Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cce00cf9-04a5-43d1-8b89-edfa60cd8d4a/2/323030313a3637633a313139303a626162653a3a2f36342d3634203d3e203537373832.roa
File: 323030313a3637633a313139303a626162653a3a2f36342d3634203d3e203537373832.roa (raw, json)
Hash identifier: vwSEUgdFJ5PPtETvmVfTCVmULHvCJLz5jSqlSjdS13k=
Subject key identifier: F7:2F:4B:EB:40:B3:12:91:9E:9A:F1:82:8A:72:71:31:6D:74:EB:1B
Certificate issuer: /CN=926cb33722a3493216283dc80cae0ee9d58874f2
Certificate serial: 0123A0CA2A827EA082926ADDAEBA8C511EC13257
Authority key identifier: 92:6C:B3:37:22:A3:49:32:16:28:3D:C8:0C:AE:0E:E9:D5:88:74:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kmyzNyKjSTIWKD3IDK4O6dWIdPI.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cce00cf9-04a5-43d1-8b89-edfa60cd8d4a/2/323030313a3637633a313139303a626162653a3a2f36342d3634203d3e203537373832.roa
Signing time: Sat 19 Oct 2024 00:48:26 +0000
ROA not before: Sat 19 Oct 2024 00:43:26 +0000
ROA not after: Sat 18 Oct 2025 00:48:26 +0000
asID: 57782
IP address blocks: 2001:67c:1190:babe::/64 maxlen: 64
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cce00cf9-04a5-43d1-8b89-edfa60cd8d4a/2/926CB33722A3493216283DC80CAE0EE9D58874F2.crl
rsync://rsync.paas.rpki.ripe.net/repository/cce00cf9-04a5-43d1-8b89-edfa60cd8d4a/2/926CB33722A3493216283DC80CAE0EE9D58874F2.mft
rsync://rpki.ripe.net/repository/DEFAULT/kmyzNyKjSTIWKD3IDK4O6dWIdPI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 19:38:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:23:a0:ca:2a:82:7e:a0:82:92:6a:dd:ae:ba:8c:51:1e:c1:32:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=926cb33722a3493216283dc80cae0ee9d58874f2
Validity
Not Before: Oct 19 00:43:26 2024 GMT
Not After : Oct 18 00:48:26 2025 GMT
Subject: CN=F72F4BEB40B312919E9AF1828A7271316D74EB1B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:9c:aa:26:36:9f:3f:fc:bf:e0:6f:1f:35:cb:
75:6d:e7:37:ad:bb:f8:e2:e9:2e:71:08:97:cf:44:
91:1c:09:6a:7b:fc:a0:e1:75:b9:ee:49:b5:d2:0a:
9d:25:63:7a:fa:c1:03:91:da:b0:34:66:18:2b:77:
a2:bd:54:81:aa:c6:28:64:54:95:33:a2:82:06:29:
eb:d5:52:da:db:95:73:f2:45:a2:e3:54:0b:9a:29:
01:1d:d2:d1:67:b2:5b:7d:04:d6:d7:95:78:b4:2b:
c6:53:82:0c:ae:38:67:09:48:90:28:05:20:e9:f9:
6a:d6:5f:f1:12:a2:d2:24:8d:35:cd:c5:ba:47:46:
90:9f:6d:70:96:36:f0:0c:90:49:8d:b3:51:d4:51:
3b:3a:8f:12:c9:e1:49:e3:15:6a:6a:74:99:9b:10:
6e:b1:0d:1d:63:2a:c3:d3:e4:18:2e:d8:73:19:74:
88:b0:8e:fb:5a:dd:55:93:21:56:2d:82:40:7e:3b:
1a:cc:18:f6:ca:c6:3d:45:f9:9f:38:80:01:47:bb:
75:e0:9b:a8:0e:ec:4e:fa:e0:4f:04:1f:d2:a3:cb:
52:dd:8b:11:02:78:bb:d8:dc:f9:34:e7:b4:10:d0:
90:51:be:09:07:11:84:74:d9:b7:03:c6:38:c4:6e:
68:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:2F:4B:EB:40:B3:12:91:9E:9A:F1:82:8A:72:71:31:6D:74:EB:1B
X509v3 Authority Key Identifier:
keyid:92:6C:B3:37:22:A3:49:32:16:28:3D:C8:0C:AE:0E:E9:D5:88:74:F2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/cce00cf9-04a5-43d1-8b89-edfa60cd8d4a/2/926CB33722A3493216283DC80CAE0EE9D58874F2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kmyzNyKjSTIWKD3IDK4O6dWIdPI.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cce00cf9-04a5-43d1-8b89-edfa60cd8d4a/2/323030313a3637633a313139303a626162653a3a2f36342d3634203d3e203537373832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:1190:babe::/64
Signature Algorithm: sha256WithRSAEncryption
d2:ac:f3:76:8e:67:b9:7f:eb:0a:31:fe:ec:08:77:37:3e:8f:
6b:fc:c6:01:52:5d:3e:49:a9:07:8a:00:26:3e:4d:36:60:5d:
6f:00:a9:65:8e:5f:c8:bb:d0:28:9a:04:0d:7a:db:56:f0:de:
86:02:a3:6a:ea:e5:a1:60:ec:74:df:65:1b:f5:6e:a5:62:e5:
e0:84:25:0d:53:59:a3:53:2c:f2:10:ea:9d:95:49:40:4c:a7:
b4:85:8c:43:4a:5f:49:fe:05:a7:6f:4f:77:f4:de:ee:14:e1:
58:83:77:a8:6d:b6:49:f2:aa:ff:bf:0d:10:26:77:65:1f:86:
cc:97:a3:e0:5e:db:03:8b:f4:74:43:0f:04:25:4f:51:32:bd:
0e:48:b5:2e:ad:35:69:02:79:73:dd:f9:5b:08:5e:13:14:1b:
00:3e:16:ff:f9:4f:a0:c4:0f:52:4b:57:c2:89:b6:14:e7:f7:
5e:db:4e:58:d3:3c:6a:16:b2:93:25:83:8f:a0:0d:95:18:c5:
8c:29:a4:f0:4d:83:5e:ab:37:d6:6a:74:ea:5a:e8:f7:0b:33:
73:90:09:1e:15:15:49:b0:1d:e0:8d:d4:15:e2:0c:42:89:04:
21:92:8b:a9:2b:ce:06:98:5a:45:0d:9d:bf:bf:b9:f3:f2:93:
d6:0f:e9:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 06:19:28 2025 by rpki-client