Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a666330303a3a2f34302d3438203d3e20323032303736.roa
File: 326131313a663263303a666330303a3a2f34302d3438203d3e20323032303736.roa (raw, json)
Hash identifier: Ieja5JMQ6eR/tcN4x9+ViPKuZ03ZYW+Q5a6sXz7hCkA=
Subject key identifier: 5E:36:A2:8C:3D:9A:4E:8A:09:95:93:EF:C2:DE:48:64:C3:0C:8A:13
Certificate issuer: /CN=11ad49c47e2d0e40cfc9b36a2bd2c514e2a6267b
Certificate serial: 4AD5E3562E0C18B7D5FFAC8B68F8D2D4FE07808E
Authority key identifier: 11:AD:49:C4:7E:2D:0E:40:CF:C9:B3:6A:2B:D2:C5:14:E2:A6:26:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a666330303a3a2f34302d3438203d3e20323032303736.roa
Signing time: Mon 15 Apr 2024 17:09:53 +0000
ROA not before: Mon 15 Apr 2024 17:04:53 +0000
ROA not after: Mon 14 Apr 2025 17:09:53 +0000
asID: 202076
IP address blocks: 2a11:f2c0:fc00::/40 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.crl
rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 20:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:d5:e3:56:2e:0c:18:b7:d5:ff:ac:8b:68:f8:d2:d4:fe:07:80:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11ad49c47e2d0e40cfc9b36a2bd2c514e2a6267b
Validity
Not Before: Apr 15 17:04:53 2024 GMT
Not After : Apr 14 17:09:53 2025 GMT
Subject: CN=5E36A28C3D9A4E8A099593EFC2DE4864C30C8A13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:0d:b6:3f:2a:32:42:73:4c:16:9c:e5:f6:cd:
5e:f4:2a:ae:44:47:ee:07:3d:31:aa:10:85:d1:40:
02:2d:4b:8f:31:01:f5:2f:c5:b0:cc:a5:27:6d:95:
46:a1:98:55:6b:bf:02:ea:30:87:d4:67:58:e5:c7:
c5:fe:5a:84:6d:e9:b2:84:6b:44:67:2e:6f:27:fa:
02:b3:8c:5c:d7:5d:df:fe:df:18:fc:80:8d:22:20:
e5:72:a0:6a:30:d3:46:ea:a0:5f:7f:0e:1d:11:98:
df:91:76:0e:24:b1:85:cd:28:37:2c:a2:68:7b:79:
6d:b8:e5:c4:1f:96:6b:bb:e6:14:4f:11:1e:c8:23:
22:d1:12:d1:53:07:db:24:d8:bb:c4:2c:e2:ab:ce:
cc:3e:c6:c3:75:bc:5c:42:65:47:eb:5b:bd:17:52:
7e:20:ef:16:11:3c:d2:4e:d9:b1:7d:00:54:5f:f9:
e6:70:05:9f:a0:f5:57:e6:37:bd:4e:b9:76:08:c1:
f9:3b:95:02:48:e2:e6:17:1a:f1:a8:88:fc:77:30:
24:d9:fa:6e:28:12:5c:7c:49:5b:44:16:79:a2:e0:
52:2c:8c:59:92:88:95:de:7d:90:2b:0e:b8:fd:eb:
8d:63:d2:14:3b:5b:2d:39:ef:bf:d9:c4:85:4d:ce:
3f:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:36:A2:8C:3D:9A:4E:8A:09:95:93:EF:C2:DE:48:64:C3:0C:8A:13
X509v3 Authority Key Identifier:
keyid:11:AD:49:C4:7E:2D:0E:40:CF:C9:B3:6A:2B:D2:C5:14:E2:A6:26:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a666330303a3a2f34302d3438203d3e20323032303736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:f2c0:fc00::/40
Signature Algorithm: sha256WithRSAEncryption
5b:41:d5:39:1c:2d:f6:9b:55:63:98:da:c0:80:f7:4b:6d:5a:
bb:4b:e7:71:5e:9e:e2:b0:e2:55:63:d6:07:59:4e:81:e7:42:
c0:01:b0:ae:b1:76:d6:7d:3f:46:67:f6:24:17:88:01:a2:53:
f3:a5:29:c1:08:0d:a2:a2:10:3d:de:70:67:60:0b:f9:8f:15:
a8:d4:f7:69:4a:be:8b:55:ae:15:aa:c1:f5:b6:65:a9:1f:1e:
a6:3a:d8:0b:30:74:4d:00:71:f1:c8:fd:83:7d:13:7b:12:ac:
80:7a:b1:a6:43:d6:26:4d:93:ec:c9:b8:2d:86:05:af:dd:db:
b8:4c:1a:f9:f4:88:c8:9b:1e:8a:56:07:50:69:dd:83:6a:b9:
f4:86:c3:19:7b:ec:fa:62:55:38:4a:32:dc:5b:b2:66:e5:fb:
4d:09:a6:be:5e:16:93:f5:39:8d:5a:45:26:81:91:d5:b7:69:
f3:44:9a:c7:00:e7:34:a6:4d:e4:b2:aa:55:8d:76:b7:73:bf:
8e:fa:a2:f6:ec:eb:09:97:24:d1:18:8e:13:ed:13:40:a1:19:
cd:72:79:7d:ef:02:18:cb:81:97:29:14:49:e0:70:48:28:f2:
a8:95:99:03:c3:17:ed:23:f8:3e:30:c8:14:09:06:21:f2:90:
7b:4d:d6:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 01:54:33 2024 by rpki-client on console-fra.rpki-client.org