Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/326131333a393634343a333030303a3a2f34302d3438203d3e20323131343331.roa
File: 326131333a393634343a333030303a3a2f34302d3438203d3e20323131343331.roa (raw, json)
Hash identifier: eJSksT4tbDIQ9nxZDstLl/kGIUJo4Eck2iH/dVXoJzg=
Subject key identifier: D4:7C:B2:97:7D:25:AB:08:D5:E2:A0:B4:00:EF:D1:41:DA:E5:76:7F
Certificate issuer: /CN=f1d0572fe72991bd32854bac716676ebdad22ace
Certificate serial: 66D3E383507C5BC2D7AEA4EC104E11CBDD4F13FB
Authority key identifier: F1:D0:57:2F:E7:29:91:BD:32:85:4B:AC:71:66:76:EB:DA:D2:2A:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/326131333a393634343a333030303a3a2f34302d3438203d3e20323131343331.roa
Signing time: Thu 08 Aug 2024 15:15:15 +0000
ROA not before: Thu 08 Aug 2024 15:10:15 +0000
ROA not after: Thu 07 Aug 2025 15:15:15 +0000
asID: 211431
IP address blocks: 2a13:9644:3000::/40 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl
rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft
rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:d3:e3:83:50:7c:5b:c2:d7:ae:a4:ec:10:4e:11:cb:dd:4f:13:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d0572fe72991bd32854bac716676ebdad22ace
Validity
Not Before: Aug 8 15:10:15 2024 GMT
Not After : Aug 7 15:15:15 2025 GMT
Subject: CN=D47CB2977D25AB08D5E2A0B400EFD141DAE5767F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:be:76:95:69:6b:76:b5:c4:f5:45:12:ac:51:
e8:cf:4d:98:a8:35:2e:3b:ae:ce:2c:46:66:c8:28:
32:70:1c:61:16:32:76:cb:02:93:93:e9:b6:cf:dc:
66:64:da:97:ff:fb:ec:46:4c:db:5e:c6:fd:0a:11:
7f:8e:3a:33:33:30:f2:f0:23:79:01:c3:00:85:aa:
f6:6b:ef:84:2b:f6:d8:63:2a:2d:93:33:71:33:b9:
12:da:2e:d6:85:50:43:76:c5:e0:f7:3d:4c:39:1f:
04:3f:f5:c3:31:fa:5a:40:ab:2e:65:4e:cf:07:c5:
6c:01:4f:58:9a:77:a4:c8:24:96:20:e6:05:93:66:
f3:42:dc:01:ba:6d:fa:b4:00:37:37:a5:d5:cd:41:
f1:d1:2f:28:dd:e9:e7:14:5f:39:7f:14:17:18:38:
bc:5d:5c:4b:d0:4a:67:31:92:5a:ae:3e:b2:54:1b:
3f:d1:7e:da:56:2c:83:5b:6e:9c:ac:19:81:8f:f5:
43:7a:28:f1:dd:44:e7:c4:6e:5a:f1:d4:5a:f4:77:
1c:b5:70:45:64:ce:da:fd:4a:d6:53:75:6d:b9:18:
a0:26:22:0f:a8:5c:69:88:c1:ea:b7:9d:4c:63:71:
25:4e:10:dd:c5:04:71:2c:bf:f3:c2:10:6d:31:7c:
b8:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:7C:B2:97:7D:25:AB:08:D5:E2:A0:B4:00:EF:D1:41:DA:E5:76:7F
X509v3 Authority Key Identifier:
keyid:F1:D0:57:2F:E7:29:91:BD:32:85:4B:AC:71:66:76:EB:DA:D2:2A:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/326131333a393634343a333030303a3a2f34302d3438203d3e20323131343331.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9644:3000::/40
Signature Algorithm: sha256WithRSAEncryption
7b:27:e4:64:6a:c3:42:84:3f:d6:19:55:c1:87:19:11:5e:82:
d2:32:1f:25:ad:85:d2:da:f3:0a:7a:d9:b7:48:62:58:14:dc:
18:93:9e:36:6f:32:7e:f1:7c:63:7d:1f:19:15:25:78:40:8a:
b4:5d:66:7e:23:f4:33:bf:32:e9:e7:36:66:db:d5:0b:f1:43:
c6:b6:0a:80:ba:e8:40:b3:02:03:51:ce:8d:87:bc:e1:6e:8c:
4d:bc:f5:e1:1f:7a:d3:b2:18:cd:cd:00:fa:c1:62:4e:5b:79:
cd:0f:ef:1d:ef:ae:92:48:67:6f:4a:19:de:51:b6:73:82:77:
e8:79:0a:e5:5b:b7:d8:7a:1d:2e:8f:ec:3f:c0:0d:74:e9:ac:
14:5b:01:71:7e:16:41:15:4f:6e:fd:40:8c:6c:64:e6:de:0e:
36:38:d2:36:ca:29:6e:93:13:eb:0f:a9:fa:e5:a5:e6:1e:79:
87:f9:ad:36:65:c6:45:69:8c:1c:73:2a:f6:e1:4c:b1:80:c1:
3a:7e:b9:65:0e:6a:ac:3b:87:e0:08:3f:96:86:42:b0:23:0e:
c0:fb:9a:db:d6:7f:3e:c7:a5:66:c5:2e:0a:a8:de:7f:f5:bc:
c3:eb:4f:6d:73:e1:a4:9f:96:15:9e:be:a5:fd:74:87:12:5f:
6c:52:53:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 12:52:27 2024 by rpki-client on console-ams.rpki-client.org