Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a32393a3a2f34382d3438203d3e2039303039.roa
File: 326131333a393530303a32393a3a2f34382d3438203d3e2039303039.roa (raw, json)
Hash identifier: 56DxXuZ0LlrCUlCksC8Ldkmvs1m9ML98jn7u13fmJTA=
Subject key identifier: 9D:DC:C8:C8:D5:BD:30:6C:EA:C9:87:B9:C4:9E:21:72:A8:52:F4:CD
Certificate issuer: /CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Certificate serial: 5B7661D1460251482BDA2C3AF326A8D8261B6A8A
Authority key identifier: E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a32393a3a2f34382d3438203d3e2039303039.roa
Signing time: Thu 30 May 2024 12:40:01 +0000
ROA not before: Thu 30 May 2024 12:35:01 +0000
ROA not after: Thu 29 May 2025 12:40:01 +0000
asID: 9009
IP address blocks: 2a13:9500:29::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.mft
rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:76:61:d1:46:02:51:48:2b:da:2c:3a:f3:26:a8:d8:26:1b:6a:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Validity
Not Before: May 30 12:35:01 2024 GMT
Not After : May 29 12:40:01 2025 GMT
Subject: CN=9DDCC8C8D5BD306CEAC987B9C49E2172A852F4CD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:40:1b:73:c2:2b:a4:c5:27:d7:53:4f:b4:e1:
7f:a8:3b:81:37:9a:60:be:0b:36:70:d0:18:ba:60:
89:be:65:55:40:85:b9:30:fa:d2:6a:3d:a6:26:c7:
9b:8e:e8:96:90:79:ac:e1:61:55:60:57:02:9d:cd:
07:eb:82:a5:eb:04:16:66:cd:cb:91:b3:98:c2:56:
59:39:8e:da:c7:29:a5:86:af:23:97:84:aa:6d:62:
72:af:98:43:5a:6b:e1:67:fa:52:1d:1e:9e:05:22:
9e:ae:61:ef:67:7b:fd:d9:13:06:ef:a2:d3:44:44:
ff:89:e4:86:9d:61:6d:62:56:7e:74:64:dc:88:d9:
90:e1:b4:4b:45:a5:59:5a:aa:44:2d:4a:f9:40:63:
bf:36:c6:9c:c6:80:be:03:04:06:48:6f:ec:f3:8d:
bc:73:20:48:e4:1b:02:a4:92:06:38:c9:8d:1c:90:
8e:da:22:85:87:00:c6:67:02:76:36:55:d9:c1:5c:
af:80:39:57:fc:f6:f4:50:b5:b6:ca:6f:c2:5f:d3:
f1:19:f6:b4:18:86:11:af:4b:8b:6c:47:68:c7:d5:
ae:d7:21:fe:aa:15:af:82:d7:24:74:ed:8a:96:e5:
a8:4b:a4:98:e6:91:e6:9a:8e:41:a8:d8:62:60:b5:
c9:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:DC:C8:C8:D5:BD:30:6C:EA:C9:87:B9:C4:9E:21:72:A8:52:F4:CD
X509v3 Authority Key Identifier:
keyid:E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a32393a3a2f34382d3438203d3e2039303039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:29::/48
Signature Algorithm: sha256WithRSAEncryption
3d:9d:ce:33:bc:f2:9c:7e:ce:e0:17:84:da:05:56:a6:6d:91:
94:d9:95:9a:aa:a5:4b:d8:a3:2a:c5:d9:3a:59:16:8b:15:5e:
c7:45:ed:e2:9b:73:71:3b:07:6d:c1:0b:11:01:c5:14:ed:47:
d8:0f:6c:26:f5:9e:25:cc:68:bd:bc:33:01:76:00:c9:4e:6e:
9b:97:d3:18:da:70:22:59:6b:e0:5d:30:5c:2b:34:a2:56:40:
5d:f9:66:de:8b:bb:4f:21:cf:06:8f:eb:2e:f7:0a:f2:70:f4:
1c:86:36:29:63:15:ad:40:6b:fa:57:6a:2d:52:12:40:e8:ca:
2d:f1:9f:8d:23:4a:73:a9:2b:e7:98:0e:ac:ce:c7:bf:87:29:
09:f1:75:a4:b9:e5:a6:1a:d5:54:6d:3b:05:7e:8e:dc:74:0e:
22:fd:27:c8:ac:44:11:2c:90:6f:ae:a6:bf:61:d8:de:e8:1e:
a9:14:62:32:d6:94:63:fb:80:b3:c9:14:4c:74:3b:e4:70:fb:
62:9f:dd:ce:7e:87:92:fa:53:8b:a2:78:25:cc:c2:55:92:0a:
f3:53:ba:b5:7b:ea:7a:5c:ec:89:c7:8d:1f:3e:e2:95:74:58:
5b:04:5c:2a:d9:5c:06:f9:73:29:3b:38:58:e6:42:58:4d:0b:
0f:69:47:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 06:13:28 2024 by rpki-client on console-ams.rpki-client.org