Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a663a3a2f34382d3438203d3e2039303039.roa
File: 326131333a393530303a663a3a2f34382d3438203d3e2039303039.roa (raw, json)
Hash identifier: Y28Caw5O3i8o8pKH+oDf6aI/MqhUnLXjI1XJtCgc6SA=
Subject key identifier: 36:C2:E3:02:6E:0F:4E:B2:7A:4E:18:84:E4:62:0C:B1:45:96:44:EB
Certificate issuer: /CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Certificate serial: 330D2FF577DB1EF1A9A88F18C733054F6B303294
Authority key identifier: E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a663a3a2f34382d3438203d3e2039303039.roa
Signing time: Tue 04 Jun 2024 11:56:25 +0000
ROA not before: Tue 04 Jun 2024 11:51:25 +0000
ROA not after: Tue 03 Jun 2025 11:56:25 +0000
asID: 9009
IP address blocks: 2a13:9500:f::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.mft
rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:0d:2f:f5:77:db:1e:f1:a9:a8:8f:18:c7:33:05:4f:6b:30:32:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Validity
Not Before: Jun 4 11:51:25 2024 GMT
Not After : Jun 3 11:56:25 2025 GMT
Subject: CN=36C2E3026E0F4EB27A4E1884E4620CB1459644EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:74:b0:39:ff:da:d3:1d:c4:45:fc:92:88:d2:
42:39:e3:1e:77:27:bc:64:a9:cc:98:e4:b4:b2:8a:
9f:08:3e:58:3e:d6:dd:04:20:cc:b7:1a:b9:26:de:
7f:95:34:20:1c:b6:2d:d3:48:eb:db:79:44:af:ad:
79:59:2e:8a:7c:b3:0f:c4:34:5f:08:a2:81:10:e5:
64:7b:41:51:99:ac:72:ba:0f:a9:3d:7e:6e:95:1e:
3a:d9:38:a0:25:36:90:d2:bb:d5:be:15:0c:48:35:
14:66:7d:75:7b:00:02:36:84:5c:ed:53:f0:d8:1b:
68:e7:bc:3e:e9:ce:fb:20:b7:9b:24:8d:9c:2b:03:
26:b1:88:4e:25:45:b4:5c:0f:d0:c5:3c:a6:c9:8d:
4d:fd:32:81:32:ff:6c:56:06:52:9e:5c:0d:0b:a8:
cb:52:6b:46:19:eb:5d:39:6f:52:2c:5e:0d:d7:06:
8a:72:8c:19:d0:44:53:3c:e8:e2:ea:4f:8a:0d:13:
bd:d9:1f:d4:c6:78:47:99:4f:05:b5:3b:ca:64:65:
58:f1:ec:8b:e0:53:03:40:2a:51:d5:86:d6:99:bc:
0c:1b:e5:0a:f1:59:a2:66:a4:38:a8:65:43:16:95:
58:76:43:f5:d6:1d:d7:34:ba:23:ce:f0:5e:24:11:
f9:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:C2:E3:02:6E:0F:4E:B2:7A:4E:18:84:E4:62:0C:B1:45:96:44:EB
X509v3 Authority Key Identifier:
keyid:E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530303a663a3a2f34382d3438203d3e2039303039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:f::/48
Signature Algorithm: sha256WithRSAEncryption
98:0b:a6:2a:ea:a0:b9:40:ab:08:80:a7:34:c4:3e:cf:57:d4:
61:45:a0:75:97:d7:de:42:38:6d:dd:05:95:47:7e:33:0d:f2:
8d:5e:93:e0:93:21:b6:63:d7:cc:91:c8:4a:94:fa:e2:2b:2e:
b0:ed:eb:80:ce:0a:dd:df:b2:5e:4e:dc:a9:97:a7:7d:d9:43:
e5:c2:5a:f6:ce:92:e7:38:d4:d1:8c:e2:15:65:41:14:ce:54:
37:3d:a1:64:44:76:67:d1:af:7f:e1:a8:8e:64:07:84:a0:75:
b8:78:ce:80:ae:6a:5d:35:b3:05:59:21:20:3a:52:05:41:88:
47:a4:37:a4:99:33:53:30:37:d7:07:db:cc:7a:ac:86:55:6a:
86:33:90:0f:ea:17:b2:81:8b:2d:8d:8b:ff:04:a4:8e:6c:b8:
9e:a4:77:84:89:aa:6f:0e:19:a6:8e:05:13:fe:b4:ff:79:62:
b8:c0:e8:b2:7a:37:3c:39:82:8f:34:e5:d4:af:ff:a4:de:db:
8b:8d:95:32:36:5e:98:33:9f:12:73:4d:f6:4f:d8:16:8d:da:
1e:1c:a5:05:9d:7e:83:df:36:ee:bb:9a:52:26:30:8c:77:3e:
b4:b6:b4:5f:15:9d:f6:72:b1:72:0a:a4:99:4c:e1:4f:95:95:
d9:73:76:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 00:59:20 2024 by rpki-client on console-fra.rpki-client.org