Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/326131333a393634343a323232303a3a2f34342d3438203d3e20323134393932.roa
File: 326131333a393634343a323232303a3a2f34342d3438203d3e20323134393932.roa (raw, json)
Hash identifier: jXKKUMSDIyTb4ezvVpRo3NFIUpia25d8OkLWehTc52I=
Subject key identifier: 52:45:A8:53:2B:02:03:4A:9F:64:5E:79:7D:85:98:78:7D:46:23:AB
Certificate issuer: /CN=f1d0572fe72991bd32854bac716676ebdad22ace
Certificate serial: 507FCEAAD525A74AA06EC3A6E6A6369F26C2E248
Authority key identifier: F1:D0:57:2F:E7:29:91:BD:32:85:4B:AC:71:66:76:EB:DA:D2:2A:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/326131333a393634343a323232303a3a2f34342d3438203d3e20323134393932.roa
Signing time: Thu 08 Aug 2024 15:15:35 +0000
ROA not before: Thu 08 Aug 2024 15:10:35 +0000
ROA not after: Thu 07 Aug 2025 15:15:35 +0000
asID: 214992
IP address blocks: 2a13:9644:2220::/44 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl
rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft
rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 14:21:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:7f:ce:aa:d5:25:a7:4a:a0:6e:c3:a6:e6:a6:36:9f:26:c2:e2:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d0572fe72991bd32854bac716676ebdad22ace
Validity
Not Before: Aug 8 15:10:35 2024 GMT
Not After : Aug 7 15:15:35 2025 GMT
Subject: CN=5245A8532B02034A9F645E797D8598787D4623AB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:a0:60:bf:13:db:17:1f:5d:35:e4:29:fa:18:
03:05:44:9c:57:59:87:62:e3:ed:20:11:fd:34:ab:
b3:46:ee:d4:ab:78:b7:b9:1d:5b:68:5b:65:3a:1c:
78:02:8d:70:82:64:ec:0d:6c:27:ae:82:bd:79:52:
4b:72:ba:f1:9a:18:8a:d7:4a:93:36:6e:e7:6e:00:
73:cb:ea:8e:0d:f6:56:4d:cf:3f:fc:44:12:2a:8f:
78:cb:9a:55:0d:3a:f4:b6:3d:c4:b7:a2:49:ea:69:
4d:6d:ae:4d:12:87:76:05:59:00:67:9d:94:f4:11:
07:04:52:cc:d0:9c:c8:f9:59:74:e7:54:79:93:88:
15:91:8f:c2:57:5d:b1:f6:d7:1d:8d:b8:41:aa:6e:
b8:06:b9:13:d5:dc:ba:17:f6:fa:62:d6:ca:ca:22:
f2:6d:03:eb:0b:3e:ca:b8:00:e2:f9:63:43:28:b4:
11:95:26:91:16:bc:2d:bf:bd:1c:40:6b:01:3f:ce:
2d:0a:b1:af:7c:bd:a3:6c:94:32:6e:bb:fd:df:42:
0f:ae:a4:31:fd:be:34:36:90:69:8f:8d:1f:0f:48:
23:44:21:ff:74:92:4a:12:87:c3:e9:e7:ad:ff:54:
af:42:a9:97:b7:ce:8f:78:e5:fd:c5:43:35:3a:23:
1c:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:45:A8:53:2B:02:03:4A:9F:64:5E:79:7D:85:98:78:7D:46:23:AB
X509v3 Authority Key Identifier:
keyid:F1:D0:57:2F:E7:29:91:BD:32:85:4B:AC:71:66:76:EB:DA:D2:2A:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/326131333a393634343a323232303a3a2f34342d3438203d3e20323134393932.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9644:2220::/44
Signature Algorithm: sha256WithRSAEncryption
62:95:3b:3a:4e:6e:59:17:20:76:5f:19:75:b3:35:38:0a:4c:
a2:42:36:12:93:24:d2:79:ae:ad:09:05:34:13:96:d2:f3:76:
eb:e3:48:8e:b1:e7:83:e6:4c:db:18:34:0d:c7:71:0b:3b:63:
c8:fe:70:b2:45:93:76:79:a3:09:40:b9:be:2b:9b:67:92:20:
d8:e8:27:4d:7c:fe:00:ed:d9:1b:96:56:0d:a7:61:22:7a:f1:
e5:69:86:59:69:1b:b8:6c:f9:0f:f9:c2:49:6a:9e:d9:ac:69:
57:86:90:6b:7a:1d:15:2a:37:5b:f6:c6:95:06:9b:95:60:e7:
4b:23:83:1e:c8:96:26:25:26:06:87:42:f9:08:58:b1:23:13:
e0:be:64:39:c0:37:6e:01:8c:b0:ad:99:a9:59:0d:c0:d5:fe:
7e:f8:70:bf:45:93:27:0c:38:dc:a0:9c:1d:e5:b1:59:79:cc:
69:53:4e:aa:e0:30:d7:ef:53:ce:52:c9:60:2e:fc:fa:d7:fc:
c1:d9:c3:e5:72:7f:7f:aa:d7:71:9b:fd:cc:3f:aa:0b:81:12:
24:2d:76:0a:a0:6a:86:7c:44:7c:36:19:6a:3b:3a:cc:4e:46:
e6:ff:d1:a7:ff:5a:39:b8:37:d6:e9:c4:b3:15:5f:5e:d0:a6:
13:d7:4c:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 28 19:49:41 2024 by rpki-client on console-fra.rpki-client.org