Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d697160c-acc5-4b51-bf55-10c7a6e66980/3/323030313a3637633a326265383a3a2f34382d3438203d3e20323035333239.roa
File: 323030313a3637633a326265383a3a2f34382d3438203d3e20323035333239.roa (raw, json)
Hash identifier: 3wDhadYEfX0Hhy3fPxID0nH+bbX55tStnGOk9S2bMKU=
Subject key identifier: EB:5D:E4:2F:5D:1B:8B:0C:8B:A9:49:90:ED:42:C3:35:19:8D:A6:3F
Certificate issuer: /CN=d642975f535f45fd9f6d8fea626bc6d24bc9d8d8
Certificate serial: 6CD79ACDD9764E14836B451B1D93CFC23D60D39E
Authority key identifier: D6:42:97:5F:53:5F:45:FD:9F:6D:8F:EA:62:6B:C6:D2:4B:C9:D8:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1kKXX1NfRf2fbY_qYmvG0kvJ2Ng.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d697160c-acc5-4b51-bf55-10c7a6e66980/3/323030313a3637633a326265383a3a2f34382d3438203d3e20323035333239.roa
Signing time: Fri 13 Sep 2024 20:09:37 +0000
ROA not before: Fri 13 Sep 2024 20:04:37 +0000
ROA not after: Fri 12 Sep 2025 20:09:37 +0000
asID: 205329
IP address blocks: 2001:67c:2be8::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d697160c-acc5-4b51-bf55-10c7a6e66980/3/D642975F535F45FD9F6D8FEA626BC6D24BC9D8D8.crl
rsync://rsync.paas.rpki.ripe.net/repository/d697160c-acc5-4b51-bf55-10c7a6e66980/3/D642975F535F45FD9F6D8FEA626BC6D24BC9D8D8.mft
rsync://rpki.ripe.net/repository/DEFAULT/1kKXX1NfRf2fbY_qYmvG0kvJ2Ng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:d7:9a:cd:d9:76:4e:14:83:6b:45:1b:1d:93:cf:c2:3d:60:d3:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d642975f535f45fd9f6d8fea626bc6d24bc9d8d8
Validity
Not Before: Sep 13 20:04:37 2024 GMT
Not After : Sep 12 20:09:37 2025 GMT
Subject: CN=EB5DE42F5D1B8B0C8BA94990ED42C335198DA63F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:3c:70:34:44:e3:ea:bd:c8:58:9e:64:1e:f9:
02:b1:12:8f:ba:f1:0b:30:c3:f6:9a:3d:9d:0d:1a:
df:32:ec:67:c7:a0:f0:fc:96:0e:81:87:d4:cf:b8:
42:db:c8:58:92:81:6a:63:0b:4f:7d:a9:f0:a6:9d:
62:d2:69:7c:b7:39:4f:d2:20:a5:1c:64:70:81:2d:
7b:71:61:9a:a5:8a:61:d6:fe:d5:f7:f8:3b:ed:12:
e9:af:e2:dd:dd:5e:2d:e5:eb:e2:09:64:38:72:b4:
b6:db:33:c9:e3:9f:d1:ba:51:d4:58:65:b3:82:48:
48:65:df:90:33:b5:1d:dd:e9:d7:3d:90:5d:ab:7f:
e5:f2:54:63:1c:18:76:0d:b6:c5:12:8d:1f:b7:2d:
a4:85:03:e7:1e:b3:cf:b0:d7:9c:73:ad:10:41:45:
da:f2:00:8f:6d:cc:e2:b0:61:18:68:18:5e:3e:ef:
ab:0d:96:9b:b6:59:b2:97:73:5a:13:54:96:a9:f2:
b1:5f:0a:ce:3c:7e:ab:e8:6f:3e:95:e7:36:68:ba:
6d:69:36:03:19:19:d0:90:77:cf:74:e6:7a:dd:68:
0a:7e:fe:1c:72:3c:01:cc:fe:d0:96:fe:33:c8:dc:
b3:91:e7:26:52:09:bb:ab:52:a0:c1:db:6d:cd:0f:
d2:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:5D:E4:2F:5D:1B:8B:0C:8B:A9:49:90:ED:42:C3:35:19:8D:A6:3F
X509v3 Authority Key Identifier:
keyid:D6:42:97:5F:53:5F:45:FD:9F:6D:8F:EA:62:6B:C6:D2:4B:C9:D8:D8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d697160c-acc5-4b51-bf55-10c7a6e66980/3/D642975F535F45FD9F6D8FEA626BC6D24BC9D8D8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1kKXX1NfRf2fbY_qYmvG0kvJ2Ng.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d697160c-acc5-4b51-bf55-10c7a6e66980/3/323030313a3637633a326265383a3a2f34382d3438203d3e20323035333239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2be8::/48
Signature Algorithm: sha256WithRSAEncryption
71:4d:a5:09:5c:b3:f0:4c:93:01:1f:db:78:10:c1:e0:11:a4:
96:4a:3e:c5:4f:74:a9:6f:72:8d:53:c1:20:56:c4:78:91:b0:
72:d5:57:5e:0b:77:dc:97:27:4e:3e:f1:8c:75:3a:be:12:7e:
87:85:1b:3b:71:e8:d7:80:f7:61:5b:65:d3:16:24:58:8c:5f:
49:4f:7e:2a:bc:aa:26:7b:a1:36:17:05:6a:05:2d:13:bf:70:
48:93:96:4e:f8:89:f6:97:c9:31:cd:df:5f:af:fc:1e:0a:a0:
31:4b:31:46:fb:5d:5a:7a:b3:8a:a0:fb:f4:b4:a1:fb:e0:b2:
5e:d1:8d:1f:87:63:29:0d:5b:79:c9:cd:08:99:5f:b4:0a:2b:
c5:32:a7:6c:aa:8f:87:20:2b:53:b3:55:cc:fc:da:a6:48:d5:
1b:d1:fe:6e:64:57:97:3f:e1:d4:e1:99:1b:62:da:1e:c3:23:
42:10:69:c5:ef:3d:42:5c:f8:ec:87:7c:06:27:60:d4:54:f2:
42:87:d4:4d:e8:bd:f7:f6:87:a9:cc:28:56:a3:dc:5c:3c:c3:
c7:21:fd:64:c7:39:a6:fa:1c:c2:5d:d2:b2:8d:cf:99:16:21:
d9:9f:08:40:1c:ee:9e:b9:63:8b:50:40:c6:f4:32:8d:d3:4b:
61:79:9b:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 04:49:09 2024 by rpki-client on console-ams.rpki-client.org