Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a323a3a2f34382d3438203d3e2033333536.roa
File: 326131333a393530303a323a3a2f34382d3438203d3e2033333536.roa (raw, json)
Hash identifier: i9CH1g3Jn0w61AjN16P4Lre67FfGyga3e/FbJF98cAg=
Subject key identifier: AF:27:D9:50:D0:4D:1C:B0:95:20:5E:81:82:89:0B:F3:61:79:AA:65
Certificate issuer: /CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Certificate serial: 2FB41122E470F8D3753509116BEB6CFF20143767
Authority key identifier: E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a323a3a2f34382d3438203d3e2033333536.roa
Signing time: Thu 30 Nov 2023 21:00:14 +0000
ROA not before: Thu 30 Nov 2023 20:55:14 +0000
ROA not after: Thu 28 Nov 2024 21:00:14 +0000
asID: 3356
IP address blocks: 2a13:9500:2::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.mft
rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Sep 2024 17:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:b4:11:22:e4:70:f8:d3:75:35:09:11:6b:eb:6c:ff:20:14:37:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Validity
Not Before: Nov 30 20:55:14 2023 GMT
Not After : Nov 28 21:00:14 2024 GMT
Subject: CN=AF27D950D04D1CB095205E8182890BF36179AA65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:77:f5:c3:bc:5a:ef:ab:71:bd:3e:d1:0d:2a:
07:d2:6c:43:fb:a7:d9:57:6e:b1:6d:65:29:ca:4d:
11:e0:ac:0f:3b:33:37:28:ed:f5:02:28:9d:b2:17:
12:62:d3:e2:64:6b:8c:38:dd:20:b5:6a:00:71:09:
6b:53:2e:2e:33:1b:ab:0b:4a:90:a9:51:99:02:ab:
ac:9a:a1:4d:8c:58:bc:df:f9:98:46:5d:57:e1:e1:
ca:62:5d:c8:01:73:08:22:63:ab:0f:e8:69:b3:70:
39:c4:de:93:ee:7f:06:73:88:ea:4d:14:d1:92:67:
c4:2d:0f:3d:4b:92:dd:e2:c8:b4:bf:35:6a:5c:73:
e9:eb:5c:02:0b:f9:94:08:08:23:1b:05:9d:a9:a8:
ee:d1:90:07:b2:02:ef:05:d8:70:ac:b3:c6:37:b5:
a2:5c:08:99:b0:ef:8d:d1:9f:9a:f3:44:a8:8f:67:
49:38:9e:ef:74:ba:95:df:f1:9f:81:14:54:66:6b:
38:97:4e:80:33:a0:63:6a:d2:98:c8:7c:46:8a:ec:
38:99:8e:35:d3:07:af:92:e6:ce:d6:35:48:f7:fb:
a1:ee:40:81:4b:5f:9e:bb:6d:6c:ed:b2:e8:84:42:
35:ad:88:72:42:0b:a9:3c:eb:90:c8:2b:41:69:8a:
a8:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:27:D9:50:D0:4D:1C:B0:95:20:5E:81:82:89:0B:F3:61:79:AA:65
X509v3 Authority Key Identifier:
keyid:E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a323a3a2f34382d3438203d3e2033333536.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:2::/48
Signature Algorithm: sha256WithRSAEncryption
12:07:74:db:64:2f:b6:fe:79:b5:ee:9c:4c:64:c9:16:94:b6:
5c:fc:45:8c:7f:38:3a:a4:1c:bb:d9:41:52:23:8b:d3:57:05:
9e:7e:cf:b3:49:7d:48:47:93:d4:fa:ba:76:a7:54:b4:5e:3a:
7e:62:4b:31:30:45:b5:23:40:54:43:0b:37:49:57:b1:61:d9:
c2:5b:b5:96:ce:29:24:d5:40:8b:6f:28:c2:0b:a9:d9:ef:3e:
c4:f8:39:a8:22:c7:b2:cd:82:f4:02:61:d9:69:58:36:39:83:
37:57:67:3d:f6:c9:87:bb:24:bc:f3:16:ac:57:94:19:7b:9a:
c6:aa:da:31:b8:2e:d6:32:54:b0:d1:e2:f9:9e:f9:f5:86:0f:
83:5d:f8:e3:46:af:f4:ba:83:ef:6c:97:51:49:d1:79:72:ca:
ca:70:38:4b:fa:ae:b7:9f:f5:00:a9:4d:12:ff:07:bc:0f:bc:
ca:2e:c2:b5:17:cc:b4:e7:46:ce:6a:02:ab:95:cc:d3:ef:66:
57:1f:88:98:c3:76:17:d1:4d:12:2e:67:71:d3:91:d5:a7:39:
ef:df:26:02:dc:11:4a:31:e1:cb:d1:dc:b5:d6:81:2f:d0:8f:
46:ef:19:79:cb:95:34:ad:60:21:89:d9:84:15:5c:33:08:e9:
b0:ad:f5:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 17 20:45:49 2024 by rpki-client on console-fra.rpki-client.org