Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/21a797f9-3c10-4536-aa64-09ca2d9545c8/0/326130373a323438303a3a2f33322d3438203d3e203433363037.roa
File: 326130373a323438303a3a2f33322d3438203d3e203433363037.roa (raw, json)
Hash identifier: pJkuLbGnU3X2bJVPr6ErCwUvKgDfH/rC1D+p0+2tkoY=
Subject key identifier: EE:ED:4B:B9:39:CF:69:D1:7A:EA:6A:43:2A:68:8A:99:5D:88:B3:5C
Certificate issuer: /CN=07d362bdd7ca6e80e2c244437597bd47ef7a4fde
Certificate serial: 439B576CBC6F363E003A26CCC2074A9D08754805
Authority key identifier: 07:D3:62:BD:D7:CA:6E:80:E2:C2:44:43:75:97:BD:47:EF:7A:4F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B9NivdfKboDiwkRDdZe9R-96T94.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/21a797f9-3c10-4536-aa64-09ca2d9545c8/0/326130373a323438303a3a2f33322d3438203d3e203433363037.roa
Signing time: Wed 06 Mar 2024 22:14:54 +0000
ROA not before: Wed 06 Mar 2024 22:09:54 +0000
ROA not after: Wed 05 Mar 2025 22:14:54 +0000
asID: 43607
IP address blocks: 2a07:2480::/32 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/21a797f9-3c10-4536-aa64-09ca2d9545c8/0/07D362BDD7CA6E80E2C244437597BD47EF7A4FDE.crl
rsync://rsync.paas.rpki.ripe.net/repository/21a797f9-3c10-4536-aa64-09ca2d9545c8/0/07D362BDD7CA6E80E2C244437597BD47EF7A4FDE.mft
rsync://rpki.ripe.net/repository/DEFAULT/B9NivdfKboDiwkRDdZe9R-96T94.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 13:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:9b:57:6c:bc:6f:36:3e:00:3a:26:cc:c2:07:4a:9d:08:75:48:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07d362bdd7ca6e80e2c244437597bd47ef7a4fde
Validity
Not Before: Mar 6 22:09:54 2024 GMT
Not After : Mar 5 22:14:54 2025 GMT
Subject: CN=EEED4BB939CF69D17AEA6A432A688A995D88B35C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:2a:7e:b4:79:2b:cc:a2:63:53:9b:4f:13:44:
15:28:bd:97:6a:e0:7a:2a:59:4b:bc:20:8d:a6:63:
96:0e:71:ee:bf:7a:d9:2a:35:03:07:0b:97:6d:64:
6e:6e:ce:72:f4:1a:c2:48:3d:76:5a:85:c1:43:2e:
06:99:0c:6a:00:af:0e:24:ca:d1:cc:21:8c:f4:40:
6d:92:0c:ee:ce:c4:77:ee:44:1c:63:75:e9:54:5b:
5a:f6:08:1d:0c:57:f3:dc:51:33:f0:2d:3c:f9:85:
65:32:1a:5a:46:36:af:9f:c8:73:39:db:4d:f5:4b:
50:48:c1:62:8b:40:2f:16:49:9a:83:6d:95:b1:3d:
5a:46:be:fd:03:2e:b3:38:87:74:a9:6c:d8:81:f1:
5f:47:6f:29:1e:c3:e1:df:e9:ba:35:c7:52:86:38:
b0:86:c8:35:cf:d8:66:ce:84:3c:15:6a:91:e3:32:
73:63:29:bb:65:f0:a7:0f:42:92:86:8c:e4:7a:3d:
70:e1:e7:ca:58:a1:16:e2:f6:39:95:99:64:97:1e:
bb:f6:97:8b:78:4c:02:64:f5:41:65:6a:17:b7:e1:
a5:83:fa:bc:9b:53:10:a4:81:ba:eb:5a:d1:af:d0:
71:34:65:dd:c4:a6:bd:0f:42:d9:39:35:07:e5:e7:
07:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:ED:4B:B9:39:CF:69:D1:7A:EA:6A:43:2A:68:8A:99:5D:88:B3:5C
X509v3 Authority Key Identifier:
keyid:07:D3:62:BD:D7:CA:6E:80:E2:C2:44:43:75:97:BD:47:EF:7A:4F:DE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/21a797f9-3c10-4536-aa64-09ca2d9545c8/0/07D362BDD7CA6E80E2C244437597BD47EF7A4FDE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B9NivdfKboDiwkRDdZe9R-96T94.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/21a797f9-3c10-4536-aa64-09ca2d9545c8/0/326130373a323438303a3a2f33322d3438203d3e203433363037.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:2480::/32
Signature Algorithm: sha256WithRSAEncryption
68:36:b8:cc:fa:ff:a7:3c:c9:a5:cf:3d:76:1a:96:d0:2a:b0:
94:6f:41:20:c1:b3:76:07:ff:32:6a:ad:ee:e4:13:49:46:35:
4c:60:b9:80:00:7d:1d:6d:17:85:9d:d6:cc:56:6f:1a:ac:24:
e7:7b:04:23:01:f0:67:af:61:32:48:94:87:48:62:d7:9f:32:
7d:82:37:e5:2d:05:38:ec:c3:b5:44:84:b4:3c:5e:50:7a:25:
0f:cc:27:bb:0a:74:00:6e:1a:b7:f8:22:b5:d9:da:0d:c5:6c:
9d:f0:d2:39:c7:39:fc:8c:1a:4c:89:a4:89:4d:cb:8e:a9:e3:
1b:33:2b:ac:0a:e6:19:ab:0f:aa:49:82:02:22:11:cf:c0:20:
be:22:59:52:99:17:9e:63:66:34:9c:22:7c:29:1e:42:98:95:
27:e0:b8:1c:5e:7b:33:d8:d2:ce:85:3f:bc:52:3c:70:95:a7:
93:cc:6f:b0:cb:30:35:ef:1a:70:a1:d1:a7:c8:1f:ed:96:7f:
8a:a8:e1:44:80:02:e4:b0:5c:b6:fd:83:e3:96:c1:3d:db:f5:
94:76:9c:a1:5a:f6:8b:e3:56:23:78:77:d5:9f:38:68:81:07:
8b:ee:54:fe:de:71:05:1b:7d:eb:eb:8b:a6:cb:6c:6a:bb:89:
4c:87:f3:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 18:41:22 2024 by rpki-client on console-ams.rpki-client.org