Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a313a3a2f34382d3438203d3e203530333931.roa
File: 326131313a323963303a313a3a2f34382d3438203d3e203530333931.roa (raw, json)
Hash identifier: SqugBovDskVJYA9iN26nUtxKL7NMpHzmd40xBi7kiQs=
Subject key identifier: 28:63:77:35:2C:0F:46:B8:3A:39:7E:E2:BD:05:A9:E8:E8:5E:02:A2
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 111C415066254D26C20001E6BB7D65ED9E42242B
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a313a3a2f34382d3438203d3e203530333931.roa
Signing time: Wed 19 Jul 2023 13:29:54 +0000
ROA not before: Wed 19 Jul 2023 13:24:54 +0000
ROA not after: Wed 17 Jul 2024 13:29:54 +0000
asID: 50391
IP address blocks: 2a11:29c0:1::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Jun 2024 08:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:1c:41:50:66:25:4d:26:c2:00:01:e6:bb:7d:65:ed:9e:42:24:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Jul 19 13:24:54 2023 GMT
Not After : Jul 17 13:29:54 2024 GMT
Subject: CN=286377352C0F46B83A397EE2BD05A9E8E85E02A2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:18:6a:16:bc:a3:30:c9:52:51:ab:17:a8:ad:
70:4f:21:84:05:87:68:e5:32:de:0e:2f:90:f7:31:
f5:b9:6b:ed:99:fa:ce:67:f6:46:96:ec:8b:b1:e0:
83:bc:4d:18:88:4a:3f:e7:b5:0a:43:7b:cf:85:37:
24:1b:93:d7:02:23:1e:77:a0:31:d2:61:74:04:24:
8b:10:ca:04:4c:21:3f:95:10:5e:3b:6b:e2:a5:54:
dc:60:2a:7f:d1:4f:12:62:9a:34:2c:d9:c0:0a:f2:
23:18:d6:5c:b5:24:09:4e:81:25:f3:68:3c:bf:3d:
79:e0:43:3f:2a:09:7f:36:a1:b6:94:30:58:93:38:
20:96:c2:38:4a:b6:87:3b:8b:c1:d6:a7:ed:ab:02:
e0:38:13:de:0d:8f:06:c7:83:a1:9c:85:a1:46:aa:
3e:6c:6b:8f:f4:fc:41:6b:f9:ef:4b:a6:9b:65:1d:
69:35:a5:8e:10:9e:b8:7f:c8:81:1a:9a:d1:2f:40:
aa:f1:8c:a4:89:9f:5e:35:a6:b8:94:08:ad:94:70:
50:3a:44:3a:e2:e8:fd:4b:2a:51:f4:59:6b:f9:91:
9b:da:37:50:6d:7f:96:e2:6f:93:29:4f:e8:46:8c:
f9:0b:ef:1e:d1:8d:93:4c:70:d0:db:f1:f1:36:fe:
ff:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:63:77:35:2C:0F:46:B8:3A:39:7E:E2:BD:05:A9:E8:E8:5E:02:A2
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a313a3a2f34382d3438203d3e203530333931.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:1::/48
Signature Algorithm: sha256WithRSAEncryption
0a:cc:b1:b5:8e:98:31:dd:63:49:60:52:ae:b1:1f:b7:92:f4:
3a:cd:47:ac:93:2d:02:cc:1b:a8:15:28:c7:25:ce:00:9c:c9:
40:6e:df:1c:99:3b:6d:f6:9c:68:aa:2d:9b:cb:9c:09:f8:e7:
b0:ed:27:3f:42:0b:c4:0d:48:63:e6:f1:cb:49:cd:c7:15:79:
5f:2f:99:6b:2e:7f:58:ce:e3:58:77:3d:a9:3d:77:04:9c:b6:
72:e4:ba:56:e7:74:c4:8f:38:3e:b8:81:c2:b0:f4:05:ac:38:
bb:be:3d:c4:c9:fb:ca:4c:0a:16:cd:89:bc:f1:4f:be:97:1a:
fc:ca:11:ab:a1:67:d9:e5:93:0e:3e:d8:f2:b7:a5:a2:80:b3:
a8:25:b7:89:8d:5e:45:a6:2d:d0:0b:ef:0c:50:7b:68:c5:dd:
a7:db:8f:1a:50:14:c3:6c:a1:d7:d2:24:39:cf:dc:ed:45:da:
2e:aa:11:b5:df:74:d2:bf:7b:c1:49:1e:ab:2c:47:8a:49:6f:
0b:fa:86:91:98:56:7b:c2:4c:9d:00:19:0f:17:9f:85:39:f1:
4f:f7:29:66:27:21:c1:b2:60:a6:0e:83:ac:7e:c7:37:47:bf:
ad:96:62:ab:36:b9:ab:50:d9:0d:9c:eb:25:b7:ef:5f:d1:15:
27:39:09:ea
-----BEGIN CERTIFICATE-----
MIIFODCCBCCgAwIBAgIUERxBUGYlTSbCAAHmu31l7Z5CJCswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZTk2ZDg1OTk2ZTkzNTRkMTAwNWU0NGM3ODFkMzhhZGNm
MTA4Mjg3MzAeFw0yMzA3MTkxMzI0NTRaFw0yNDA3MTcxMzI5NTRaMDMxMTAvBgNV
BAMTKDI4NjM3NzM1MkMwRjQ2QjgzQTM5N0VFMkJEMDVBOUU4RTg1RTAyQTIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDiGGoWvKMwyVJRqxeorXBPIYQF
h2jlMt4OL5D3MfW5a+2Z+s5n9kaW7Iux4IO8TRiISj/ntQpDe8+FNyQbk9cCIx53
oDHSYXQEJIsQygRMIT+VEF47a+KlVNxgKn/RTxJimjQs2cAK8iMY1ly1JAlOgSXz
aDy/PXngQz8qCX82obaUMFiTOCCWwjhKtoc7i8HWp+2rAuA4E94NjwbHg6GchaFG
qj5sa4/0/EFr+e9LpptlHWk1pY4Qnrh/yIEamtEvQKrxjKSJn141priUCK2UcFA6
RDri6P1LKlH0WWv5kZvaN1Btf5bib5MpT+hGjPkL7x7RjZNMcNDb8fE2/v8LAgMB
AAGjggJCMIICPjAdBgNVHQ4EFgQUKGN3NSwPRrg6OX7ivQWp6OheAqIwHwYDVR0j
BBgwFoAU6W2FmW6TVNEAXkTHgdOK3PEIKHMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvODExMTViYzYtMTBmNi00YWYzLWJhMDktOGI2ODdhNTZm
YmY1LzAvRTk2RDg1OTk2RTkzNTREMTAwNUU0NEM3ODFEMzhBRENGMTA4Mjg3My5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzZXMkZtVzZUVk5FQVhrVEhnZE9LM1BF
SUtITS5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvODExMTViYzYt
MTBmNi00YWYzLWJhMDktOGI2ODdhNTZmYmY1LzAvMzI2MTMxMzEzYTMyMzk2MzMw
M2EzMTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzAzMzM5MzEucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkD
BwAqESnAAAEwDQYJKoZIhvcNAQELBQADggEBAArMsbWOmDHdY0lgUq6xH7eS9DrN
R6yTLQLMG6gVKMclzgCcyUBu3xyZO232nGiqLZvLnAn457DtJz9CC8QNSGPm8ctJ
zccVeV8vmWsuf1jO41h3Pak9dwSctnLkulbndMSPOD64gcKw9AWsOLu+PcTJ+8pM
ChbNibzxT76XGvzKEauhZ9nlkw4+2PK3paKAs6glt4mNXkWmLdAL7wxQe2jF3afb
jxpQFMNsodfSJDnP3O1F2i6qEbXfdNK/e8FJHqssR4pJbwv6hpGYVnvCTJ0AGQ8X
n4U58U/3KWYnIcGyYKYOg6x+xzdHv62WYqs2uatQ2Q2c6yW371/RFSc5Ceo=
-----END CERTIFICATE-----
Generated at Sun Jun 16 17:58:21 2024 by rpki-client on console-ams.rpki-client.org