Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a323a3a2f34382d3438203d3e2033333230.roa
File: 326131333a393530303a323a3a2f34382d3438203d3e2033333230.roa (raw, json)
Hash identifier: PncZgMIEdJdVlNemQMcWYki09/km3Dg3hHwNVnKGtFk=
Subject key identifier: C6:20:9A:55:13:2A:D5:8F:C6:71:B4:DA:F3:20:D3:E7:88:B6:5D:0A
Certificate issuer: /CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Certificate serial: 54501F5FC72BB4C96D7A2E3066182B3EEE3047AE
Authority key identifier: E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a323a3a2f34382d3438203d3e2033333230.roa
Signing time: Mon 09 Oct 2023 12:07:02 +0000
ROA not before: Mon 09 Oct 2023 12:02:02 +0000
ROA not after: Mon 07 Oct 2024 12:07:02 +0000
asID: 3320
IP address blocks: 2a13:9500:2::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.mft
rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 12 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:50:1f:5f:c7:2b:b4:c9:6d:7a:2e:30:66:18:2b:3e:ee:30:47:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Validity
Not Before: Oct 9 12:02:02 2023 GMT
Not After : Oct 7 12:07:02 2024 GMT
Subject: CN=C6209A55132AD58FC671B4DAF320D3E788B65D0A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:20:d5:8d:60:b2:eb:e2:c3:98:09:1f:19:c6:
3e:14:e9:e6:2d:b6:62:c2:3f:cb:58:e6:41:6a:c9:
fa:bb:5c:56:fb:4d:19:fd:32:c7:0c:3d:17:5e:ce:
7e:f7:0f:87:02:f5:c3:78:74:21:04:ad:ae:1e:57:
3d:8f:74:47:cd:c2:e4:12:a7:bf:4c:2b:4a:35:d0:
fc:48:21:a9:b3:72:8a:c2:5e:da:5b:8a:30:8a:a8:
8a:da:1d:13:b1:52:44:5e:60:79:f3:44:a7:cf:c4:
81:5e:62:11:f4:85:ca:b2:9f:02:7b:91:31:a4:de:
6c:fc:f2:5d:a2:7b:4e:b3:7c:bd:1d:be:13:fe:e8:
79:73:80:75:23:c7:bb:ea:62:66:0d:bc:54:2b:f0:
9d:48:3c:e9:4e:26:28:66:6d:78:1f:f9:00:96:24:
18:35:54:f8:ee:c8:a4:4b:09:24:8f:68:2d:2b:48:
d1:bd:55:d4:78:0e:0b:94:5c:61:cc:5a:c7:48:c9:
03:41:39:82:6b:3a:d4:01:29:fd:83:a4:a2:93:82:
64:cb:9d:1e:f6:9f:7d:5f:4d:95:76:b8:a4:c2:aa:
3b:57:f0:0c:2f:8d:ca:a4:ff:1e:04:74:9d:81:7b:
29:b8:e4:68:52:47:08:87:46:89:70:8f:89:6e:74:
a7:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:20:9A:55:13:2A:D5:8F:C6:71:B4:DA:F3:20:D3:E7:88:B6:5D:0A
X509v3 Authority Key Identifier:
keyid:E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a323a3a2f34382d3438203d3e2033333230.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:2::/48
Signature Algorithm: sha256WithRSAEncryption
92:d5:35:5e:8e:3c:40:da:a9:7b:88:28:ec:c2:90:b0:71:75:
68:c0:dc:8c:0e:55:98:2a:83:52:cd:46:22:8a:00:db:dc:8c:
f4:8b:d4:86:cd:2a:39:cd:f6:8d:9e:14:63:2e:11:d5:06:e1:
6e:05:c9:98:65:83:7e:8d:e8:32:5f:bf:71:34:df:e8:05:93:
2f:06:42:7e:d1:1d:ff:b9:33:26:d8:7f:6f:cb:09:87:89:6d:
c9:3e:0d:41:28:39:63:12:19:76:38:93:e9:27:06:95:9a:b6:
49:a5:be:d1:2e:7e:76:f4:76:58:09:2b:e5:64:0b:eb:cd:de:
10:40:f5:88:9e:17:69:9c:62:29:c7:b0:6c:d7:4b:dc:16:40:
78:52:c9:fb:d6:05:80:3a:42:6d:74:45:4a:d2:70:ff:bc:07:
7c:33:4e:40:76:17:2f:4f:6f:b5:30:b1:3e:86:56:76:94:41:
a5:db:c3:f5:28:20:bf:b6:bb:38:77:25:e6:c4:97:67:a3:bd:
cc:7d:3e:c1:1f:96:b3:fb:98:a1:fa:08:38:d6:89:df:80:73:
be:18:bd:cb:98:60:fc:16:64:f5:72:f6:63:26:89:06:9b:2c:
11:6b:be:05:a5:55:92:4f:f2:fc:26:1f:6a:b5:ba:c6:cf:f7:
e6:54:16:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 12 00:14:00 2024 by rpki-client on console-ams.rpki-client.org