Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336466653a3a2f34382d3438203d3e20323037333539.roa
File: 326131313a323963303a336466653a3a2f34382d3438203d3e20323037333539.roa (raw, json)
Hash identifier: e8kxvLJuOwShijeostn4nETZjAA4s6HqrPSwSKOTjX4=
Subject key identifier: E4:F1:3F:D6:F9:2E:0A:64:AE:5B:D3:72:95:06:9C:18:44:08:AC:5C
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 6EC7DE35D8781F69653C42776EBFFEF6B447B0EC
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336466653a3a2f34382d3438203d3e20323037333539.roa
Signing time: Wed 19 Jul 2023 13:30:08 +0000
ROA not before: Wed 19 Jul 2023 13:25:08 +0000
ROA not after: Wed 17 Jul 2024 13:30:08 +0000
asID: 207359
IP address blocks: 2a11:29c0:3dfe::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Jun 2024 08:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:c7:de:35:d8:78:1f:69:65:3c:42:77:6e:bf:fe:f6:b4:47:b0:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Jul 19 13:25:08 2023 GMT
Not After : Jul 17 13:30:08 2024 GMT
Subject: CN=E4F13FD6F92E0A64AE5BD37295069C184408AC5C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:7f:71:87:e3:77:bc:92:17:2a:e0:1e:9d:6b:
e2:5a:8b:00:55:86:1c:15:af:2d:44:b9:3f:00:3a:
1f:e5:de:92:f6:60:f9:98:3e:8f:18:d8:7d:4f:cc:
27:65:00:0d:9a:2f:d6:d4:92:ef:c7:df:0e:6f:f8:
81:b7:c0:4a:9b:40:37:15:f9:ff:27:7f:8f:27:b7:
26:e0:be:79:ff:a8:36:5d:d1:8d:c6:59:23:54:8a:
9e:e7:96:55:2c:34:f2:7c:6c:77:06:80:e4:28:17:
cd:5f:e8:6e:1d:25:07:f0:5b:19:46:5b:60:f0:b6:
28:0b:3e:d4:55:d5:0a:e1:4f:53:e2:62:e7:56:13:
ac:61:80:4e:84:75:d0:f7:45:c5:df:96:7b:13:98:
43:70:92:26:30:42:65:6a:db:55:2d:23:6b:a8:ce:
d3:e2:02:f9:ce:89:f5:0c:39:8f:54:47:29:6e:fe:
65:ae:9f:9e:50:c0:99:ee:e2:d0:e0:57:61:24:e6:
5a:87:97:b3:82:52:24:58:14:5e:4c:7e:a1:ab:06:
69:ba:24:fd:32:23:a9:a4:1f:8a:c2:6d:74:a7:93:
9e:56:14:ac:ec:ba:b6:e3:2d:e5:57:44:21:62:33:
db:ff:75:d1:80:56:24:b6:d8:4c:d7:ee:e5:fd:cd:
7d:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:F1:3F:D6:F9:2E:0A:64:AE:5B:D3:72:95:06:9C:18:44:08:AC:5C
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336466653a3a2f34382d3438203d3e20323037333539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:3dfe::/48
Signature Algorithm: sha256WithRSAEncryption
1f:73:6d:dc:1f:fc:c1:b5:ab:52:fe:fe:6c:b2:13:bd:01:b3:
ac:d0:f7:72:30:ee:44:66:2e:1c:9f:a3:eb:2c:d3:d8:c3:f6:
1f:70:b8:38:5e:83:d9:6b:d5:0a:d5:b7:fb:d8:33:85:2b:ae:
3c:61:66:66:22:69:5f:e9:9b:92:af:0d:ee:5e:fa:9c:9f:90:
23:aa:05:81:4a:bd:7a:ed:5b:b6:33:8b:56:af:2d:c8:dc:4b:
9f:d8:93:f6:6c:20:66:a7:4c:b3:67:d6:15:b4:43:22:8d:2f:
e8:f0:7d:bf:2b:d2:18:c7:91:89:c6:c5:78:7e:dd:06:f8:96:
ba:25:36:39:52:dd:9d:18:01:e5:57:90:6b:92:3c:93:3b:a2:
07:70:5c:b5:7e:bd:68:2d:ce:ce:78:2f:15:ab:8a:c6:52:50:
9f:54:20:17:8f:d8:91:13:ed:4c:30:d7:5d:fa:8e:6b:17:b4:
51:11:99:72:5b:cb:1a:97:88:a3:22:7e:bf:2d:e9:68:15:04:
ff:9e:99:83:db:d7:67:83:70:fd:4f:c1:0f:9d:4c:f0:26:d7:
1f:03:9e:c5:69:99:40:d5:9d:73:96:3a:c4:9f:0f:87:f0:5e:
ae:34:48:a1:89:ec:88:24:d6:a0:79:5a:b9:20:8a:90:fe:56:
63:4c:e1:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 15:59:02 2024 by rpki-client on console-fra.rpki-client.org