Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/21a797f9-3c10-4536-aa64-09ca2d9545c8/0/326130373a323438363a6666303a3a2f34342d3438203d3e20323136333930.roa
File: 326130373a323438363a6666303a3a2f34342d3438203d3e20323136333930.roa (raw, json)
Hash identifier: lpdtyMpTQi0Y5Zw42RBZiyX5zOVSadD9uTrMLpzqTCU=
Subject key identifier: DF:05:58:F9:FC:59:48:22:AC:95:66:F8:C2:3D:AE:FA:F6:E0:CD:FA
Certificate issuer: /CN=07d362bdd7ca6e80e2c244437597bd47ef7a4fde
Certificate serial: 340D90991F1406EFFCE3FC16B6B4C4542C58144E
Authority key identifier: 07:D3:62:BD:D7:CA:6E:80:E2:C2:44:43:75:97:BD:47:EF:7A:4F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B9NivdfKboDiwkRDdZe9R-96T94.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/21a797f9-3c10-4536-aa64-09ca2d9545c8/0/326130373a323438363a6666303a3a2f34342d3438203d3e20323136333930.roa
Signing time: Wed 06 Mar 2024 22:15:44 +0000
ROA not before: Wed 06 Mar 2024 22:10:44 +0000
ROA not after: Wed 05 Mar 2025 22:15:44 +0000
asID: 216390
IP address blocks: 2a07:2486:ff0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/21a797f9-3c10-4536-aa64-09ca2d9545c8/0/07D362BDD7CA6E80E2C244437597BD47EF7A4FDE.crl
rsync://rsync.paas.rpki.ripe.net/repository/21a797f9-3c10-4536-aa64-09ca2d9545c8/0/07D362BDD7CA6E80E2C244437597BD47EF7A4FDE.mft
rsync://rpki.ripe.net/repository/DEFAULT/B9NivdfKboDiwkRDdZe9R-96T94.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 14:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:0d:90:99:1f:14:06:ef:fc:e3:fc:16:b6:b4:c4:54:2c:58:14:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07d362bdd7ca6e80e2c244437597bd47ef7a4fde
Validity
Not Before: Mar 6 22:10:44 2024 GMT
Not After : Mar 5 22:15:44 2025 GMT
Subject: CN=DF0558F9FC594822AC9566F8C23DAEFAF6E0CDFA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:91:0e:8f:a9:c8:96:b7:6d:ee:32:10:38:f7:
4e:7f:5b:14:3f:54:5e:1e:2f:a5:35:6e:fe:20:1a:
5c:29:68:68:c1:07:7e:cf:05:fe:8b:c7:5e:ab:c2:
2c:36:f7:d6:30:2a:25:ee:0a:fb:cc:9c:24:b4:34:
ec:c8:30:6e:3f:62:e9:69:31:e1:a8:55:20:e3:de:
aa:a6:d1:1f:99:9a:6b:b8:bc:c4:18:3f:42:75:b4:
c9:46:91:42:92:fb:a0:e4:74:9a:95:62:80:50:47:
cd:7b:8e:4b:fb:30:b4:46:94:0a:30:18:2a:63:5c:
19:8b:51:5f:b9:57:7c:c4:86:56:e6:e1:3d:92:66:
6a:51:a4:3b:83:b4:27:52:0a:89:d6:b9:3f:6e:99:
62:dd:49:fd:48:ea:4b:ff:4d:f5:c7:a3:19:d3:61:
de:dc:43:7f:00:9b:e2:da:12:63:c3:88:1c:19:5a:
fe:85:35:f2:93:f9:8a:7d:e6:60:ea:be:40:4c:1d:
62:e6:79:76:0a:ca:11:6e:58:53:5a:fb:d1:25:66:
d1:57:a0:b0:0c:e5:66:a2:56:e8:e8:5c:b0:df:88:
d7:2d:9d:cb:fe:e1:df:38:83:ba:7f:9f:0b:1f:54:
71:ca:09:7e:6d:ed:1a:f6:e3:49:0d:44:e0:65:ce:
7f:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:05:58:F9:FC:59:48:22:AC:95:66:F8:C2:3D:AE:FA:F6:E0:CD:FA
X509v3 Authority Key Identifier:
keyid:07:D3:62:BD:D7:CA:6E:80:E2:C2:44:43:75:97:BD:47:EF:7A:4F:DE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/21a797f9-3c10-4536-aa64-09ca2d9545c8/0/07D362BDD7CA6E80E2C244437597BD47EF7A4FDE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B9NivdfKboDiwkRDdZe9R-96T94.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/21a797f9-3c10-4536-aa64-09ca2d9545c8/0/326130373a323438363a6666303a3a2f34342d3438203d3e20323136333930.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:2486:ff0::/44
Signature Algorithm: sha256WithRSAEncryption
3c:26:5a:a8:b8:5c:9e:35:2d:fa:34:ec:bc:49:50:fa:3a:f9:
c9:9e:58:50:e7:aa:27:86:6e:35:64:60:92:6c:96:a2:a3:6d:
74:ab:d5:3d:70:59:96:18:8e:bb:92:1d:db:bc:0c:37:0c:e4:
67:20:f1:4f:79:9a:59:1f:f4:14:c2:bd:3f:70:23:88:5e:1c:
cc:3f:50:b9:79:ee:27:19:7f:3c:94:75:08:f8:6e:a0:35:4f:
a3:2d:98:ae:a9:2d:4d:19:d1:d0:91:5e:e7:b9:e4:f5:91:ef:
46:90:8b:78:b6:96:d8:d1:4d:19:54:df:12:81:ce:b7:b5:fc:
11:a9:be:bf:7b:41:2c:82:1f:91:8e:59:1e:a3:89:8f:3f:5e:
e3:3c:0b:d8:35:6c:57:af:f2:43:de:48:60:69:8e:48:05:cc:
1a:a0:ab:04:b8:2e:78:eb:07:67:c1:05:d1:ec:c2:c4:26:b4:
19:87:75:92:8a:8f:5f:a5:58:d8:6a:53:63:8b:66:fc:9d:80:
9a:3d:d9:0c:bd:59:d6:23:2c:de:c5:0a:87:6f:62:b8:9d:22:
69:7e:63:71:fe:e2:62:f8:8c:90:e7:6c:86:d5:b6:66:0b:28:
cc:02:39:f5:d2:4f:22:ca:33:2e:a4:3e:4c:f9:c6:07:ee:b0:
79:be:ea:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 8 00:06:58 2024 by rpki-client on console-fra.rpki-client.org