Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a393a3a2f34382d3438203d3e2039303039.roa
File: 326131333a393530303a393a3a2f34382d3438203d3e2039303039.roa (raw, json)
Hash identifier: 1FiwAV00l0JLV/Q1q/DnS+sxm3IuiCShuy0WeNl4MZw=
Subject key identifier: 0E:A9:D5:E3:2E:38:03:38:E6:C1:CA:DC:21:CC:7C:24:62:48:A8:F5
Certificate issuer: /CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Certificate serial: 022087FCEA8AA19EE191EC88A37D5C7AA9149243
Authority key identifier: E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a393a3a2f34382d3438203d3e2039303039.roa
Signing time: Tue 04 Jun 2024 11:56:34 +0000
ROA not before: Tue 04 Jun 2024 11:51:34 +0000
ROA not after: Tue 03 Jun 2025 11:56:34 +0000
asID: 9009
IP address blocks: 2a13:9500:9::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.mft
rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:20:87:fc:ea:8a:a1:9e:e1:91:ec:88:a3:7d:5c:7a:a9:14:92:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Validity
Not Before: Jun 4 11:51:34 2024 GMT
Not After : Jun 3 11:56:34 2025 GMT
Subject: CN=0EA9D5E32E380338E6C1CADC21CC7C246248A8F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:df:87:78:a0:5e:01:d5:0e:bb:3b:d0:44:e9:
ce:bc:52:d0:86:af:e6:06:3b:d7:a0:ad:ba:f4:08:
7a:a6:b8:3d:18:d5:38:8d:62:1b:99:38:06:83:ad:
09:93:07:59:58:34:3b:0a:58:1a:bc:97:cd:40:48:
78:84:ab:7a:3c:64:ae:60:6f:9e:56:e1:35:95:5e:
4c:73:1f:56:5b:58:11:1b:e8:58:a5:61:ad:aa:e9:
39:52:7a:11:da:37:af:c1:c5:d3:89:a3:0d:ea:14:
90:ef:79:b5:3f:4a:3f:a6:c5:3b:1f:ef:eb:9c:24:
0f:fa:c3:1a:40:74:a2:fb:b6:fe:aa:7c:72:5e:17:
da:03:30:00:8d:8d:f1:60:ee:0e:73:59:d4:3a:b9:
55:76:9b:cb:38:09:0d:32:15:80:09:70:90:00:bf:
8c:20:ce:f7:8a:9b:c5:34:c2:88:db:25:32:74:f0:
81:fc:0b:64:d8:84:7c:c9:b7:77:f2:fc:05:64:37:
fa:30:5c:b0:60:f7:21:c6:91:46:f7:3a:f4:78:21:
a3:d7:2a:46:6d:c8:71:11:01:db:62:25:31:f8:57:
87:f1:d6:db:c2:e3:a7:c8:a8:18:a7:4c:73:83:09:
ca:09:6c:d4:7d:42:21:1c:cd:7a:f6:dd:81:59:e5:
8a:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:A9:D5:E3:2E:38:03:38:E6:C1:CA:DC:21:CC:7C:24:62:48:A8:F5
X509v3 Authority Key Identifier:
keyid:E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a393a3a2f34382d3438203d3e2039303039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:9::/48
Signature Algorithm: sha256WithRSAEncryption
16:d7:2c:eb:d3:67:17:ec:bb:ea:a9:2e:ef:62:7e:bf:d5:98:
d4:6d:1d:49:89:4b:09:13:72:d5:40:cf:5c:4c:70:22:56:e4:
1f:cf:f3:56:5b:8e:6e:df:90:95:0c:c2:5f:f7:96:24:0c:36:
89:ad:1e:30:9b:58:6e:f6:a6:ae:6e:29:e0:1b:b7:e7:aa:09:
32:8f:06:0a:1c:20:37:81:df:b5:78:86:8a:bd:16:03:97:3a:
a4:64:60:c1:0f:9f:e5:e7:52:43:92:e7:27:7d:70:95:9b:0d:
95:df:14:2d:19:0a:94:94:fb:e4:e7:f9:b2:54:21:fb:36:77:
9f:0c:d1:d8:e3:22:d1:98:c6:94:38:1e:90:40:eb:b5:0c:5a:
04:ca:2b:c2:9c:a6:dc:eb:82:7d:37:2f:0c:0b:a1:a5:30:af:
04:0d:1b:11:60:06:6f:d7:8a:d3:61:d0:35:93:d2:40:0b:31:
06:18:a1:30:43:82:63:ba:4b:85:22:33:f8:3e:c6:62:f6:55:
c9:13:07:48:52:97:cf:57:93:83:28:6d:79:04:63:f0:0a:0a:
aa:e2:11:b8:e0:96:54:11:22:10:2f:56:2a:be:00:eb:dd:71:
e2:da:e9:69:0e:70:c4:03:67:64:4a:f8:a5:db:3e:89:7f:9f:
ed:67:33:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 06:13:28 2024 by rpki-client on console-ams.rpki-client.org