Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a653a3a2f34382d3438203d3e2039303039.roa
File: 326131333a393530303a653a3a2f34382d3438203d3e2039303039.roa (raw, json)
Hash identifier: x5mZLi8hW0jvG8JAd0489ITfiMT/8DMDZA0Yjdjq7Yo=
Subject key identifier: 65:E2:00:54:70:F6:C2:62:EE:AE:6C:5C:07:21:50:E8:20:26:B0:82
Certificate issuer: /CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Certificate serial: 7799C66F48859FD411B22E8CECCF1F188A676FA2
Authority key identifier: E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a653a3a2f34382d3438203d3e2039303039.roa
Signing time: Tue 04 Jun 2024 11:56:22 +0000
ROA not before: Tue 04 Jun 2024 11:51:22 +0000
ROA not after: Tue 03 Jun 2025 11:56:22 +0000
asID: 9009
IP address blocks: 2a13:9500:e::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.mft
rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:99:c6:6f:48:85:9f:d4:11:b2:2e:8c:ec:cf:1f:18:8a:67:6f:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Validity
Not Before: Jun 4 11:51:22 2024 GMT
Not After : Jun 3 11:56:22 2025 GMT
Subject: CN=65E2005470F6C262EEAE6C5C072150E82026B082
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:63:e2:ad:ca:41:05:da:c5:28:92:56:a0:7a:
dc:82:4f:01:2f:5e:6c:ab:02:c0:6c:79:d7:40:1b:
a7:d8:c1:19:5c:2f:bf:9d:03:f0:7f:d9:11:b8:4f:
61:a4:cf:51:b0:3b:d8:6b:58:2c:a8:6a:be:50:a7:
12:af:44:d7:44:25:fe:42:5d:d5:d1:26:63:e2:93:
f8:7c:75:dc:e3:11:c1:24:9c:ec:c7:ad:aa:1a:17:
f5:be:5d:b7:fa:8f:61:98:65:1a:0f:ba:50:a9:53:
66:62:04:73:4e:38:f7:0a:4f:8a:7e:56:15:ed:c0:
66:c7:e7:6d:f4:19:d4:39:6e:92:95:5b:e7:58:bc:
5b:f4:de:12:6e:d5:82:ca:94:49:1d:d5:08:14:cc:
17:dc:09:ec:fe:17:cd:a6:8b:9f:00:7b:47:bf:d1:
bc:73:bd:ee:b7:42:bd:1f:ed:72:80:4b:df:c1:3b:
cd:22:f2:d8:c2:c9:26:98:08:02:bb:51:57:79:60:
2d:f7:c2:98:0b:dc:ac:f2:ae:64:cf:48:13:e4:03:
e6:02:cc:b1:a5:5a:8d:db:8c:94:5d:70:48:db:d4:
80:12:98:77:52:6c:04:50:24:0c:06:bb:9d:42:ff:
0b:60:90:6d:0d:73:0b:9d:03:91:f0:9f:b5:7c:eb:
ce:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:E2:00:54:70:F6:C2:62:EE:AE:6C:5C:07:21:50:E8:20:26:B0:82
X509v3 Authority Key Identifier:
keyid:E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a653a3a2f34382d3438203d3e2039303039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:e::/48
Signature Algorithm: sha256WithRSAEncryption
70:78:db:49:11:65:05:6c:57:31:2a:60:ed:db:29:52:c4:76:
9c:a4:4d:c8:6b:c7:73:3d:7e:8f:ef:1d:8c:11:a2:85:84:6f:
62:c7:82:89:04:72:ac:b8:d0:a3:84:aa:2f:91:7d:b8:f1:c5:
1b:01:ee:9b:51:ae:50:8a:c8:10:bd:c3:18:02:39:75:b6:87:
20:d1:ef:c5:76:0a:23:5c:d6:3f:a0:50:a8:f6:e4:85:4d:7c:
8b:83:c8:94:35:41:49:58:72:e1:88:b6:af:89:5e:1f:08:55:
b4:2c:0a:96:45:d9:8e:93:39:37:08:34:ab:6c:0a:cd:5f:31:
84:1a:33:11:d3:40:f3:e6:13:2c:60:24:1c:48:a4:ce:55:9e:
be:3d:16:df:52:6c:f1:40:f5:c8:56:6a:d3:8f:7f:03:46:75:
a3:25:22:c6:7e:84:94:01:9a:89:e5:c3:aa:01:16:82:6b:2f:
a8:4e:9e:36:16:e7:83:20:98:46:cf:52:82:3a:8e:12:3a:24:
30:3b:65:04:e4:b9:eb:ad:da:9d:bf:08:ac:96:57:c8:a4:cd:
e0:03:23:24:70:3c:8a:50:8d:c1:fe:a2:c1:2b:0d:68:ef:b8:
e4:87:34:63:3b:45:df:34:61:42:a3:9d:c8:dc:19:b1:31:6d:
c4:6c:f8:ec
-----BEGIN CERTIFICATE-----
MIIFNjCCBB6gAwIBAgIUd5nGb0iFn9QRsi6M7M8fGIpnb6IwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZThiMjljZjFiN2U3Yjk0ZjYzNmVkYTc1ZTIyOTk4NzM2
NGE0MGQ0ZDAeFw0yNDA2MDQxMTUxMjJaFw0yNTA2MDMxMTU2MjJaMDMxMTAvBgNV
BAMTKDY1RTIwMDU0NzBGNkMyNjJFRUFFNkM1QzA3MjE1MEU4MjAyNkIwODIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCFY+KtykEF2sUoklagetyCTwEv
XmyrAsBseddAG6fYwRlcL7+dA/B/2RG4T2Gkz1GwO9hrWCyoar5QpxKvRNdEJf5C
XdXRJmPik/h8ddzjEcEknOzHraoaF/W+Xbf6j2GYZRoPulCpU2ZiBHNOOPcKT4p+
VhXtwGbH5230GdQ5bpKVW+dYvFv03hJu1YLKlEkd1QgUzBfcCez+F82mi58Ae0e/
0bxzve63Qr0f7XKAS9/BO80i8tjCySaYCAK7UVd5YC33wpgL3KzyrmTPSBPkA+YC
zLGlWo3bjJRdcEjb1IASmHdSbARQJAwGu51C/wtgkG0NcwudA5Hwn7V8684bAgMB
AAGjggJAMIICPDAdBgNVHQ4EFgQUZeIAVHD2wmLurmxcByFQ6CAmsIIwHwYDVR0j
BBgwFoAU6LKc8bfnuU9jbtp14imYc2SkDU0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvY2M4ZmY3YTktNTRiYi00MmE1LWI1ODQtMWM2Njg0MDYy
ZDhhLzAvRThCMjlDRjFCN0U3Qjk0RjYzNkVEQTc1RTIyOTk4NzM2NEE0MEQ0RC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzZMS2M4YmZudVU5amJ0cDE0aW1ZYzJT
a0RVMC5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvY2M4ZmY3YTkt
NTRiYi00MmE1LWI1ODQtMWM2Njg0MDYyZDhhLzAvMzI2MTMxMzMzYTM5MzUzMDMw
M2E2NTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDM5MzAzMDM5LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcA
KhOVAAAOMA0GCSqGSIb3DQEBCwUAA4IBAQBweNtJEWUFbFcxKmDt2ylSxHacpE3I
a8dzPX6P7x2MEaKFhG9ix4KJBHKsuNCjhKovkX248cUbAe6bUa5QisgQvcMYAjl1
tocg0e/FdgojXNY/oFCo9uSFTXyLg8iUNUFJWHLhiLaviV4fCFW0LAqWRdmOkzk3
CDSrbArNXzGEGjMR00Dz5hMsYCQcSKTOVZ6+PRbfUmzxQPXIVmrTj38DRnWjJSLG
foSUAZqJ5cOqARaCay+oTp42FueDIJhGz1KCOo4SOiQwO2UE5LnrrdqdvwisllfI
pM3gAyMkcDyKUI3B/qLBKw1o77jkhzRjO0XfNGFCo53I3BmxMW3EbPjs
-----END CERTIFICATE-----
Generated at Thu Nov 21 06:13:28 2024 by rpki-client on console-ams.rpki-client.org