Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a343a3a2f34382d3438203d3e2039303039.roa
File: 326131333a393530303a343a3a2f34382d3438203d3e2039303039.roa (raw, json)
Hash identifier: 5YHTk5gH0l9vxV8nTZ/FCS6G5QqZsU7LnRAfRsDmK1E=
Subject key identifier: 38:A5:F2:0D:D1:F5:D1:1B:93:48:49:10:E3:FE:26:48:A9:D5:2D:31
Certificate issuer: /CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Certificate serial: 40042ABC3075BDDC2090E4CFB2BF8F5E18B634E1
Authority key identifier: E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a343a3a2f34382d3438203d3e2039303039.roa
Signing time: Wed 15 May 2024 12:02:27 +0000
ROA not before: Wed 15 May 2024 11:57:27 +0000
ROA not after: Wed 14 May 2025 12:02:27 +0000
asID: 9009
IP address blocks: 2a13:9500:4::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.mft
rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:04:2a:bc:30:75:bd:dc:20:90:e4:cf:b2:bf:8f:5e:18:b6:34:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Validity
Not Before: May 15 11:57:27 2024 GMT
Not After : May 14 12:02:27 2025 GMT
Subject: CN=38A5F20DD1F5D11B93484910E3FE2648A9D52D31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:3d:6f:19:ca:91:9f:93:e6:57:fb:14:27:9e:
c2:b3:8b:6a:d9:0f:b5:7c:a1:1a:9b:3c:95:67:4d:
f4:2b:68:90:88:59:d8:1d:1d:32:61:10:d1:e7:2b:
ba:b5:33:5b:40:8e:38:70:e6:b0:af:d0:db:41:27:
c9:bc:78:20:19:62:16:dc:fc:9c:c5:47:f5:7a:24:
60:8a:9a:81:52:a0:dd:ab:89:84:9d:12:80:8f:f2:
21:44:96:9b:f5:20:c8:76:ca:a4:78:d3:7e:31:61:
75:2c:9e:84:2d:e5:81:82:29:15:cd:92:e9:8d:76:
fe:ba:32:1f:c0:cd:ce:27:24:d1:f9:ff:e2:f3:e8:
08:8f:66:f3:b6:49:06:ca:48:19:9b:d8:b1:44:9c:
e6:25:26:fd:62:a1:72:84:e7:41:81:24:e7:ed:1b:
b3:16:8b:e1:83:1e:7b:73:5d:6b:ac:40:33:0d:7b:
8b:1c:af:c7:2b:d0:c1:eb:27:1c:97:4f:2c:3f:c1:
57:d0:a3:de:77:7e:26:85:aa:fc:7e:31:87:b9:b6:
31:8a:44:25:e0:84:8e:d4:11:c4:a9:0e:db:f9:e3:
d6:1f:eb:40:a6:f0:6e:c3:a7:e5:f5:1d:e9:ce:bc:
81:8f:e0:c8:c3:46:58:3d:3a:7d:c2:b6:d9:c6:85:
5f:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:A5:F2:0D:D1:F5:D1:1B:93:48:49:10:E3:FE:26:48:A9:D5:2D:31
X509v3 Authority Key Identifier:
keyid:E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a343a3a2f34382d3438203d3e2039303039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:4::/48
Signature Algorithm: sha256WithRSAEncryption
19:a8:e3:84:51:e7:1d:01:c0:37:14:17:33:3a:78:e5:58:3f:
c1:6b:25:1f:c2:10:f1:a2:11:64:02:ce:3f:a0:d6:32:c8:ab:
89:b3:43:e1:3a:0d:0b:f0:a1:37:6d:9c:d4:19:91:7a:a4:95:
08:19:a2:f4:b6:31:17:45:1d:5c:c8:89:65:8a:0f:65:d7:6a:
c9:c9:61:21:83:06:f8:55:42:cc:04:45:c6:ab:d7:6c:2c:34:
57:b6:56:f7:b8:62:cd:e0:d6:35:50:11:68:4a:d2:59:e5:ca:
0d:04:6b:df:00:60:f5:ad:f7:27:a4:1f:8c:3d:ef:1c:a3:0f:
41:ab:ac:5a:d7:8b:f5:24:6a:f8:81:ae:d2:c1:74:5e:85:06:
db:2f:a0:ce:95:4c:c8:03:f5:0e:94:6d:d1:7d:e4:0b:33:8f:
2d:9e:b0:38:c6:c9:77:31:bc:af:96:3f:ff:e2:85:8e:f7:6b:
b9:27:27:50:61:73:23:4f:a2:54:f1:18:1b:cb:8c:36:27:c3:
35:96:b2:84:03:1c:a3:88:c4:08:99:9a:46:72:e6:1f:04:7a:
ee:11:f4:df:3d:5a:8e:94:ae:a9:c4:bd:a0:86:be:a9:6a:20:
49:f2:04:fd:07:61:28:97:99:09:83:c9:ea:43:94:17:65:f0:
2f:96:f4:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 05:41:47 2024 by rpki-client on console-fra.rpki-client.org