Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a373a3a2f34382d3438203d3e2039303039.roa
File: 326131333a393530303a373a3a2f34382d3438203d3e2039303039.roa (raw, json)
Hash identifier: p2D6XKCuNzOdLzeEk6CxC7tBCPq5JxTcFmkOGdVwA+c=
Subject key identifier: AE:30:72:85:01:07:DF:7C:ED:B2:04:0E:29:62:CD:DE:04:C2:D6:B4
Certificate issuer: /CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Certificate serial: 6079442CE212731843019BCAFAB9A1750AA2881B
Authority key identifier: E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a373a3a2f34382d3438203d3e2039303039.roa
Signing time: Tue 04 Jun 2024 11:56:30 +0000
ROA not before: Tue 04 Jun 2024 11:51:30 +0000
ROA not after: Tue 03 Jun 2025 11:56:30 +0000
asID: 9009
IP address blocks: 2a13:9500:7::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.mft
rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:79:44:2c:e2:12:73:18:43:01:9b:ca:fa:b9:a1:75:0a:a2:88:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Validity
Not Before: Jun 4 11:51:30 2024 GMT
Not After : Jun 3 11:56:30 2025 GMT
Subject: CN=AE3072850107DF7CEDB2040E2962CDDE04C2D6B4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:e4:a9:a8:33:9c:3b:0c:6b:4a:a3:75:53:84:
a6:a8:e0:b8:7d:3f:0c:b6:4a:2b:e7:70:05:70:6d:
36:e6:08:74:33:5f:bf:0e:9f:be:31:9c:19:1b:94:
e6:06:d8:9d:38:69:cf:3c:b3:32:f7:d8:30:79:e6:
f3:8f:cc:e5:8b:ab:a1:aa:2d:85:a8:11:da:6b:43:
a9:03:27:61:d0:c3:fa:a6:cb:08:fd:bc:9b:84:de:
af:c4:50:41:ba:8a:8d:2e:04:d3:6a:01:e9:e0:92:
7c:78:dd:c0:d5:87:ed:e0:a0:60:63:53:47:ba:ec:
f2:34:85:c8:3a:7f:d4:d2:43:2d:0d:62:e1:de:fe:
34:4a:3a:9c:be:03:8f:d3:e4:c8:8a:9d:bc:06:65:
04:61:56:3b:b3:51:9e:d6:d7:2f:14:de:b8:af:60:
4c:a1:2c:af:fe:54:41:5f:96:e8:6b:51:e9:b3:e3:
89:61:0d:68:d6:63:0a:1f:c0:99:85:90:31:14:fe:
64:9d:3f:85:cc:4d:4a:0d:83:3f:f7:0f:a8:ba:8a:
58:88:b7:26:8e:7b:e9:38:dd:6a:f5:bd:55:82:0c:
60:fa:54:21:2f:4c:29:c7:79:d1:33:1b:42:e5:01:
6f:9f:c8:17:32:d8:69:22:67:95:05:9a:6e:5a:eb:
f9:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:30:72:85:01:07:DF:7C:ED:B2:04:0E:29:62:CD:DE:04:C2:D6:B4
X509v3 Authority Key Identifier:
keyid:E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a373a3a2f34382d3438203d3e2039303039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:7::/48
Signature Algorithm: sha256WithRSAEncryption
69:55:66:55:4b:f2:04:ea:8e:ae:51:db:8d:f3:dc:36:8d:80:
f3:6e:09:66:74:df:79:c4:d9:71:98:94:36:56:23:ce:f4:80:
29:47:5f:81:df:ff:08:ff:5d:c8:49:2b:25:a9:ad:5a:0f:30:
c0:78:f5:63:90:65:da:00:2a:b3:d1:df:62:c9:43:b6:14:02:
64:29:83:1b:43:64:5c:81:fb:8f:c6:da:93:cc:ff:ab:8a:42:
cb:7e:32:31:82:ac:1f:3c:29:f4:16:24:88:ab:20:11:68:77:
3a:28:c4:55:bc:54:5b:c5:db:02:8e:34:85:63:8d:7e:7c:57:
1b:7a:f9:b5:b7:04:2c:47:a5:e2:a2:89:4f:55:3d:92:83:17:
27:c2:f5:ed:04:a1:59:5d:ac:01:e5:fa:aa:fb:36:fa:d2:53:
a3:c0:07:27:db:ba:a8:ac:ec:d0:49:d7:a6:5e:e5:ff:f3:cb:
c9:a4:23:26:c6:7f:f1:3d:6e:3a:5b:57:7f:38:3c:7b:c2:63:
f5:e4:d3:0c:cf:4c:eb:46:33:a8:54:eb:60:4d:8a:2b:64:b3:
c8:d5:53:d2:5c:8b:02:3d:f2:c7:e5:3c:6c:42:0b:1b:52:3f:
15:ad:b1:8f:6e:da:49:5e:17:63:3b:12:3a:63:2b:d0:e4:34:
e0:2c:dc:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 00:59:20 2024 by rpki-client on console-fra.rpki-client.org