Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a323a3a2f34382d3438203d3e20323032333539.roa
File: 326131313a663263303a323a3a2f34382d3438203d3e20323032333539.roa (raw, json)
Hash identifier: NH3R89xdCiHAdtmLoGifTFZ3VrN+kD+Fg7F9QJTkvEM=
Subject key identifier: 7F:66:6B:38:F2:04:84:A6:C8:96:41:E8:BC:71:0C:FA:4D:4B:48:F1
Certificate issuer: /CN=11ad49c47e2d0e40cfc9b36a2bd2c514e2a6267b
Certificate serial: 10640DB01AE61C1636289E98B618BB27CA2FD529
Authority key identifier: 11:AD:49:C4:7E:2D:0E:40:CF:C9:B3:6A:2B:D2:C5:14:E2:A6:26:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a323a3a2f34382d3438203d3e20323032333539.roa
Signing time: Mon 13 Nov 2023 23:12:07 +0000
ROA not before: Mon 13 Nov 2023 23:07:07 +0000
ROA not after: Mon 11 Nov 2024 23:12:07 +0000
asID: 202359
IP address blocks: 2a11:f2c0:2::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.crl
rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Apr 2024 21:23:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:64:0d:b0:1a:e6:1c:16:36:28:9e:98:b6:18:bb:27:ca:2f:d5:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11ad49c47e2d0e40cfc9b36a2bd2c514e2a6267b
Validity
Not Before: Nov 13 23:07:07 2023 GMT
Not After : Nov 11 23:12:07 2024 GMT
Subject: CN=7F666B38F20484A6C89641E8BC710CFA4D4B48F1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e9:87:07:0f:4b:e4:4d:4f:a4:9b:73:e4:0c:
ea:db:bb:45:c0:a2:6f:97:8a:90:d7:78:95:34:00:
a0:95:f5:da:ab:17:3e:aa:d7:a4:2c:16:15:18:f7:
3c:96:cb:c7:06:a0:84:fb:c0:1b:2a:4b:08:45:bf:
20:87:73:1a:28:3d:cb:2a:10:de:8f:8f:b3:a6:7d:
6f:8c:86:ec:9f:fe:c8:4a:74:d0:7d:54:9c:c5:e5:
dd:0a:c9:d8:2d:0d:4e:7b:34:2e:7a:7d:e9:3a:30:
c0:f6:35:0d:be:c2:b9:08:54:e1:0c:df:36:0f:c4:
c2:f0:25:05:fd:ea:3f:e7:4d:70:78:b1:66:60:d4:
ed:d0:f0:59:30:21:88:56:c4:4b:57:c3:14:2c:42:
31:28:1e:e5:e3:d4:36:e3:48:0a:81:a2:e9:cd:72:
ef:ba:18:46:39:d0:47:f4:09:2a:7d:32:93:a5:3e:
20:05:0c:84:78:73:73:96:70:1f:4c:7e:4b:ed:8c:
81:5f:78:04:e0:00:6e:a0:6a:30:97:39:23:29:69:
92:b2:ab:7a:60:1a:af:e8:6f:a8:6b:c6:1f:ca:4d:
74:4e:3f:80:d1:22:58:2f:81:67:9f:5e:85:07:48:
9f:62:2e:a4:5c:42:fe:36:b7:09:fd:98:90:58:4d:
5b:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:66:6B:38:F2:04:84:A6:C8:96:41:E8:BC:71:0C:FA:4D:4B:48:F1
X509v3 Authority Key Identifier:
keyid:11:AD:49:C4:7E:2D:0E:40:CF:C9:B3:6A:2B:D2:C5:14:E2:A6:26:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a323a3a2f34382d3438203d3e20323032333539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:f2c0:2::/48
Signature Algorithm: sha256WithRSAEncryption
1a:90:da:5f:0d:6c:5b:1d:29:ee:29:37:2c:eb:db:48:b3:29:
3d:85:d0:b3:c7:54:2d:b2:33:f7:32:b1:fe:d3:d2:69:14:cb:
c4:8e:df:45:6f:20:1b:c6:e7:84:a4:d8:d1:2c:c9:66:d9:44:
af:7d:82:9f:48:8b:32:29:a5:8d:2e:2c:3b:f5:2f:55:65:8c:
d1:7c:d1:4e:31:eb:74:51:ad:f5:32:75:92:9a:47:39:df:e0:
f6:99:63:bf:3b:46:6d:fd:f6:ed:e7:ff:8b:4d:8d:6a:10:51:
61:49:b3:71:75:16:b4:98:81:dc:31:5b:f6:16:0c:74:d2:96:
02:06:44:8b:c0:96:73:c6:d2:74:d7:ed:cf:a1:07:71:72:ab:
7f:76:53:6c:94:a6:b7:a9:a5:84:68:59:69:4e:c2:62:d1:c5:
ba:54:ea:4a:7f:e8:c5:bd:3f:00:6f:ca:bc:23:38:21:ce:4a:
35:8c:63:22:65:d8:cd:e3:46:36:72:ad:f4:8a:ae:50:7b:45:
0f:7a:0b:a7:32:a2:ae:7c:de:9f:0c:c2:5c:4a:b6:9b:0e:eb:
28:5e:eb:43:85:bf:4f:d1:4c:b4:02:ca:62:d5:6e:dd:b6:92:
b5:99:05:99:68:89:fb:01:ae:03:41:aa:3b:c7:56:db:0d:c5:
93:e7:bf:a3
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Apr 25 01:06:18 2024 by rpki-client on console-ams.rpki-client.org