Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530313a383030303a3a2f33332d3438203d3e20323136343734.roa
File: 326131333a393530313a383030303a3a2f33332d3438203d3e20323136343734.roa (raw, json)
Hash identifier: zxmZNsNwMtz0iXIC3cEMBCarYz5JQbM9Zg7kadAMo+s=
Subject key identifier: DE:56:0E:C8:0D:A9:AF:08:18:0B:ED:07:81:87:EC:F7:9E:18:B7:A6
Certificate issuer: /CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Certificate serial: 78268F5865761C0C9F5D648773935BA1AFB68A07
Authority key identifier: E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530313a383030303a3a2f33332d3438203d3e20323136343734.roa
Signing time: Mon 06 May 2024 12:17:51 +0000
ROA not before: Mon 06 May 2024 12:12:51 +0000
ROA not after: Mon 05 May 2025 12:17:51 +0000
asID: 216474
IP address blocks: 2a13:9501:8000::/33 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.mft
rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Jun 2024 16:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:26:8f:58:65:76:1c:0c:9f:5d:64:87:73:93:5b:a1:af:b6:8a:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b29cf1b7e7b94f636eda75e229987364a40d4d
Validity
Not Before: May 6 12:12:51 2024 GMT
Not After : May 5 12:17:51 2025 GMT
Subject: CN=DE560EC80DA9AF08180BED078187ECF79E18B7A6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:1c:a0:3f:af:98:18:40:e2:8e:37:e5:54:53:
06:e1:62:83:a7:3f:2c:59:6d:8d:2e:08:a6:f1:c9:
c1:3f:e1:88:0f:5f:fd:0d:94:1b:d0:9b:9b:aa:08:
44:05:93:59:5b:25:b9:f1:30:96:9e:5a:c4:39:2e:
d3:f9:60:96:cd:d7:e1:fb:1d:a8:1b:c5:42:7c:67:
7d:83:dc:ca:16:9b:1c:46:6c:33:fa:cd:96:62:1d:
14:bb:65:2b:29:c7:f6:ca:6f:30:98:42:90:fc:38:
2b:b6:fc:d4:81:c3:b1:6d:79:31:78:e8:a6:7a:3a:
ae:38:1f:62:c8:7a:d9:0b:03:09:f5:7e:e0:37:0c:
e1:2c:02:46:02:6e:e9:29:b9:bb:ea:eb:3f:60:34:
ed:74:24:3a:fb:5f:80:51:bc:17:a5:67:2d:12:1a:
0d:a9:e2:91:ff:3b:fb:50:46:a3:44:ce:a3:49:72:
b0:56:43:44:85:2c:24:27:12:f8:45:3b:65:9d:9c:
2b:e9:fc:2a:a7:0b:63:67:c0:65:08:13:0d:9c:2c:
7d:d0:83:27:ce:2c:23:a2:2a:3e:2d:79:55:fc:ab:
cd:13:67:a1:d2:ef:ab:f5:23:94:21:ed:a7:1a:19:
9a:89:f9:be:de:6e:4b:75:1a:65:58:ab:24:33:91:
5a:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:56:0E:C8:0D:A9:AF:08:18:0B:ED:07:81:87:EC:F7:9E:18:B7:A6
X509v3 Authority Key Identifier:
keyid:E8:B2:9C:F1:B7:E7:B9:4F:63:6E:DA:75:E2:29:98:73:64:A4:0D:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/E8B29CF1B7E7B94F636EDA75E229987364A40D4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LKc8bfnuU9jbtp14imYc2SkDU0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cc8ff7a9-54bb-42a5-b584-1c6684062d8a/0/326131333a393530313a383030303a3a2f33332d3438203d3e20323136343734.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9501:8000::/33
Signature Algorithm: sha256WithRSAEncryption
31:89:3f:31:1d:f9:df:2a:a6:35:51:cb:68:a2:9c:3f:65:91:
1e:55:9e:70:ad:d4:79:c9:c9:a9:bd:23:8e:59:d8:aa:ab:0c:
af:b2:e1:31:1b:27:b3:c1:39:bf:b9:d9:fa:84:78:91:46:79:
ca:bd:9c:b5:5e:68:93:8b:07:a2:2c:e0:20:94:eb:28:00:77:
c2:ee:07:ac:f8:a5:74:33:26:e1:0c:1e:04:71:5f:34:68:52:
94:ea:70:22:28:a9:b5:9a:fc:aa:f7:62:bc:b9:bf:07:cb:f8:
c9:7c:39:29:44:63:7c:a8:b6:11:1f:51:f6:27:26:2f:0c:73:
51:5f:32:0f:ee:36:bf:67:fa:73:01:f7:91:a0:fc:1c:2f:3e:
8b:73:a9:c4:81:c9:9a:af:67:d5:20:13:71:d0:08:05:e1:db:
e9:69:ef:30:1d:c4:f1:70:59:34:8a:03:9f:b8:0f:38:76:28:
eb:d1:4d:01:55:b7:fd:d0:86:9f:2c:84:20:19:52:58:53:f2:
4a:75:c1:c6:5c:d3:e5:d7:09:40:09:0e:23:0a:77:bf:f8:e6:
aa:f6:a8:ed:2d:54:28:cb:61:72:b7:f7:d7:08:02:a5:eb:fa:
99:33:59:6d:f7:93:1e:bc:33:03:94:38:be:d3:23:5f:75:7b:
7c:fc:3b:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 00:49:45 2024 by rpki-client on console-ams.rpki-client.org