Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cce00cf9-04a5-43d1-8b89-edfa60cd8d4a/2/323030313a3637633a313139303a3a2f34382d3438203d3e20323130303839.roa
File: 323030313a3637633a313139303a3a2f34382d3438203d3e20323130303839.roa (raw, json)
Hash identifier: Lh5KMLm7mwgZk2ZmxkMLZtICIwnXtCbc0DARbxpnKmg=
Subject key identifier: 5F:5B:2B:9C:73:90:D6:46:80:00:1D:30:76:B6:E9:3E:20:35:60:DF
Certificate issuer: /CN=926cb33722a3493216283dc80cae0ee9d58874f2
Certificate serial: 2C138D87A27A93D58E2EAD7EF3593879025C5B81
Authority key identifier: 92:6C:B3:37:22:A3:49:32:16:28:3D:C8:0C:AE:0E:E9:D5:88:74:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kmyzNyKjSTIWKD3IDK4O6dWIdPI.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cce00cf9-04a5-43d1-8b89-edfa60cd8d4a/2/323030313a3637633a313139303a3a2f34382d3438203d3e20323130303839.roa
Signing time: Sat 18 Nov 2023 00:33:54 +0000
ROA not before: Sat 18 Nov 2023 00:28:54 +0000
ROA not after: Sat 16 Nov 2024 00:33:54 +0000
asID: 210089
IP address blocks: 2001:67c:1190::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cce00cf9-04a5-43d1-8b89-edfa60cd8d4a/2/926CB33722A3493216283DC80CAE0EE9D58874F2.crl
rsync://rsync.paas.rpki.ripe.net/repository/cce00cf9-04a5-43d1-8b89-edfa60cd8d4a/2/926CB33722A3493216283DC80CAE0EE9D58874F2.mft
rsync://rpki.ripe.net/repository/DEFAULT/kmyzNyKjSTIWKD3IDK4O6dWIdPI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 14:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:13:8d:87:a2:7a:93:d5:8e:2e:ad:7e:f3:59:38:79:02:5c:5b:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=926cb33722a3493216283dc80cae0ee9d58874f2
Validity
Not Before: Nov 18 00:28:54 2023 GMT
Not After : Nov 16 00:33:54 2024 GMT
Subject: CN=5F5B2B9C7390D64680001D3076B6E93E203560DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:18:57:3c:b8:57:7e:61:c5:fd:58:eb:23:7c:
61:52:84:13:80:4a:b5:6e:49:85:a2:c3:82:c1:d4:
48:1c:3e:d5:40:50:1a:35:96:ca:62:b6:89:58:ab:
8b:23:ca:a1:03:3e:16:ab:5f:ad:76:b8:d1:4d:f1:
84:e5:c4:ab:ee:d5:fc:76:78:24:4d:7c:8e:ca:01:
5c:0e:55:46:60:fc:fe:87:d6:97:44:65:90:58:6f:
0a:3b:67:b2:d1:00:78:6c:95:d3:bc:18:58:36:ea:
04:f7:75:0b:41:12:3a:b2:8e:75:26:54:47:b8:1f:
6a:05:8c:a0:a0:1b:e7:eb:cc:d7:61:90:83:ce:cf:
e7:fe:a5:2f:be:01:09:15:3d:fd:f1:83:11:d6:44:
08:e3:a0:75:5c:ea:75:5c:64:52:53:2b:2c:3e:73:
0e:f8:8b:65:a2:39:29:95:63:6f:5b:f9:ab:d1:35:
84:b7:f1:82:01:b0:4b:42:21:e1:35:00:ac:11:e6:
bc:43:d2:35:f2:b7:43:b4:cc:94:6b:a7:fb:be:87:
44:87:b8:6e:25:44:f8:83:5e:f5:f4:e3:6f:d8:29:
79:f4:83:65:2b:e1:19:43:21:97:c6:b3:da:10:2c:
49:47:fa:b2:31:ce:99:84:83:e1:0a:18:11:2e:ba:
1b:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:5B:2B:9C:73:90:D6:46:80:00:1D:30:76:B6:E9:3E:20:35:60:DF
X509v3 Authority Key Identifier:
keyid:92:6C:B3:37:22:A3:49:32:16:28:3D:C8:0C:AE:0E:E9:D5:88:74:F2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/cce00cf9-04a5-43d1-8b89-edfa60cd8d4a/2/926CB33722A3493216283DC80CAE0EE9D58874F2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kmyzNyKjSTIWKD3IDK4O6dWIdPI.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cce00cf9-04a5-43d1-8b89-edfa60cd8d4a/2/323030313a3637633a313139303a3a2f34382d3438203d3e20323130303839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:1190::/48
Signature Algorithm: sha256WithRSAEncryption
1a:d8:6f:53:49:b5:a4:69:55:18:1d:61:30:2f:79:15:3a:eb:
63:27:c4:8f:37:c4:b0:a9:53:f9:9b:ce:c9:38:11:bf:6a:d9:
02:a1:d4:7e:90:0a:2f:9f:1d:30:3b:07:f3:1b:93:8f:37:2b:
ca:86:7c:6e:f9:f2:68:ec:16:4b:3d:f8:21:d4:d1:ea:e0:39:
45:58:a5:10:5c:ef:7c:0d:cd:8f:40:04:d8:c6:77:ef:88:bb:
66:32:1d:83:cf:73:d4:26:a4:4e:f2:aa:3f:82:cb:81:c1:3f:
3a:b4:50:17:a3:ab:9c:2f:f1:1e:28:9e:a0:24:3b:86:07:0d:
ab:f9:08:28:16:e7:36:39:b5:f4:1a:c5:63:b4:62:f5:65:b9:
12:5f:59:45:50:e9:01:9c:7d:38:a3:ac:ba:43:4f:8e:f2:f0:
93:69:ba:0f:91:ed:a5:fe:b9:ef:da:db:eb:1e:21:f7:61:66:
89:fe:ce:ba:9b:3c:a6:df:13:97:23:66:97:08:45:f3:dc:16:
19:0e:6f:b6:14:8b:0a:35:3a:d0:07:20:c2:8a:67:83:d8:a8:
14:77:6b:49:50:b2:c3:1e:d3:3c:54:9e:e0:bf:f7:df:bb:ea:
1d:30:6a:d3:4a:09:b5:cc:1a:8b:74:57:9c:8f:91:bb:ff:04:
c4:20:20:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 20:01:29 2024 by rpki-client on console-fra.rpki-client.org