Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cce00cf9-04a5-43d1-8b89-edfa60cd8d4a/2/323030313a3637633a313139303a626162653a3a2f36342d3634203d3e203537373832.roa
File: 323030313a3637633a313139303a626162653a3a2f36342d3634203d3e203537373832.roa (raw, json)
Hash identifier: RCmAOCWp56fUz3XqW5oTa3hF40AXItoUIhybXM0iF44=
Subject key identifier: FD:8D:A1:CC:9C:17:7A:11:12:A9:83:52:57:60:D9:83:C4:89:AC:85
Certificate issuer: /CN=926cb33722a3493216283dc80cae0ee9d58874f2
Certificate serial: 0E60FC2BB9613E91297A054021C59F200115BB41
Authority key identifier: 92:6C:B3:37:22:A3:49:32:16:28:3D:C8:0C:AE:0E:E9:D5:88:74:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kmyzNyKjSTIWKD3IDK4O6dWIdPI.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cce00cf9-04a5-43d1-8b89-edfa60cd8d4a/2/323030313a3637633a313139303a626162653a3a2f36342d3634203d3e203537373832.roa
Signing time: Sat 18 Nov 2023 00:33:54 +0000
ROA not before: Sat 18 Nov 2023 00:28:54 +0000
ROA not after: Sat 16 Nov 2024 00:33:54 +0000
asID: 57782
IP address blocks: 2001:67c:1190:babe::/64 maxlen: 64
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cce00cf9-04a5-43d1-8b89-edfa60cd8d4a/2/926CB33722A3493216283DC80CAE0EE9D58874F2.crl
rsync://rsync.paas.rpki.ripe.net/repository/cce00cf9-04a5-43d1-8b89-edfa60cd8d4a/2/926CB33722A3493216283DC80CAE0EE9D58874F2.mft
rsync://rpki.ripe.net/repository/DEFAULT/kmyzNyKjSTIWKD3IDK4O6dWIdPI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 14:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:60:fc:2b:b9:61:3e:91:29:7a:05:40:21:c5:9f:20:01:15:bb:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=926cb33722a3493216283dc80cae0ee9d58874f2
Validity
Not Before: Nov 18 00:28:54 2023 GMT
Not After : Nov 16 00:33:54 2024 GMT
Subject: CN=FD8DA1CC9C177A1112A983525760D983C489AC85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:b9:3e:b1:19:36:d0:a9:70:15:16:bf:5b:81:
69:bd:a4:27:be:2f:19:70:f1:e8:39:05:83:49:74:
69:7c:8b:e6:24:8f:49:cd:34:63:6c:ca:41:e2:d4:
5f:04:04:a4:3c:a0:a6:e9:bf:c9:1e:d6:27:c7:4f:
4b:6e:03:d2:27:32:29:17:9f:5a:8f:dc:f4:ba:fd:
7e:d2:e6:1f:e8:a1:ed:4e:2f:b2:0d:c1:2c:c8:85:
1d:95:77:7d:6c:89:eb:d0:43:b2:41:a4:3e:0f:58:
64:43:bb:a6:3e:d8:99:13:72:ef:33:12:b0:01:58:
13:8b:43:4d:36:6b:fa:1e:3d:bf:56:51:65:17:7d:
5d:d0:77:25:8c:22:00:08:38:20:d5:be:3c:52:da:
54:b7:fb:2c:76:6c:64:1e:e5:c2:88:af:2d:74:a4:
f9:85:78:90:29:68:e8:d4:58:ed:02:a0:e7:8d:8c:
03:a4:38:42:2b:27:29:56:74:39:35:f3:61:7a:d4:
a6:2a:30:25:b8:95:66:b5:d4:92:c6:21:d8:e6:96:
40:e4:f1:06:84:1f:48:02:d7:09:07:26:dc:8f:e6:
b5:17:74:b3:13:c3:a2:3e:cc:4d:54:ee:4e:67:7d:
a0:a7:c3:f6:c2:65:97:bb:9c:b2:1b:b5:0f:39:b6:
50:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:8D:A1:CC:9C:17:7A:11:12:A9:83:52:57:60:D9:83:C4:89:AC:85
X509v3 Authority Key Identifier:
keyid:92:6C:B3:37:22:A3:49:32:16:28:3D:C8:0C:AE:0E:E9:D5:88:74:F2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/cce00cf9-04a5-43d1-8b89-edfa60cd8d4a/2/926CB33722A3493216283DC80CAE0EE9D58874F2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kmyzNyKjSTIWKD3IDK4O6dWIdPI.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cce00cf9-04a5-43d1-8b89-edfa60cd8d4a/2/323030313a3637633a313139303a626162653a3a2f36342d3634203d3e203537373832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:1190:babe::/64
Signature Algorithm: sha256WithRSAEncryption
8a:cc:ea:b1:37:75:05:0b:fa:67:04:61:3f:4a:77:78:77:01:
fd:24:38:96:fb:33:0b:be:23:c9:85:e3:39:2e:f9:6c:16:df:
4e:26:d8:ac:60:e4:2b:9b:13:fc:dd:f1:e0:ef:69:a2:06:23:
87:2a:79:8a:c6:e3:04:38:94:21:dd:ad:89:3d:cd:0b:27:4f:
b0:bb:fa:7c:ba:f3:db:16:5e:cb:5b:fa:c7:6f:47:56:32:1c:
c1:99:99:47:e6:13:b2:4e:7b:82:b3:c4:c9:97:e0:b3:25:2d:
85:07:68:cd:57:35:16:84:3e:85:5f:dc:1c:73:57:4a:71:9a:
10:58:68:c0:db:05:f4:ea:0b:6f:68:dd:cb:d2:5b:3c:a3:8e:
e0:a3:62:d2:ab:d6:ba:e0:17:02:03:3c:ad:37:6e:e9:4e:f8:
f5:3a:b9:36:ed:02:d4:ca:aa:68:ed:92:1c:7c:30:37:76:a7:
54:d5:8e:96:96:76:70:90:c8:30:f1:3e:a9:0d:6d:b7:8c:d5:
7a:bc:d9:10:a8:7c:11:f2:c8:8f:84:89:bb:2f:4c:15:be:73:
ee:7c:86:f6:ee:85:27:96:4f:b8:d3:10:5a:2b:62:de:fa:61:
d2:3c:f5:d4:fb:f1:a9:bc:fc:87:ae:41:59:55:bb:f4:9f:80:
6c:af:55:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 20:01:29 2024 by rpki-client on console-fra.rpki-client.org