Route Origin Authorization
$ rpki-client -vvf krill.signalx.cloud/repo/signalx-rpki/6/326130623a346238313a313030333a3a2f34382d3438203d3e203331383938.roa
File: 326130623a346238313a313030333a3a2f34382d3438203d3e203331383938.roa (raw, json)
Hash identifier: zOMFMc1IDoQLMA29y4I8ThG00Jbepu49yj8BhUFAhPo=
Subject key identifier: FD:3B:9A:F5:09:8F:F8:B2:36:4B:AC:15:05:3D:00:E2:4B:D8:80:48
Certificate issuer: /CN=88332c8750cc71629e694fddb3615ae083589921
Certificate serial: 2CDE30E48CFE3B5CF38CAC8B2745AA6B50F84552
Authority key identifier: 88:33:2C:87:50:CC:71:62:9E:69:4F:DD:B3:61:5A:E0:83:58:99:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iDMsh1DMcWKeaU_ds2Fa4INYmSE.cer
Subject info access: rsync://krill.signalx.cloud/repo/signalx-rpki/6/326130623a346238313a313030333a3a2f34382d3438203d3e203331383938.roa
Signing time: Thu 21 Aug 2025 16:12:23 +0000
ROA not before: Thu 21 Aug 2025 16:07:23 +0000
ROA not after: Thu 20 Aug 2026 16:12:23 +0000
asID: 31898
IP address blocks: 2a0b:4b81:1003::/48 maxlen: 48
Validation: OK
Signature path: rsync://krill.signalx.cloud/repo/signalx-rpki/6/88332C8750CC71629E694FDDB3615AE083589921.crl
rsync://krill.signalx.cloud/repo/signalx-rpki/6/88332C8750CC71629E694FDDB3615AE083589921.mft
rsync://rpki.ripe.net/repository/DEFAULT/iDMsh1DMcWKeaU_ds2Fa4INYmSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 06:26:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:de:30:e4:8c:fe:3b:5c:f3:8c:ac:8b:27:45:aa:6b:50:f8:45:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88332c8750cc71629e694fddb3615ae083589921
Validity
Not Before: Aug 21 16:07:23 2025 GMT
Not After : Aug 20 16:12:23 2026 GMT
Subject: CN=FD3B9AF5098FF8B2364BAC15053D00E24BD88048
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:45:b8:9e:b6:57:82:04:2c:ef:ac:64:24:98:
b9:a4:ed:82:6c:fc:5c:4f:cc:6c:6f:d7:c0:b0:86:
49:70:fb:03:51:1b:82:fa:77:f9:15:f7:10:5e:ec:
96:68:b6:2b:4d:55:fd:cd:5b:82:7f:d4:fe:77:36:
43:68:40:94:50:96:28:47:99:65:cc:e1:f4:a7:4e:
56:97:27:d6:6b:e0:c3:aa:d6:80:5b:62:6f:6a:2b:
1f:0b:35:be:db:5c:92:e5:33:39:4f:bd:fa:4c:51:
ab:e2:42:ad:95:75:47:b0:89:e0:9a:9e:62:82:6e:
2e:8d:4b:a6:37:a6:6e:fd:8f:34:a7:cf:1c:20:b0:
1a:30:f8:fe:77:7c:4a:06:fd:c7:92:48:a1:46:31:
44:a7:18:5e:5d:29:75:0f:5d:51:d8:51:d0:92:72:
81:b5:76:fc:76:09:c2:ad:af:c4:e3:01:51:61:10:
cb:9f:a3:6c:c7:34:53:46:0a:6a:94:85:b5:86:29:
cb:0f:85:ba:cf:3e:ff:f2:47:8a:15:90:bd:0c:87:
4e:26:ad:4e:17:90:30:c6:f9:31:6d:96:2a:51:84:
5e:c6:9f:45:62:18:41:02:d3:f3:85:7c:54:18:67:
02:f8:81:2c:2f:aa:2c:d3:1a:c4:b5:42:2e:25:39:
58:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:3B:9A:F5:09:8F:F8:B2:36:4B:AC:15:05:3D:00:E2:4B:D8:80:48
X509v3 Authority Key Identifier:
keyid:88:33:2C:87:50:CC:71:62:9E:69:4F:DD:B3:61:5A:E0:83:58:99:21
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://krill.signalx.cloud/repo/signalx-rpki/6/88332C8750CC71629E694FDDB3615AE083589921.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iDMsh1DMcWKeaU_ds2Fa4INYmSE.cer
Subject Information Access:
Signed Object - URI:rsync://krill.signalx.cloud/repo/signalx-rpki/6/326130623a346238313a313030333a3a2f34382d3438203d3e203331383938.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:4b81:1003::/48
Signature Algorithm: sha256WithRSAEncryption
4f:31:5a:ef:8e:e2:32:49:6a:f1:a3:5a:b5:8c:60:87:81:d8:
33:b5:e9:a6:7b:07:43:23:81:ba:22:8d:8d:6c:1b:ab:e4:85:
84:a8:78:74:23:52:fd:9c:e2:70:5d:08:e2:fb:1e:ab:c1:bb:
c1:bd:c1:0b:e6:6f:18:6a:e9:ec:18:a1:17:e1:23:eb:a4:7c:
5c:60:52:03:55:b5:0c:ad:c7:e1:49:30:ac:77:51:d9:51:d7:
44:4f:24:d1:a8:49:a3:f9:9b:07:af:03:1b:8f:09:23:68:cb:
d3:b2:d5:ce:64:0d:c3:b8:91:9c:ea:01:2d:d2:ab:4e:50:96:
c8:84:cc:2f:17:33:04:e1:f2:89:5c:e8:7d:86:2d:d2:41:38:
be:77:f4:35:de:2b:21:f3:c6:62:15:67:44:42:26:2b:49:cf:
b2:cf:b2:7d:71:90:e4:21:7d:f5:9d:48:4e:b9:ea:c7:0e:bf:
04:3a:e5:a7:4c:69:86:42:d6:f7:ba:f2:41:ee:9a:9e:27:5d:
25:92:30:61:ff:6f:21:cb:9a:00:a6:b1:87:2a:81:9a:32:7c:
d6:74:f8:8e:df:54:06:e8:2a:1e:b6:0b:da:c5:3a:8b:cc:32:
70:18:36:06:36:5e:ac:69:50:7e:12:3d:46:d0:f8:d8:c7:4f:
3d:93:8a:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 19:50:44 2025 by rpki-client