Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/326131333a393634303a3a2f34342d3434203d3e203532313132.roa
File: 326131333a393634303a3a2f34342d3434203d3e203532313132.roa (raw, json)
Hash identifier: Fa+HJyGeN4OUII4mISEevZUyzThis5w7MVhgz+1adr4=
Subject key identifier: 96:C6:46:68:74:B6:7E:12:2A:91:13:1E:81:30:CF:08:E0:DC:C0:1C
Certificate issuer: /CN=f1d0572fe72991bd32854bac716676ebdad22ace
Certificate serial: 076FF1BCFAC5CCBD28CDD865FEB832C4500F0E50
Authority key identifier: F1:D0:57:2F:E7:29:91:BD:32:85:4B:AC:71:66:76:EB:DA:D2:2A:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/326131333a393634303a3a2f34342d3434203d3e203532313132.roa
Signing time: Thu 08 Aug 2024 15:13:14 +0000
ROA not before: Thu 08 Aug 2024 15:08:14 +0000
ROA not after: Thu 07 Aug 2025 15:13:14 +0000
asID: 52112
IP address blocks: 2a13:9640::/44 maxlen: 44
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl
rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft
rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 10:47:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:6f:f1:bc:fa:c5:cc:bd:28:cd:d8:65:fe:b8:32:c4:50:0f:0e:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d0572fe72991bd32854bac716676ebdad22ace
Validity
Not Before: Aug 8 15:08:14 2024 GMT
Not After : Aug 7 15:13:14 2025 GMT
Subject: CN=96C6466874B67E122A91131E8130CF08E0DCC01C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:bc:f9:4a:33:77:4c:45:79:a2:ee:74:ec:12:
2d:df:a7:2e:5b:22:0c:90:91:7d:f6:45:cc:44:43:
22:9b:b0:a5:45:63:91:41:5f:60:ac:7e:a9:2a:f8:
95:de:5c:7d:01:72:2f:e5:a6:1a:69:5a:66:27:f0:
34:e4:e5:8c:2c:6d:06:46:1d:a8:75:1f:f6:30:0d:
bb:e4:42:76:9c:71:7c:b9:40:bd:4e:24:c5:6f:c4:
b4:a4:00:9e:91:76:e2:69:9f:b6:13:68:84:d4:35:
35:5f:51:ac:6c:02:3b:71:e0:48:de:aa:07:09:6b:
87:29:af:3f:17:d4:84:15:76:85:64:25:c0:20:2b:
43:d3:92:ff:a2:a6:08:38:83:63:83:4b:38:54:c3:
4d:40:23:43:6e:49:96:20:4c:03:8f:ff:d8:8d:6d:
72:6d:4c:de:49:8a:20:b9:eb:d1:5f:61:8a:60:43:
0c:47:bd:f4:89:3f:01:62:7f:c2:0c:99:2d:ea:a3:
61:26:a1:23:98:5e:e1:89:40:4b:ed:b1:8c:7c:a5:
6b:70:e5:6c:6b:41:5e:28:b9:69:a0:80:91:ed:5f:
64:6f:da:22:3c:6c:99:ca:5e:09:24:a9:9b:26:f5:
7a:34:5d:77:5c:b9:4a:d3:36:09:1a:e5:ab:a3:ed:
1d:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:C6:46:68:74:B6:7E:12:2A:91:13:1E:81:30:CF:08:E0:DC:C0:1C
X509v3 Authority Key Identifier:
keyid:F1:D0:57:2F:E7:29:91:BD:32:85:4B:AC:71:66:76:EB:DA:D2:2A:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/326131333a393634303a3a2f34342d3434203d3e203532313132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9640::/44
Signature Algorithm: sha256WithRSAEncryption
ab:64:55:10:67:a2:2a:be:58:fb:65:9d:2c:c8:7c:8a:3f:e7:
f0:db:c0:d6:3f:74:42:5b:4b:ec:ee:a1:5e:81:c2:31:08:61:
5d:1a:ac:b6:89:8f:3c:a5:a1:a5:24:69:f0:6d:d5:26:d4:b7:
c5:30:85:af:9d:ed:61:82:0b:9c:63:32:6e:c9:7e:90:19:af:
39:14:e6:d8:b1:e3:16:a1:f0:ca:93:d3:39:22:e5:a2:9c:95:
81:8f:16:e3:10:49:5c:5d:d5:9d:38:49:36:f8:2a:fd:ad:a7:
6a:bb:8a:a6:1b:cb:73:fa:54:39:09:fb:11:99:25:da:a8:b1:
fb:7c:97:6a:b9:14:b0:41:7d:a1:cf:d8:6a:a3:75:03:85:d3:
ab:d1:82:60:0f:2a:f6:c1:7d:62:9e:8c:95:91:8b:8a:4b:87:
a6:7f:c7:64:a9:bd:94:b3:d6:3f:9d:d0:13:9b:09:76:82:2c:
ec:81:06:29:7d:db:08:2f:1c:37:47:a5:d2:49:0b:e3:da:0a:
80:89:f3:7d:f7:83:48:c2:24:48:0b:93:7e:24:be:f6:12:80:
26:99:6e:22:03:a6:79:17:97:92:29:08:68:7b:30:28:22:63:
fb:9d:59:44:00:42:58:05:3a:05:80:a1:e5:15:0a:e8:d9:bd:
82:bd:e7:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:27:26 2025 by rpki-client