Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a363a3a2f34382d3438203d3e2039303039.roa
File: 326131333a393530303a363a3a2f34382d3438203d3e2039303039.roa (raw, json)
Hash identifier: I4xNGK/yYSmxVlw6WvIeErlJm/0MyQ/wDsYT7qV9axc=
Subject key identifier: 2B:04:52:11:1D:D7:EF:61:9A:EB:74:0E:B1:3B:44:BB:A6:37:F0:84
Certificate issuer: /CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Certificate serial: 5D285E9F28EE75E778CA59497E82AE1837B000E2
Authority key identifier: E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a363a3a2f34382d3438203d3e2039303039.roa
Signing time: Tue 04 Jun 2024 11:56:27 +0000
ROA not before: Tue 04 Jun 2024 11:51:27 +0000
ROA not after: Tue 03 Jun 2025 11:56:27 +0000
asID: 9009
IP address blocks: 2a13:9500:6::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.mft
rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:28:5e:9f:28:ee:75:e7:78:ca:59:49:7e:82:ae:18:37:b0:00:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Validity
Not Before: Jun 4 11:51:27 2024 GMT
Not After : Jun 3 11:56:27 2025 GMT
Subject: CN=2B0452111DD7EF619AEB740EB13B44BBA637F084
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:0d:90:65:80:bc:2a:20:86:ad:96:38:01:73:
0a:f0:fd:e8:10:f5:ee:6f:9a:d6:f8:02:25:2d:9d:
7e:50:eb:d8:7f:5a:fd:ef:ef:4f:47:6e:19:84:18:
10:c5:6d:58:0d:49:c6:e1:04:44:e3:25:6c:ef:0f:
81:d1:7a:a7:96:c4:2a:dc:b1:71:79:e4:4b:f8:73:
86:2c:af:0c:5e:59:fd:89:6b:ee:27:d3:92:77:2b:
89:32:54:33:59:58:e0:e8:fb:b8:70:80:e9:f9:fe:
17:e0:28:cb:e5:d5:18:ff:18:c5:82:0e:0a:2a:70:
69:f0:b4:fa:50:a7:45:16:ea:f2:d6:56:74:8a:be:
93:b4:ce:eb:3c:6f:63:eb:9f:02:8c:49:b6:29:9b:
2e:58:ca:84:4a:bb:18:15:7f:09:49:66:40:31:70:
e0:e3:a3:29:06:00:8b:aa:81:dc:4b:c6:b6:7e:d0:
37:5c:e1:3a:90:51:e6:e1:40:2e:e2:a4:ef:a6:da:
a5:7f:be:e9:b7:de:17:d6:01:27:b0:10:41:be:74:
30:26:3e:b1:f0:7f:86:5a:9d:01:d4:fd:75:5a:9d:
5f:ff:63:41:4f:96:f5:63:43:12:29:ce:58:b0:ee:
f7:b6:fb:39:68:5f:f5:0f:2d:2f:25:13:dc:2a:17:
1f:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:04:52:11:1D:D7:EF:61:9A:EB:74:0E:B1:3B:44:BB:A6:37:F0:84
X509v3 Authority Key Identifier:
keyid:E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a363a3a2f34382d3438203d3e2039303039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:6::/48
Signature Algorithm: sha256WithRSAEncryption
09:7d:ac:2a:cc:f8:98:0d:80:48:dd:af:89:ae:eb:e9:45:f8:
9c:76:ed:b9:9c:8a:d7:c6:24:48:fb:d5:e1:49:2f:3f:dc:0c:
f6:a3:f9:08:1b:a7:84:e5:ec:d5:7b:71:04:7b:84:a4:d0:5c:
3e:63:88:cf:c5:fa:42:c1:27:7b:cb:1d:a0:03:6d:d2:3f:e1:
5a:f5:ad:17:97:3a:68:c9:13:f6:70:cb:b8:b2:1a:ed:61:06:
73:8e:d5:67:10:eb:b4:44:19:ec:33:71:e0:29:bb:aa:ac:f3:
9d:65:15:ed:f5:3b:be:ae:d3:fe:58:63:2d:33:28:fe:06:1a:
94:7f:a9:f6:14:c4:26:6d:a8:ba:18:97:21:b6:ef:29:93:be:
79:01:53:d3:36:5c:3f:b6:5d:aa:f7:6d:d3:cc:3e:c3:1b:65:
fa:5e:c5:a6:11:4a:53:82:f9:09:39:b9:a3:0b:15:fc:86:ef:
bd:7d:ab:96:f4:91:1d:8e:1a:a7:8a:08:17:35:a6:04:a5:b9:
68:2d:10:78:31:38:a5:cd:7a:d8:4c:1f:2e:10:d0:f0:4b:68:
5a:18:60:dd:8b:9a:f6:da:14:ce:87:af:8f:2c:8b:7a:5d:77:
80:6d:78:ab:19:16:0f:bb:91:f0:26:eb:1c:14:54:23:96:96:
4c:45:3f:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 00:59:20 2024 by rpki-client on console-fra.rpki-client.org