Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a666663333a3a2f34382d3438203d3e20313938383035.roa
File: 326131313a663263303a666663333a3a2f34382d3438203d3e20313938383035.roa (raw, json)
Hash identifier: d5tvuDLH/nyHrFqsFC5EA6/2MrJaie1SG/gJegHRIR0=
Subject key identifier: 78:1D:50:6F:FA:1E:8E:D8:B7:A6:9B:D6:08:A9:26:68:F3:60:5C:3E
Certificate issuer: /CN=11ad49c47e2d0e40cfc9b36a2bd2c514e2a6267b
Certificate serial: 158B84FC82FE74A714CEB8351BA2782D96BE9EAB
Authority key identifier: 11:AD:49:C4:7E:2D:0E:40:CF:C9:B3:6A:2B:D2:C5:14:E2:A6:26:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a666663333a3a2f34382d3438203d3e20313938383035.roa
Signing time: Mon 15 Apr 2024 17:09:53 +0000
ROA not before: Mon 15 Apr 2024 17:04:53 +0000
ROA not after: Mon 14 Apr 2025 17:09:53 +0000
asID: 198805
IP address blocks: 2a11:f2c0:ffc3::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.crl
rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 20:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:8b:84:fc:82:fe:74:a7:14:ce:b8:35:1b:a2:78:2d:96:be:9e:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11ad49c47e2d0e40cfc9b36a2bd2c514e2a6267b
Validity
Not Before: Apr 15 17:04:53 2024 GMT
Not After : Apr 14 17:09:53 2025 GMT
Subject: CN=781D506FFA1E8ED8B7A69BD608A92668F3605C3E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:1d:f3:ac:d1:f5:ce:3d:3c:04:82:31:d0:5a:
71:a3:78:84:c8:f6:c6:48:92:1d:fc:73:40:e3:ad:
8f:df:13:e7:90:aa:28:32:51:5a:82:8d:11:86:e2:
69:55:82:02:bf:22:c5:21:ef:27:f7:2d:83:38:09:
c2:57:23:41:a1:b6:9e:a5:4d:f5:8c:c9:31:cc:86:
f9:07:e0:68:86:87:f1:e5:79:f1:46:08:06:ba:c2:
c2:4e:ac:aa:9b:de:a8:10:4d:89:04:54:c2:c1:d4:
72:36:71:ab:c5:38:65:72:c0:27:35:d0:de:c7:f7:
d0:5f:87:6c:50:88:78:96:74:60:08:13:6c:db:35:
8a:94:9d:1c:e9:b3:66:8b:c6:d5:90:51:79:b0:c9:
ee:9a:23:9c:40:9e:7e:7f:1e:a7:5e:f2:40:84:04:
d1:c9:cd:9b:a6:29:6d:06:49:e6:6d:ee:b5:df:b8:
16:dd:34:06:72:f0:5c:5c:d3:a9:38:79:3b:32:05:
de:31:70:b6:44:77:63:05:62:7c:20:cf:70:57:82:
f6:cb:b4:e9:07:4d:b3:31:3b:0f:f5:ce:31:ff:52:
57:fd:a0:84:d3:08:bf:b4:a3:ce:1e:65:0e:63:d4:
1e:8e:f1:9a:0e:6e:66:e4:a4:16:42:b8:e8:75:16:
ec:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:1D:50:6F:FA:1E:8E:D8:B7:A6:9B:D6:08:A9:26:68:F3:60:5C:3E
X509v3 Authority Key Identifier:
keyid:11:AD:49:C4:7E:2D:0E:40:CF:C9:B3:6A:2B:D2:C5:14:E2:A6:26:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a666663333a3a2f34382d3438203d3e20313938383035.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:f2c0:ffc3::/48
Signature Algorithm: sha256WithRSAEncryption
94:65:56:d8:dd:5d:28:15:fc:e9:c1:08:92:8a:7a:d2:c7:09:
87:00:c9:97:da:ee:2a:28:71:97:39:24:df:67:12:47:0c:49:
17:3d:ff:6b:ff:29:db:89:5b:28:48:87:3d:b3:9c:d7:f5:32:
46:90:43:c2:92:ef:74:1e:8d:55:63:ec:7a:76:2a:32:9e:fe:
a4:a8:80:8d:dc:f5:75:30:26:96:a7:00:31:f8:71:2b:6a:41:
78:ea:fc:6b:66:9f:a7:9c:e2:29:7f:25:04:70:4c:20:b7:b6:
71:03:ed:8b:e7:a5:0f:0a:95:98:76:85:31:7e:0e:d6:60:1e:
d6:9d:ca:89:f5:a4:28:b7:09:0b:43:9f:fb:d1:aa:8b:f8:9d:
8e:99:8b:89:dd:b5:c9:16:be:e2:2b:eb:d7:91:c9:24:b9:96:
df:4f:72:bd:f2:fa:2b:b1:3c:b6:54:e5:12:ca:c0:3c:a2:05:
ed:3b:fd:01:55:7c:e3:57:e3:a6:03:45:2d:8d:2d:7e:d7:26:
75:36:a8:07:af:46:e7:c3:08:d4:60:80:a1:46:4e:95:94:85:
9a:b6:ac:68:2d:10:f4:23:36:b9:be:1c:05:2f:6a:18:8d:cc:
a8:40:c1:59:76:13:cf:32:1d:54:d1:89:00:4d:74:91:df:aa:
ab:73:98:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 01:54:33 2024 by rpki-client on console-fra.rpki-client.org