Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a633a3a2f34382d3438203d3e2039303039.roa
File: 326131333a393530303a633a3a2f34382d3438203d3e2039303039.roa (raw, json)
Hash identifier: RObaPF+Wo8HDOM4LhiPAPyeZTcBUbfi0tJmGDoBkL9c=
Subject key identifier: B7:91:19:FC:CA:A5:C0:4D:9B:66:DA:EF:7A:22:C9:A3:57:8A:E0:54
Certificate issuer: /CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Certificate serial: 7C1910D3D2A53948D2A9C02C2117002CC426E99D
Authority key identifier: E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a633a3a2f34382d3438203d3e2039303039.roa
Signing time: Tue 11 Jun 2024 10:02:03 +0000
ROA not before: Tue 11 Jun 2024 09:57:03 +0000
ROA not after: Tue 10 Jun 2025 10:02:03 +0000
asID: 9009
IP address blocks: 2a13:9500:c::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.mft
rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:19:10:d3:d2:a5:39:48:d2:a9:c0:2c:21:17:00:2c:c4:26:e9:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Validity
Not Before: Jun 11 09:57:03 2024 GMT
Not After : Jun 10 10:02:03 2025 GMT
Subject: CN=B79119FCCAA5C04D9B66DAEF7A22C9A3578AE054
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:eb:d5:7a:94:0a:be:24:e6:33:fc:50:e6:de:
06:97:3d:2f:c6:15:0e:fd:b4:0b:5b:e2:d2:d3:a7:
58:5e:d1:35:8b:2d:32:38:19:db:99:da:ee:03:fe:
90:1f:2a:19:e3:8a:42:e3:e8:e6:44:d4:15:7c:77:
a5:9b:7e:5d:ea:4c:dc:5f:91:c8:eb:1e:30:52:47:
9f:0d:d8:ed:89:ec:6f:f8:23:67:9b:21:30:8e:ab:
75:6e:70:37:0e:ae:c5:38:b6:b8:e8:6f:19:41:77:
2f:3f:0e:32:5b:18:c5:81:92:41:78:76:82:0e:e1:
42:4b:74:17:17:20:3d:03:07:cd:0c:d1:b6:0a:a9:
0d:e0:44:fe:20:29:fd:97:9c:d8:ce:62:e3:83:f1:
f2:9c:04:45:93:9f:b5:2b:c6:0a:d0:5c:ac:02:db:
a8:be:c8:59:c4:56:a8:83:09:57:22:98:ba:68:15:
d9:07:62:12:74:68:8c:06:74:24:01:29:5d:79:50:
90:1f:70:ca:e5:b2:90:5b:29:1d:a3:47:03:b1:8f:
66:b3:db:e5:f3:59:22:92:61:3a:9b:c6:68:f6:e7:
8a:e4:b2:3c:5a:ef:6c:23:bc:0b:51:eb:bd:0e:d9:
c3:81:f1:cc:c3:d5:4a:5e:ae:00:58:4d:86:72:ac:
d3:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:91:19:FC:CA:A5:C0:4D:9B:66:DA:EF:7A:22:C9:A3:57:8A:E0:54
X509v3 Authority Key Identifier:
keyid:E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a633a3a2f34382d3438203d3e2039303039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:c::/48
Signature Algorithm: sha256WithRSAEncryption
10:fd:e8:42:8d:cf:d1:c4:23:8a:d9:f8:29:f2:3d:0b:60:9d:
c8:1a:ae:96:1f:c2:bd:88:70:54:3c:04:30:35:b3:b5:19:52:
4f:c2:16:d8:d3:b3:e0:d8:e4:8e:92:88:99:13:22:fa:04:57:
44:d0:63:46:76:6b:72:7c:46:a8:50:32:04:4b:96:6b:3b:f6:
0f:9b:af:73:94:bc:59:43:2e:db:ed:60:a7:72:91:18:d4:18:
42:61:40:05:15:03:05:c8:3b:e4:57:0b:17:b0:35:12:6f:90:
ba:4b:03:0c:49:6b:4e:68:98:fd:2e:e3:2d:ef:5a:95:bb:20:
4d:14:e6:6b:13:40:3a:e6:af:b6:c5:f0:1f:7c:f1:78:d0:ce:
5e:e2:6e:28:f7:fe:3f:37:0a:09:14:67:f0:5d:07:48:78:e4:
c7:ad:76:a3:21:e3:0a:49:ab:88:04:33:e5:ea:64:6d:9f:20:
d8:02:13:a4:65:ca:cf:20:1f:84:33:a2:0d:6b:ad:37:6d:9b:
b7:eb:f3:d1:d3:af:6a:1b:48:5b:4b:9c:39:7e:3c:af:c8:18:
d6:e7:24:9c:f3:a9:63:11:5d:27:22:c8:9a:b2:4b:a2:81:d8:
6c:79:0f:c5:25:f1:e4:45:6d:cb:91:17:19:dd:4f:bd:88:1b:
6a:3c:5c:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 05:41:47 2024 by rpki-client on console-fra.rpki-client.org