Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a323a3a2f34382d3438203d3e2033333230.roa
File: 326131333a393530303a323a3a2f34382d3438203d3e2033333230.roa (raw, json)
Hash identifier: MiEBUOl03mgLDFB0/tCgih2dqNgVf1pE7Cmzq6aDTxI=
Subject key identifier: 79:E4:B6:0C:7E:11:93:FB:09:BB:2A:D2:09:49:54:19:A1:EF:D8:58
Certificate issuer: /CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Certificate serial: 7F1ECC4DF12F35CE8D98AFC35B6D9A64D447434B
Authority key identifier: E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a323a3a2f34382d3438203d3e2033333230.roa
Signing time: Mon 09 Sep 2024 13:05:20 +0000
ROA not before: Mon 09 Sep 2024 13:00:20 +0000
ROA not after: Mon 08 Sep 2025 13:05:20 +0000
asID: 3320
IP address blocks: 2a13:9500:2::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.mft
rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:1e:cc:4d:f1:2f:35:ce:8d:98:af:c3:5b:6d:9a:64:d4:47:43:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Validity
Not Before: Sep 9 13:00:20 2024 GMT
Not After : Sep 8 13:05:20 2025 GMT
Subject: CN=79E4B60C7E1193FB09BB2AD209495419A1EFD858
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:52:cc:e9:7d:ae:0b:04:ee:fe:e5:b6:2d:03:
e0:3d:3e:ed:f6:e8:ad:f6:55:69:e8:c4:67:75:77:
f9:56:37:26:11:95:70:4a:44:00:cf:1b:72:f0:b8:
30:b4:24:2b:4e:45:8e:6b:56:bd:ab:20:c2:49:cc:
4d:85:c5:0d:cc:2c:e3:a1:13:bc:e5:5f:52:8a:91:
ae:e1:28:ea:98:b6:0e:b4:07:c1:59:7e:92:39:59:
c8:2b:02:e3:88:f1:6e:8d:c0:92:1f:f9:93:81:49:
c8:8f:40:fa:f5:c2:d8:00:fc:e7:0d:ea:3f:44:60:
77:61:e9:90:39:9c:7d:53:5a:d8:f4:87:d8:e5:4e:
73:9f:6a:a2:a1:be:4a:43:d1:f3:53:72:b1:25:2d:
29:92:ce:fe:7a:20:b7:39:a5:bc:39:e0:84:68:f6:
e1:76:54:b6:12:68:81:07:48:27:4b:6a:24:c3:84:
4a:7f:6c:a3:35:af:f3:3f:8d:be:3a:d9:a8:ca:3a:
ae:18:0a:ad:a7:6a:e2:6b:48:66:d3:bc:98:45:bc:
f0:4e:15:4a:21:f9:9b:a9:de:ec:81:0e:07:37:80:
c3:5b:78:b3:23:33:52:49:cc:39:33:ab:4f:7b:f7:
70:ad:58:51:81:59:2b:0e:78:4f:8b:1c:ff:43:dd:
4f:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:E4:B6:0C:7E:11:93:FB:09:BB:2A:D2:09:49:54:19:A1:EF:D8:58
X509v3 Authority Key Identifier:
keyid:E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a323a3a2f34382d3438203d3e2033333230.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:2::/48
Signature Algorithm: sha256WithRSAEncryption
40:cc:27:31:de:25:4b:16:45:13:cd:b0:a4:ea:b4:ff:88:8b:
34:b5:bc:71:0a:a3:7c:03:34:42:6b:65:3b:36:71:fa:90:91:
ca:86:b3:14:8b:83:43:88:6d:61:51:35:c6:46:8b:5b:a5:02:
be:16:c2:85:88:cd:50:ff:c7:af:3a:2f:96:1d:6f:c3:52:83:
e5:51:b0:b9:da:9c:e2:03:ef:00:f9:70:59:1f:ed:3b:77:a5:
4f:03:f1:ad:05:72:f6:fc:22:be:12:64:49:bd:dc:e1:0c:75:
84:de:00:82:cf:d9:88:fc:1d:79:db:e9:6d:20:33:b9:a4:48:
f2:25:f3:c3:4f:a7:21:db:2f:44:65:92:f5:97:36:59:8f:20:
29:fe:df:93:72:08:63:61:a5:07:1b:98:98:1f:15:4e:7e:0b:
11:58:7d:e7:fe:5a:82:08:ad:8d:8b:ec:02:9f:15:bd:8a:b6:
81:03:05:b3:9a:97:1f:3e:d4:8b:13:8b:21:95:c8:9d:82:81:
aa:e4:e1:7c:93:da:87:b0:ba:7f:d8:5a:26:b9:30:ed:da:d8:
2d:7a:4e:7d:04:b7:ee:61:02:60:72:75:d6:7a:3d:c7:1e:6a:
29:14:61:08:ef:1a:de:f1:ca:7e:1f:63:f4:2c:47:9d:3d:91:
ea:a4:ab:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:40:01 2024 by rpki-client on console-ams.rpki-client.org