Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/17/323030313a3766383a3133373a3a2f34382d3438203d3e20323032303736.roa
File: 323030313a3766383a3133373a3a2f34382d3438203d3e20323032303736.roa (raw, json)
Hash identifier: gr2scuw8215fcjf4E+kuQNGy0DfafVxKb2y46vdAZKc=
Subject key identifier: 2F:30:3F:79:86:26:90:8E:75:53:80:C0:07:C5:53:4D:3C:35:4F:47
Certificate issuer: /CN=635199cdc46cb6919367127d69c22339e990ffda
Certificate serial: 21DE19588482C002C22C96C64D3155298DF138C8
Authority key identifier: 63:51:99:CD:C4:6C:B6:91:93:67:12:7D:69:C2:23:39:E9:90:FF:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y1GZzcRstpGTZxJ9acIjOemQ_9o.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/17/323030313a3766383a3133373a3a2f34382d3438203d3e20323032303736.roa
Signing time: Mon 13 Nov 2023 21:10:21 +0000
ROA not before: Mon 13 Nov 2023 21:05:21 +0000
ROA not after: Mon 11 Nov 2024 21:10:21 +0000
asID: 202076
IP address blocks: 2001:7f8:137::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/17/635199CDC46CB6919367127D69C22339E990FFDA.crl
rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/17/635199CDC46CB6919367127D69C22339E990FFDA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y1GZzcRstpGTZxJ9acIjOemQ_9o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 May 2024 14:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:de:19:58:84:82:c0:02:c2:2c:96:c6:4d:31:55:29:8d:f1:38:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=635199cdc46cb6919367127d69c22339e990ffda
Validity
Not Before: Nov 13 21:05:21 2023 GMT
Not After : Nov 11 21:10:21 2024 GMT
Subject: CN=2F303F798626908E755380C007C5534D3C354F47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:21:f5:fb:72:3e:2c:cc:de:8c:7b:d3:0f:1d:
33:56:5a:a2:d0:4a:be:0e:c9:a8:4b:7c:7e:6e:18:
ad:78:94:3d:91:8e:28:48:ca:ee:b2:ac:de:23:09:
de:6d:df:0e:00:b5:dd:0a:c5:b7:dd:3e:d8:43:a8:
44:9f:4e:00:54:b8:21:4f:1f:0a:82:de:1f:51:86:
16:e1:19:1f:fd:ec:31:10:5f:4c:ff:c2:a6:44:f3:
b3:36:a3:5b:f9:8c:7f:4a:c8:a5:a4:cb:d2:c2:55:
2b:c3:60:e6:57:87:48:9c:73:f8:89:ef:4a:ca:4d:
53:53:28:94:e9:12:5e:ce:66:3f:87:ef:71:e5:f0:
b1:3c:45:73:3e:d2:cb:ff:cd:cc:85:b8:b0:a3:a1:
09:cf:e3:4b:91:75:97:59:e9:5d:e1:57:34:9c:09:
a6:46:52:c8:07:3f:9d:d5:55:10:04:c3:8c:15:d4:
fb:ea:7b:65:78:2f:46:bf:23:f2:a4:c2:9d:d0:a9:
f3:d7:c2:17:15:e2:27:46:7d:8c:f5:b6:0c:1c:dd:
d3:5f:c0:65:e3:1d:8c:aa:37:ed:8e:a4:5d:85:ba:
e4:04:bb:40:9a:ea:02:f4:15:62:2a:a2:b5:37:23:
e5:ab:5f:af:0d:70:a8:dd:94:5c:0f:65:41:50:2b:
66:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:30:3F:79:86:26:90:8E:75:53:80:C0:07:C5:53:4D:3C:35:4F:47
X509v3 Authority Key Identifier:
keyid:63:51:99:CD:C4:6C:B6:91:93:67:12:7D:69:C2:23:39:E9:90:FF:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/17/635199CDC46CB6919367127D69C22339E990FFDA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y1GZzcRstpGTZxJ9acIjOemQ_9o.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/17/323030313a3766383a3133373a3a2f34382d3438203d3e20323032303736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:7f8:137::/48
Signature Algorithm: sha256WithRSAEncryption
aa:6a:92:10:35:89:a3:2f:aa:28:09:64:42:19:09:8f:af:66:
5f:90:87:aa:ca:08:79:f5:26:7f:79:b2:2b:32:f5:f3:bb:ae:
02:51:f1:8c:c6:27:ff:5c:89:f6:81:76:2f:52:12:da:d9:3e:
fb:3e:59:0a:a8:d9:02:d1:d6:97:b8:d1:db:5b:7f:01:4a:0d:
b7:1f:bd:1a:ef:2d:86:2a:e0:70:52:83:75:7d:a9:fc:4b:72:
d9:2e:9b:42:45:1f:15:8c:5e:ad:a9:f8:36:fb:17:b8:b8:67:
b5:03:f4:9c:18:b9:54:25:43:da:aa:0e:89:e2:d1:e6:9a:35:
12:40:05:7e:1b:47:7c:dc:cc:2a:b5:54:9c:99:31:b8:e7:c6:
89:da:c8:4a:76:57:fa:ee:5d:de:5f:57:39:04:ef:af:12:69:
79:a3:6e:bd:ba:3d:e5:c8:dd:54:b8:08:49:ce:49:43:81:05:
1b:0e:c0:49:f9:5e:47:15:29:14:e1:21:83:65:31:a9:c1:4a:
c9:b9:b6:2a:f2:b5:f5:39:5b:71:e3:43:11:82:97:78:72:22:
e3:11:3c:d6:5e:aa:1b:e4:df:a2:39:44:97:25:75:95:30:06:
33:39:c1:65:24:bf:03:ec:17:72:23:10:57:27:d3:31:5e:dc:
10:86:67:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 28 17:10:47 2024 by rpki-client on console-fra.rpki-client.org