Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cce00cf9-04a5-43d1-8b89-edfa60cd8d4a/2/323030313a3637633a313139303a3a2f34382d3438203d3e20323130303839.roa
File: 323030313a3637633a313139303a3a2f34382d3438203d3e20323130303839.roa (raw, json)
Hash identifier: G0pJKexFl5iJSj7RvTDDHGwylbeAPcm6mkIGuJ7MB4g=
Subject key identifier: 9C:2E:F4:AD:80:A4:85:E3:74:58:66:29:9E:0F:0B:1E:04:FE:BF:CC
Certificate issuer: /CN=926cb33722a3493216283dc80cae0ee9d58874f2
Certificate serial: 5DEE331476687C15EE16C17599CB060A3AEE25CF
Authority key identifier: 92:6C:B3:37:22:A3:49:32:16:28:3D:C8:0C:AE:0E:E9:D5:88:74:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kmyzNyKjSTIWKD3IDK4O6dWIdPI.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cce00cf9-04a5-43d1-8b89-edfa60cd8d4a/2/323030313a3637633a313139303a3a2f34382d3438203d3e20323130303839.roa
Signing time: Sat 19 Oct 2024 00:48:26 +0000
ROA not before: Sat 19 Oct 2024 00:43:26 +0000
ROA not after: Sat 18 Oct 2025 00:48:26 +0000
asID: 210089
IP address blocks: 2001:67c:1190::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cce00cf9-04a5-43d1-8b89-edfa60cd8d4a/2/926CB33722A3493216283DC80CAE0EE9D58874F2.crl
rsync://rsync.paas.rpki.ripe.net/repository/cce00cf9-04a5-43d1-8b89-edfa60cd8d4a/2/926CB33722A3493216283DC80CAE0EE9D58874F2.mft
rsync://rpki.ripe.net/repository/DEFAULT/kmyzNyKjSTIWKD3IDK4O6dWIdPI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 14:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:ee:33:14:76:68:7c:15:ee:16:c1:75:99:cb:06:0a:3a:ee:25:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=926cb33722a3493216283dc80cae0ee9d58874f2
Validity
Not Before: Oct 19 00:43:26 2024 GMT
Not After : Oct 18 00:48:26 2025 GMT
Subject: CN=9C2EF4AD80A485E3745866299E0F0B1E04FEBFCC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:fe:f4:4b:c1:8c:4c:ec:70:fc:fd:94:a0:3a:
f1:3a:50:1f:14:ef:68:5c:d2:4c:16:ab:1b:e0:e5:
bd:b8:37:88:7f:d2:22:00:92:77:ba:29:90:a3:aa:
3b:64:2f:a0:8e:8d:c6:af:a2:70:81:88:69:36:75:
27:3e:49:c0:51:63:60:36:0b:8e:a5:26:04:82:46:
2c:11:b1:ba:4a:4b:a4:00:ca:cb:d5:36:bb:6a:89:
e9:8b:6e:9e:5b:66:74:07:64:4f:56:df:6a:a3:a1:
e9:5e:90:fb:9b:47:1c:f3:ee:66:7c:06:14:78:9f:
e3:99:98:2a:aa:3e:73:57:93:c6:20:96:b2:92:97:
d8:7b:82:6c:02:fd:0c:77:c9:10:44:12:9c:04:d5:
f8:a2:6d:49:4e:06:36:59:55:e7:13:c7:11:80:84:
fd:1a:31:2c:1b:bc:92:48:28:ad:4a:74:8b:45:0e:
6e:3d:da:07:9f:0b:b7:9e:b7:e2:10:a9:cf:23:98:
fa:c7:3a:6a:03:a2:83:5a:a2:97:37:21:6a:51:b1:
c3:60:ae:f0:98:1a:b9:82:77:70:9e:2e:61:07:b0:
64:8d:c2:39:8f:77:b0:29:05:a7:bf:0f:33:ed:9d:
48:8d:51:dc:28:7a:cf:ad:08:55:0e:a4:68:d1:98:
a6:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:2E:F4:AD:80:A4:85:E3:74:58:66:29:9E:0F:0B:1E:04:FE:BF:CC
X509v3 Authority Key Identifier:
keyid:92:6C:B3:37:22:A3:49:32:16:28:3D:C8:0C:AE:0E:E9:D5:88:74:F2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/cce00cf9-04a5-43d1-8b89-edfa60cd8d4a/2/926CB33722A3493216283DC80CAE0EE9D58874F2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kmyzNyKjSTIWKD3IDK4O6dWIdPI.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cce00cf9-04a5-43d1-8b89-edfa60cd8d4a/2/323030313a3637633a313139303a3a2f34382d3438203d3e20323130303839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:1190::/48
Signature Algorithm: sha256WithRSAEncryption
cc:37:da:6b:22:1d:5f:f9:61:26:75:03:17:bb:cf:92:e5:2a:
b8:e0:7d:06:60:b5:46:90:0f:a7:3d:69:bb:e6:eb:f5:81:ab:
6b:34:99:9c:91:2f:83:1e:1b:88:39:6d:41:a8:8b:9e:ff:cf:
f4:40:35:e9:0e:1f:ac:21:96:cd:4e:e7:89:92:32:d3:45:a8:
c5:1b:d2:b9:bd:66:f6:83:d3:55:c5:87:39:54:42:bd:67:58:
ef:3d:4a:6b:40:cf:eb:17:2b:c9:5d:b4:54:f8:2b:83:f9:d0:
83:ca:e2:44:42:e9:35:df:8c:6a:82:2e:e6:5b:8f:8c:8f:48:
1b:11:58:b5:2e:65:59:cd:ad:83:eb:1f:54:d5:4b:a5:66:ae:
13:d7:b1:f5:8f:36:60:e3:17:e3:7b:75:ef:b5:38:23:e2:4a:
37:65:a8:35:23:10:67:3e:e7:13:0c:f7:5f:e5:c7:a2:f6:76:
bc:8e:ff:50:29:44:00:bd:69:cf:fc:df:d2:2d:59:72:51:ea:
38:88:16:db:4d:e9:06:95:77:c0:f9:98:3b:48:68:35:38:81:
14:8d:19:a0:2e:63:93:08:82:54:8e:b6:4c:8a:e6:15:bf:0d:
78:83:97:7b:ce:79:f2:ce:89:e2:78:02:33:79:6d:70:81:37:
bd:c5:3f:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:14:51 2025 by rpki-client