu6Ox024IoYCgL0DwqswwNZPlE0X+/
1hB0tV46w8bBa24IY5tZS1+3/qQlfeXzylDTtm4MNgAYfJi0eO3pFU+v7Zm5CHPm
Nn9iVhJjbftRXgD2s3Cbj1eMnhl/CW89Lhz9fli+d+ErQRYhsHCOAi0fG1pLbbm3
1nHF+p9nTtAVQoDDuFvUTVnsvnVRNX1tYSiL3EuK7X53Zpy8+NcFzx8Jb2W7tg==
-----END CERTIFICATE-----
Generated at Fri Nov 22 00:59:20 2024 by rpki-client on console-fra.rpki-client.org