Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a323a3a2f34382d3438203d3e2033333536.roa
File: 326131333a393530303a323a3a2f34382d3438203d3e2033333536.roa (raw, json)
Hash identifier: uKji9Vs8QZN2h+OpPHkshLjgp5Dekib+e+MXQncjqiU=
Subject key identifier: 8F:B7:44:2A:84:D0:A6:90:20:66:91:B8:CD:28:78:D6:B3:C1:42:0F
Certificate issuer: /CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Certificate serial: 1023A905AE21FFBF0E9D3AF44B6064E0CA852E43
Authority key identifier: E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a323a3a2f34382d3438203d3e2033333536.roa
Signing time: Thu 31 Oct 2024 21:43:27 +0000
ROA not before: Thu 31 Oct 2024 21:38:27 +0000
ROA not after: Thu 30 Oct 2025 21:43:27 +0000
asID: 3356
IP address blocks: 2a13:9500:2::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.mft
rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:23:a9:05:ae:21:ff:bf:0e:9d:3a:f4:4b:60:64:e0:ca:85:2e:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Validity
Not Before: Oct 31 21:38:27 2024 GMT
Not After : Oct 30 21:43:27 2025 GMT
Subject: CN=8FB7442A84D0A690206691B8CD2878D6B3C1420F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:45:b8:ae:a6:d8:32:77:bb:a5:e9:55:ac:5d:
6f:22:d7:70:0c:30:60:a8:b1:d8:61:ee:c3:5c:94:
6d:35:70:91:c9:04:b8:f7:eb:a9:ba:81:07:13:f1:
c3:39:a1:1a:c5:89:4b:53:e0:99:ec:e2:c8:2b:0f:
99:25:99:74:89:3e:d5:94:17:bd:4b:39:1e:de:f2:
71:c3:ff:af:bf:11:63:ce:d4:50:fd:13:36:ca:f3:
e8:20:c3:79:e5:6b:6c:65:3c:1f:69:46:9b:f4:ad:
3a:c0:cd:6e:8a:c2:da:da:d0:38:df:a9:b5:f2:92:
f7:b2:3c:f0:8e:3f:ac:4c:c3:b8:6e:69:c2:d8:9d:
e9:da:4c:1a:60:c7:4a:2f:5e:89:6f:18:06:55:7d:
7c:c0:bb:d1:92:b9:b9:40:ce:c9:db:7b:f6:0b:31:
2c:ea:87:f0:f4:96:b6:03:44:14:fe:74:77:82:db:
0b:8b:bd:8f:23:26:22:21:1d:4b:e2:a1:23:43:e0:
c8:93:b2:36:89:3a:ae:03:ce:f5:96:58:e3:cf:01:
b6:60:02:9c:ae:4b:b7:ba:a7:d4:b6:ba:1e:23:e0:
30:9b:9f:0b:09:ec:16:80:95:37:62:79:d6:5a:8b:
f2:92:9a:d5:5c:b0:bd:a8:ca:a1:67:a0:0e:6a:b0:
c9:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:B7:44:2A:84:D0:A6:90:20:66:91:B8:CD:28:78:D6:B3:C1:42:0F
X509v3 Authority Key Identifier:
keyid:E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a323a3a2f34382d3438203d3e2033333536.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:2::/48
Signature Algorithm: sha256WithRSAEncryption
9d:de:92:4e:f9:24:f3:05:27:b0:c4:f3:3f:6a:d3:40:e2:7c:
f6:55:75:7d:2e:f1:d5:56:6e:7d:8b:1d:b8:a1:c0:f8:35:34:
bb:29:f5:08:f3:ad:63:8b:86:18:a1:bb:ed:d2:03:45:be:ce:
a1:d2:0b:7f:c6:d5:29:fc:2a:8b:41:37:de:0c:dc:3b:80:47:
1a:b0:08:7b:5a:78:81:02:04:bc:5d:9a:cf:8b:92:73:fb:8f:
3b:9d:36:c0:11:e8:6f:76:07:7b:b1:ce:00:a3:f1:ce:7f:de:
b6:b9:f3:39:96:f7:53:fc:0b:b5:97:d2:95:66:ff:5a:2c:ec:
56:62:52:e6:b5:dd:2c:e7:4e:eb:7c:71:48:9d:f1:78:67:75:
7f:26:80:f7:9a:86:6d:09:f7:ad:1a:f1:37:31:f4:eb:8f:18:
68:85:7c:d1:7b:57:44:a3:ba:0e:23:3c:b8:88:fc:28:aa:cf:
87:7a:59:6d:2f:ac:f4:2a:c4:23:8e:5d:9e:d5:19:52:23:25:
54:3d:bc:6b:ca:ab:5f:3d:df:6f:32:55:66:56:2c:bd:bb:82:
06:35:3a:38:5e:3d:ac:5a:8e:f8:ca:82:30:d2:6a:39:3e:71:
cb:49:2e:98:88:f9:f3:76:45:09:91:7c:a8:5d:31:a5:02:76:
8c:6e:b7:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 00:59:20 2024 by rpki-client on console-fra.rpki-client.org