Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336466613a3a2f34382d3438203d3e20323038383530.roa
File: 326131313a323963303a336466613a3a2f34382d3438203d3e20323038383530.roa (raw, json)
Hash identifier: wWYdcq//w/0wLrnz4S+UQ/LP8r1JaoPHqdYK48Q6bG8=
Subject key identifier: AD:D8:02:80:E4:80:67:9E:9E:04:16:60:57:55:51:0B:BC:CA:6F:97
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 0A14B2588E96EBF86DC21731E1421B1F48358909
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336466613a3a2f34382d3438203d3e20323038383530.roa
Signing time: Wed 19 Jul 2023 13:30:17 +0000
ROA not before: Wed 19 Jul 2023 13:25:17 +0000
ROA not after: Wed 17 Jul 2024 13:30:17 +0000
asID: 208850
IP address blocks: 2a11:29c0:3dfa::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Jun 2024 08:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:14:b2:58:8e:96:eb:f8:6d:c2:17:31:e1:42:1b:1f:48:35:89:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Jul 19 13:25:17 2023 GMT
Not After : Jul 17 13:30:17 2024 GMT
Subject: CN=ADD80280E480679E9E0416605755510BBCCA6F97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e6:6a:fb:10:83:05:9c:5d:8d:70:2a:24:8d:
80:03:83:fd:6f:33:be:19:14:51:88:53:7d:9e:33:
d8:12:49:68:38:3b:e8:8e:60:89:bd:b7:97:34:6b:
3c:0a:5a:16:a9:af:ed:22:86:1d:6a:76:74:c3:a7:
57:16:3d:7b:36:9d:01:aa:04:0f:54:18:f4:63:3e:
fc:9b:5a:fe:77:a7:6c:3b:22:55:ee:46:93:12:09:
77:62:19:cf:5b:18:fe:94:13:24:b3:37:76:88:fb:
b1:ca:ae:25:0a:25:0e:c9:19:1e:05:25:a2:b8:5b:
1b:1e:5d:a1:fc:f6:34:e9:f6:be:b8:e4:b6:6d:34:
2b:69:3b:66:38:c2:38:e9:6f:78:50:ce:c5:d9:69:
88:fc:7b:71:7f:7e:1b:57:93:81:3f:8b:25:de:fc:
d3:6b:5a:3f:47:d3:c8:d2:d3:21:e1:47:19:bd:af:
fe:e6:01:5f:b1:7d:dd:fc:08:27:2d:a7:b2:d0:82:
b1:cf:33:9a:8f:3b:24:5a:c2:02:bf:69:30:c5:52:
72:96:12:d5:8c:9e:19:77:07:e6:6c:d3:68:3b:9d:
59:a7:fd:7a:17:c4:73:81:5e:c0:12:c7:f7:52:6d:
cb:0a:4b:fb:26:16:a6:fb:5a:d4:79:62:cb:4a:f6:
99:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:D8:02:80:E4:80:67:9E:9E:04:16:60:57:55:51:0B:BC:CA:6F:97
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336466613a3a2f34382d3438203d3e20323038383530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:3dfa::/48
Signature Algorithm: sha256WithRSAEncryption
45:4c:2d:f4:84:3c:c5:77:9f:59:7a:6b:c8:67:0d:61:20:18:
1c:10:28:f2:8c:6f:48:d2:4b:51:27:22:d9:fc:b3:9e:7c:dc:
54:4a:e3:1f:f2:82:2a:42:72:ca:97:bf:29:b5:6c:53:bb:7d:
59:75:10:86:cd:63:c6:92:b8:a1:8f:d2:d2:84:25:4a:ad:56:
1e:8d:83:1f:bc:13:e4:76:53:05:b5:9d:59:1e:ac:46:95:28:
99:25:b6:3a:8b:05:fc:1c:2b:8f:14:07:8d:2b:56:d6:c5:58:
ef:7d:09:cc:2a:bf:f3:50:3d:76:82:3b:2f:16:6b:fd:56:7a:
b4:c3:f4:ca:09:86:bc:05:a7:7a:d3:ff:e3:f1:27:c4:57:fa:
03:a3:19:56:f4:84:a9:58:c8:a3:a6:f7:0a:d6:71:68:76:ab:
98:c4:a9:f7:ec:bf:95:9d:f7:be:87:b4:ea:b6:29:a1:c4:c0:
53:cf:50:c8:84:b7:4e:d3:c4:20:cb:01:90:13:65:1c:5e:67:
39:b7:a1:73:42:b2:88:f7:76:56:de:31:07:3a:32:42:ce:fd:
1c:24:5a:83:98:23:0a:3c:e0:17:7f:b8:5e:1b:c9:a6:19:94:
eb:ce:ac:c3:24:11:5f:2e:96:af:29:f8:25:0a:ce:db:ab:80:
76:aa:32:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 15:59:02 2024 by rpki-client on console-fra.rpki-client.org