Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a333a3a2f34382d3438203d3e203133323133.roa
File: 326131333a393530303a333a3a2f34382d3438203d3e203133323133.roa (raw, json)
Hash identifier: mUuS1nsoQZT04RmLVOK+XUrVrqV2zN5GFEYRTuh1eLo=
Subject key identifier: 85:51:D1:B8:74:92:77:B5:CF:09:13:90:48:18:87:E3:26:1A:C2:AC
Certificate issuer: /CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Certificate serial: 2CA439432BE4F9A6B4E0D78C7AF06C13CE0F5109
Authority key identifier: E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a333a3a2f34382d3438203d3e203133323133.roa
Signing time: Wed 29 May 2024 09:29:16 +0000
ROA not before: Wed 29 May 2024 09:24:16 +0000
ROA not after: Wed 28 May 2025 09:29:16 +0000
asID: 13213
IP address blocks: 2a13:9500:3::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.mft
rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:a4:39:43:2b:e4:f9:a6:b4:e0:d7:8c:7a:f0:6c:13:ce:0f:51:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Validity
Not Before: May 29 09:24:16 2024 GMT
Not After : May 28 09:29:16 2025 GMT
Subject: CN=8551D1B8749277B5CF091390481887E3261AC2AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:a3:28:8d:41:9f:c2:6d:94:f3:3c:01:4e:cf:
0f:62:ea:38:4f:ff:a2:67:2e:75:d7:2d:32:9d:77:
27:69:0a:e8:16:df:8f:4a:57:a1:a8:3d:2b:ed:84:
f0:9b:31:51:1e:f2:26:e9:04:4b:73:86:30:3a:d2:
3e:5a:88:d7:9e:8c:c2:01:e3:03:34:3f:ad:88:e2:
e0:3c:a0:e7:57:fe:5d:5c:52:01:b5:8a:3e:cf:15:
72:77:32:fe:fe:e6:a7:f4:6d:01:cf:f4:59:ba:3c:
b2:df:12:89:cb:4e:4e:c6:ce:06:12:13:28:13:ff:
8c:90:9e:9e:f6:c2:ed:3b:18:15:0b:e9:0b:24:9e:
c9:71:c5:26:9e:0b:6b:8c:a1:55:2a:51:25:da:37:
d5:1f:28:b1:1a:b7:4b:43:1b:3f:d4:52:f2:1f:f8:
aa:16:2c:f8:5c:90:d2:70:83:db:6e:4d:3d:d8:29:
de:6a:48:84:3a:02:55:97:78:c1:f8:55:69:02:8e:
58:59:6d:e0:71:4b:fb:b9:07:c9:2f:42:7e:d0:79:
8e:bf:cf:e6:c4:5b:7b:92:74:a3:82:42:26:e9:89:
a5:4d:2d:d1:e2:4c:40:97:c3:19:02:81:af:66:0e:
14:78:36:95:2d:b1:64:81:ea:a4:e2:68:dc:59:7e:
65:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:51:D1:B8:74:92:77:B5:CF:09:13:90:48:18:87:E3:26:1A:C2:AC
X509v3 Authority Key Identifier:
keyid:E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a333a3a2f34382d3438203d3e203133323133.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:3::/48
Signature Algorithm: sha256WithRSAEncryption
a7:d0:a1:28:1a:e6:e3:f0:79:29:cb:ab:2c:32:87:ce:9e:91:
c1:af:3e:8d:67:34:85:1c:47:26:08:9f:60:84:ef:7b:63:7c:
e2:6d:2f:5e:2a:a6:41:c3:db:a2:a1:ca:0a:1e:1e:9f:ea:7e:
92:f2:52:5c:7c:ee:c8:79:04:ed:05:5d:c5:8a:e0:c6:91:88:
6f:b4:7a:ca:ee:40:48:1e:7a:f1:3b:94:3b:21:e2:6e:d4:b7:
b3:27:a9:1c:01:98:84:04:11:2a:7a:04:1f:4f:f9:9f:b6:24:
94:b2:d3:30:73:bf:1a:4b:f6:d5:68:c8:2f:00:4f:9f:26:36:
53:53:f6:b6:9d:e8:ec:e6:8f:c2:96:5c:a5:cc:56:27:3e:61:
44:f8:be:f1:65:79:f4:5c:66:d6:99:ad:0d:dd:f3:98:72:34:
20:83:c8:4b:17:a7:d1:58:ac:60:ea:9b:30:ad:85:19:fb:26:
8a:bd:0e:ae:70:a4:07:95:d7:cc:ea:14:cf:da:1a:d2:7e:31:
7c:24:b7:42:5b:ec:c8:82:63:b8:bf:c3:92:6b:37:d8:35:c3:
d8:12:0b:e7:58:2b:05:b9:ac:0c:28:fb:7c:ca:58:b8:ee:03:
a1:1e:9b:94:a7:9b:77:be:40:5c:79:5f:2e:e2:70:19:39:54:
ba:99:a7:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:40:01 2024 by rpki-client on console-ams.rpki-client.org