Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/326131333a393634343a343030303a3a2f34302d3438203d3e20323034323931.roa
File: 326131333a393634343a343030303a3a2f34302d3438203d3e20323034323931.roa (raw, json)
Hash identifier: 7H9TXOPmRSCpSLvpUH5h0kneMvmA5e0Xb9ByogPe2KE=
Subject key identifier: CA:B2:4F:83:BA:18:B3:3C:31:4F:DA:A2:4C:F7:58:7F:F0:9D:CE:66
Certificate issuer: /CN=f1d0572fe72991bd32854bac716676ebdad22ace
Certificate serial: 4CE8DF34D55188BE4A317E88CB46BB1620BC62D2
Authority key identifier: F1:D0:57:2F:E7:29:91:BD:32:85:4B:AC:71:66:76:EB:DA:D2:2A:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/326131333a393634343a343030303a3a2f34302d3438203d3e20323034323931.roa
Signing time: Thu 08 Aug 2024 15:14:57 +0000
ROA not before: Thu 08 Aug 2024 15:09:57 +0000
ROA not after: Thu 07 Aug 2025 15:14:57 +0000
asID: 204291
IP address blocks: 2a13:9644:4000::/40 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl
rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft
rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 10:47:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:e8:df:34:d5:51:88:be:4a:31:7e:88:cb:46:bb:16:20:bc:62:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d0572fe72991bd32854bac716676ebdad22ace
Validity
Not Before: Aug 8 15:09:57 2024 GMT
Not After : Aug 7 15:14:57 2025 GMT
Subject: CN=CAB24F83BA18B33C314FDAA24CF7587FF09DCE66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:81:39:f2:69:d7:97:bf:10:56:0e:f5:5b:f4:
5e:65:bf:12:37:0c:8f:81:b0:00:d2:34:d2:25:44:
bf:8e:97:54:e7:24:a8:dd:2d:68:92:2a:d3:a7:fa:
a9:eb:dc:6d:6a:dc:6d:af:8b:71:3e:34:40:b7:8e:
3a:e6:1d:ed:54:4d:4b:59:54:91:20:ae:52:23:a9:
84:90:b4:0f:6b:70:c9:6c:c7:46:f2:95:cd:cd:f8:
e2:6c:a9:c7:7a:a7:84:d3:2d:bc:cf:0a:de:6b:81:
76:08:52:3a:d3:61:4b:c0:85:95:a3:dc:19:de:49:
ff:08:b6:f7:6b:d4:bc:cf:cc:b1:92:e8:be:e5:9c:
c4:9a:2c:fd:e2:65:9d:47:f2:b8:96:82:c0:9c:4e:
4c:84:1c:6b:d0:1d:54:87:fb:23:fd:9c:d9:90:56:
68:ce:e3:2d:bd:c0:5b:36:a3:8b:42:11:d6:ef:55:
5b:cf:87:7f:d3:00:bd:e1:84:5f:00:a6:ee:95:5b:
d3:51:02:44:ef:a1:5d:70:95:62:e8:d0:6c:65:46:
6e:e3:5f:a8:11:ad:96:b5:74:ca:ec:0c:50:4c:d1:
13:29:3e:d3:e7:27:41:0c:12:5e:88:9e:c4:07:cd:
cd:72:6f:79:0d:44:12:d2:41:da:ce:8a:31:45:5c:
15:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:B2:4F:83:BA:18:B3:3C:31:4F:DA:A2:4C:F7:58:7F:F0:9D:CE:66
X509v3 Authority Key Identifier:
keyid:F1:D0:57:2F:E7:29:91:BD:32:85:4B:AC:71:66:76:EB:DA:D2:2A:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/326131333a393634343a343030303a3a2f34302d3438203d3e20323034323931.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9644:4000::/40
Signature Algorithm: sha256WithRSAEncryption
1b:f4:1e:6a:ca:3a:01:5c:12:3f:b1:e0:10:7a:c1:d4:10:41:
21:78:d2:08:43:32:7c:22:d3:93:16:0c:8b:06:58:76:f8:02:
37:4e:c3:63:77:de:c8:11:ba:27:b2:17:8b:dc:d1:af:a1:e7:
54:34:a8:f8:12:1f:d6:79:aa:7b:fa:1e:01:2b:dc:43:68:8a:
f5:15:93:8d:08:2a:08:31:7d:e1:9e:b2:88:d5:c7:ac:e9:8c:
68:40:e2:d5:1d:df:61:0c:55:f0:5d:d1:97:47:5e:07:3f:f6:
bb:f1:73:e3:4a:0c:d9:ee:01:9a:1e:5b:fd:aa:0d:29:c8:50:
3c:39:a7:d0:3b:4f:a6:12:ca:f7:40:d1:7d:f2:63:86:ad:4c:
3b:c1:ad:a7:1c:e2:b1:84:4a:90:65:23:f6:7a:74:e3:68:b2:
2e:16:16:a2:a3:7e:58:5d:28:25:f0:15:b0:bf:c8:07:1d:a7:
90:65:5a:9b:53:89:be:35:4e:72:8e:bc:72:c0:a0:6f:0b:82:
67:1a:8f:f4:4d:c3:d8:3b:68:ed:b9:cd:be:4f:28:97:56:88:
80:50:a8:5f:a9:aa:93:35:5b:a0:b4:2f:6b:29:c6:fa:51:b0:
82:73:66:f8:6d:e8:14:ca:38:b3:03:dd:d4:c9:17:97:56:d8:
a7:6d:91:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:47:50 2025 by rpki-client