Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fb30d3de-e574-4a23-a1bd-5f1fa05c53be/0/326130623a346530303a3a2f32392d3438203d3e20323135373531.roa
File: 326130623a346530303a3a2f32392d3438203d3e20323135373531.roa (raw, json)
Hash identifier: uIBDt6QQ4kfVb06xsVedjOd6jwGVEXVoh4jFi8btLkI=
Subject key identifier: 3C:6F:F4:6F:4F:72:39:D2:15:AF:6C:A3:E3:53:E8:1F:3B:2C:D6:8B
Certificate issuer: /CN=fc59950e49df88985ab0727278320c684d2074be
Certificate serial: 3FF8E8062CDEAA29125D6A722EF05D7FC47772F4
Authority key identifier: FC:59:95:0E:49:DF:88:98:5A:B0:72:72:78:32:0C:68:4D:20:74:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_FmVDknfiJhasHJyeDIMaE0gdL4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fb30d3de-e574-4a23-a1bd-5f1fa05c53be/0/326130623a346530303a3a2f32392d3438203d3e20323135373531.roa
Signing time: Sat 27 Apr 2024 16:47:54 +0000
ROA not before: Sat 27 Apr 2024 16:42:54 +0000
ROA not after: Sat 26 Apr 2025 16:47:54 +0000
asID: 215751
IP address blocks: 2a0b:4e00::/29 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fb30d3de-e574-4a23-a1bd-5f1fa05c53be/0/FC59950E49DF88985AB0727278320C684D2074BE.crl
rsync://rsync.paas.rpki.ripe.net/repository/fb30d3de-e574-4a23-a1bd-5f1fa05c53be/0/FC59950E49DF88985AB0727278320C684D2074BE.mft
rsync://rpki.ripe.net/repository/DEFAULT/_FmVDknfiJhasHJyeDIMaE0gdL4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 05:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:f8:e8:06:2c:de:aa:29:12:5d:6a:72:2e:f0:5d:7f:c4:77:72:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc59950e49df88985ab0727278320c684d2074be
Validity
Not Before: Apr 27 16:42:54 2024 GMT
Not After : Apr 26 16:47:54 2025 GMT
Subject: CN=3C6FF46F4F7239D215AF6CA3E353E81F3B2CD68B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:45:e3:21:cf:e7:f6:e3:eb:e4:dc:70:6d:f2:
10:ac:d9:b6:07:19:22:81:48:59:68:11:55:2a:7c:
63:7f:b5:1d:33:90:7d:03:04:ea:5b:2c:54:d1:fb:
60:28:ff:ab:e9:89:3a:a6:0c:2f:7f:76:e4:9a:75:
fb:5a:8c:b6:ac:22:31:77:fa:52:9a:9b:0a:4a:af:
03:21:e1:ca:12:69:eb:5c:c2:a4:8e:c7:03:69:58:
22:7e:3d:9a:84:80:e5:98:b8:5c:db:2e:c8:86:35:
7a:39:0b:42:4d:66:75:0f:27:d2:62:b0:99:21:88:
56:e2:69:f3:c2:ba:7f:13:07:d8:ce:4d:1f:16:9a:
82:f8:d4:b5:c9:c6:c4:7e:ca:66:63:05:67:7c:57:
59:a4:85:0b:5a:80:7b:7e:cc:4a:96:13:f3:6d:42:
a9:97:5a:83:ff:1a:64:0e:a8:5e:89:f4:53:fd:78:
de:c0:85:ef:35:4e:8d:54:df:bc:dc:98:a5:3d:c3:
71:ed:02:e5:cb:93:45:55:e7:d8:0f:0e:c2:3a:4a:
92:9d:b6:7b:36:09:be:63:0f:f7:c0:1b:4b:62:47:
15:ba:ec:90:28:ab:de:d3:d9:42:01:49:77:33:d4:
2b:1e:cb:79:93:58:3f:a9:e5:5f:0f:81:f6:06:ec:
f7:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:6F:F4:6F:4F:72:39:D2:15:AF:6C:A3:E3:53:E8:1F:3B:2C:D6:8B
X509v3 Authority Key Identifier:
keyid:FC:59:95:0E:49:DF:88:98:5A:B0:72:72:78:32:0C:68:4D:20:74:BE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fb30d3de-e574-4a23-a1bd-5f1fa05c53be/0/FC59950E49DF88985AB0727278320C684D2074BE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_FmVDknfiJhasHJyeDIMaE0gdL4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fb30d3de-e574-4a23-a1bd-5f1fa05c53be/0/326130623a346530303a3a2f32392d3438203d3e20323135373531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:4e00::/29
Signature Algorithm: sha256WithRSAEncryption
2d:fd:de:d7:15:30:33:c5:44:ba:16:6f:e0:40:c7:92:dd:29:
81:f7:51:5a:a4:03:ca:a7:d5:c5:53:b4:f5:7d:b7:13:1f:74:
41:cd:9d:dd:9c:5c:d9:da:bc:d0:48:81:8f:7d:68:ea:b2:ac:
ff:51:99:e0:54:2a:5f:ba:7e:bf:81:b0:18:af:6e:ad:1c:d8:
f6:ab:e6:14:81:56:4f:a3:8b:08:5e:a6:a1:2b:78:35:0f:c6:
8e:de:ed:aa:7a:8b:ad:79:99:83:13:5c:06:e9:ed:40:61:96:
31:c9:9c:1f:45:76:bf:df:e4:a7:b2:17:15:69:dd:56:3c:3d:
c7:ed:54:26:62:89:a6:47:22:5e:df:5f:6f:89:ea:a8:62:6d:
5f:a8:2e:cb:80:64:73:84:b6:c9:bd:ec:d4:74:e9:63:19:bd:
a6:62:33:4b:b4:b4:b5:28:de:c2:46:7b:3b:e8:44:e7:c0:c3:
45:ee:12:51:88:81:86:52:cf:13:ef:e6:40:57:8b:16:50:f9:
7f:81:69:33:14:bc:87:ae:17:7f:a3:60:d5:9c:00:69:e0:db:
5d:06:4f:43:40:d8:31:f2:4f:d1:3c:20:d9:75:ff:e2:be:dc:
e4:f7:c0:05:17:e9:89:14:6d:f9:59:61:a1:02:53:51:d5:30:
93:f5:6c:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 14:48:18 2024 by rpki-client on console-ams.rpki-client.org