Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a666430303a3a2f34302d3438203d3e20323131393938.roa
File: 326131313a663263303a666430303a3a2f34302d3438203d3e20323131393938.roa (raw, json)
Hash identifier: I/s9PJqPxHW++Ckk1Nf1NWhkFO8zf2zcyzBAgUkeDy4=
Subject key identifier: CF:B5:8C:31:63:0C:6B:E8:E1:45:C2:93:33:4E:83:98:0D:9A:00:57
Certificate issuer: /CN=11ad49c47e2d0e40cfc9b36a2bd2c514e2a6267b
Certificate serial: 3CA059EE0208738FECE93EADC00B3C4DE2B12A95
Authority key identifier: 11:AD:49:C4:7E:2D:0E:40:CF:C9:B3:6A:2B:D2:C5:14:E2:A6:26:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a666430303a3a2f34302d3438203d3e20323131393938.roa
Signing time: Wed 08 Nov 2023 14:49:50 +0000
ROA not before: Wed 08 Nov 2023 14:44:50 +0000
ROA not after: Wed 06 Nov 2024 14:49:50 +0000
asID: 211998
IP address blocks: 2a11:f2c0:fd00::/40 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.crl
rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 20:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:a0:59:ee:02:08:73:8f:ec:e9:3e:ad:c0:0b:3c:4d:e2:b1:2a:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11ad49c47e2d0e40cfc9b36a2bd2c514e2a6267b
Validity
Not Before: Nov 8 14:44:50 2023 GMT
Not After : Nov 6 14:49:50 2024 GMT
Subject: CN=CFB58C31630C6BE8E145C293334E83980D9A0057
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a5:18:40:3a:cd:b3:8b:71:a5:7e:8e:b5:cf:
95:70:d4:2f:f9:2f:5e:57:de:60:e7:29:d6:12:28:
96:dc:49:7b:4d:04:13:79:30:39:6b:3e:10:c2:a3:
6f:3d:cf:30:c6:38:ad:bf:db:f1:f2:07:8b:90:0f:
f1:7b:48:a1:52:72:1b:26:2b:43:67:35:64:b9:b5:
02:71:b2:e2:87:b9:08:14:8c:6c:7f:33:04:be:47:
49:98:43:c7:59:1c:e4:c4:53:b3:96:bb:89:46:63:
10:e6:40:27:a1:7e:6f:7b:44:29:98:a4:77:0b:bb:
d8:86:45:94:9b:29:05:c2:06:89:69:81:64:55:fc:
7a:ef:e1:92:c6:12:87:59:3d:69:0f:96:5b:67:f9:
db:57:fe:e5:71:38:2c:58:18:d3:ea:b7:da:b1:02:
21:22:d7:98:a9:f4:ab:1e:2b:86:4d:4f:d2:a0:90:
dd:60:51:b0:26:59:68:37:61:5a:5a:73:d8:c3:68:
8a:4e:87:77:f0:15:32:3d:05:1d:a9:b0:4f:60:d0:
f6:b3:62:d7:26:7e:d6:16:e6:75:cf:a2:aa:86:b4:
86:16:77:47:c8:02:a6:66:83:96:b3:36:d4:e4:9a:
09:69:9c:9a:db:9e:d3:48:db:4e:44:13:7f:ff:a3:
30:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:B5:8C:31:63:0C:6B:E8:E1:45:C2:93:33:4E:83:98:0D:9A:00:57
X509v3 Authority Key Identifier:
keyid:11:AD:49:C4:7E:2D:0E:40:CF:C9:B3:6A:2B:D2:C5:14:E2:A6:26:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a666430303a3a2f34302d3438203d3e20323131393938.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:f2c0:fd00::/40
Signature Algorithm: sha256WithRSAEncryption
0d:0c:a8:44:f0:bf:5f:c2:20:32:a9:45:40:58:fa:ea:4d:5f:
bf:60:27:20:ac:e5:d5:50:ce:25:80:c8:14:5b:cc:c3:86:43:
8b:88:bc:5e:26:94:c9:2a:b0:31:b0:73:c3:a5:8c:ff:db:8f:
03:95:5b:13:ea:cb:65:4a:3b:54:8f:76:5c:0b:25:8d:a8:28:
ed:ad:e7:2c:ea:ce:57:07:c7:93:84:a1:eb:02:af:4c:9f:89:
1a:98:5f:98:55:df:0f:21:1e:1c:d0:2e:0e:9f:be:d6:d1:2f:
29:69:0a:23:a7:f7:03:84:67:88:f2:28:c5:dc:a6:23:16:37:
f4:ae:92:c2:3b:64:2a:42:45:70:a1:92:36:fa:c3:a1:6a:2b:
06:11:7e:d3:2a:ee:02:f1:ee:16:32:6b:a1:10:ff:d6:5b:c7:
6c:f2:c7:c4:e4:ef:73:ca:41:95:c5:dc:f4:16:ee:9a:65:97:
58:c6:67:88:5e:e0:09:42:93:d1:7b:5f:62:c9:f0:90:f4:3a:
c8:8d:cd:7c:8b:f5:f7:21:4d:13:8c:d7:19:4c:41:65:4f:a1:
19:26:a2:7c:31:48:11:f0:1b:68:17:45:50:46:5b:68:2e:68:
c1:f6:ce:47:ba:64:e9:c6:87:7d:60:d7:39:8d:e7:ae:19:73:
73:31:cd:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 01:54:33 2024 by rpki-client on console-fra.rpki-client.org