Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336466373a3a2f34382d3438203d3e20323038343731.roa
File: 326131313a323963303a336466373a3a2f34382d3438203d3e20323038343731.roa (raw, json)
Hash identifier: /hlyEI5vWe8oMgS5kWQqJc6aEvcwFtUVlEN35ydTs54=
Subject key identifier: DE:C3:43:18:90:61:D4:C5:FC:25:2E:F5:6C:0E:02:64:4A:18:AC:8E
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 7197AB57B2FA52F1C1F4B1902FB1C4C9AC30829F
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336466373a3a2f34382d3438203d3e20323038343731.roa
Signing time: Wed 19 Jul 2023 13:30:13 +0000
ROA not before: Wed 19 Jul 2023 13:25:13 +0000
ROA not after: Wed 17 Jul 2024 13:30:13 +0000
asID: 208471
IP address blocks: 2a11:29c0:3df7::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Jun 2024 08:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:97:ab:57:b2:fa:52:f1:c1:f4:b1:90:2f:b1:c4:c9:ac:30:82:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Jul 19 13:25:13 2023 GMT
Not After : Jul 17 13:30:13 2024 GMT
Subject: CN=DEC343189061D4C5FC252EF56C0E02644A18AC8E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:61:47:7e:cd:94:34:2f:04:42:8e:e5:8a:b3:
2d:f8:62:61:d4:9a:d4:da:4b:bc:82:fe:20:97:ad:
43:be:2b:86:04:dd:45:cb:23:1b:8d:c7:e6:1a:e0:
6c:02:e1:69:3b:83:eb:05:81:05:94:44:17:d3:8c:
c1:13:38:5c:1b:a0:25:dd:8c:5e:5f:b4:91:e4:02:
22:38:b2:03:ce:ed:85:44:cd:be:1e:fe:74:ea:00:
53:42:9a:25:27:73:e6:f2:4c:4a:cb:a1:bc:6b:07:
ae:94:c3:3d:c0:42:09:3b:03:d8:41:ea:64:15:77:
37:bc:fa:3d:70:a8:57:54:12:f0:9e:36:19:18:69:
13:44:b9:9f:ed:74:5c:bb:a9:88:f3:12:07:46:92:
40:fc:ab:c0:9d:f7:52:11:a1:81:2c:92:3b:13:90:
a1:87:1f:38:16:ef:de:8c:64:5a:36:bb:5c:0e:46:
8d:d1:89:ad:aa:d4:2d:50:5b:f6:8e:05:b0:ba:e1:
92:34:20:b3:a5:26:1d:db:b0:9a:1a:13:bd:43:bb:
b7:0e:b7:84:67:10:19:b6:0f:13:7d:3b:a4:5b:32:
cb:90:6c:a6:54:59:b7:3c:27:29:01:0d:18:6d:32:
9c:61:44:98:a9:8d:17:3e:8b:ec:f8:e5:c0:bd:91:
c1:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:C3:43:18:90:61:D4:C5:FC:25:2E:F5:6C:0E:02:64:4A:18:AC:8E
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336466373a3a2f34382d3438203d3e20323038343731.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:3df7::/48
Signature Algorithm: sha256WithRSAEncryption
21:0e:fe:8b:fb:4f:4d:6c:8c:27:25:c0:9f:04:44:64:74:34:
d1:4e:76:1f:2a:c7:2b:90:a4:5e:5f:3b:19:0c:b7:e6:51:08:
da:5e:e2:e3:aa:d2:c3:a5:ad:aa:66:c1:f3:b1:ff:69:9c:58:
a7:cb:03:95:9d:a4:d2:bf:f9:03:3f:d6:1e:db:20:00:1f:f4:
99:81:e1:4e:35:f4:aa:d9:55:cb:37:c9:4e:11:65:a8:b3:e9:
6b:aa:36:a2:ea:e0:88:d4:5e:44:ac:10:30:06:32:37:31:71:
54:07:35:33:30:91:59:d7:da:21:fb:14:04:2a:14:c7:6a:8a:
0d:51:e2:b6:63:80:2f:21:46:5d:fc:5a:3b:a7:60:92:c4:f8:
9e:b9:c6:82:16:7c:43:0b:b7:df:ae:e2:5f:d6:84:c4:97:7f:
ad:9e:85:ec:f0:ee:83:40:99:92:db:0b:5c:24:92:61:52:74:
c3:6a:45:19:0e:c9:0c:11:30:fc:6e:44:aa:47:c5:e5:92:05:
80:ee:79:27:02:2c:a7:b6:8c:51:a7:45:b5:60:32:86:69:e9:
e2:72:27:f4:01:36:ab:92:57:ce:2f:50:9e:93:38:88:5e:ae:
a3:fd:18:bb:4d:9a:95:c1:ec:cb:22:57:ae:2c:6a:aa:af:97:
8f:38:98:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 17:58:21 2024 by rpki-client on console-ams.rpki-client.org