Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a666663343a3a2f34382d3438203d3e20323136333733.roa
File: 326131313a663263303a666663343a3a2f34382d3438203d3e20323136333733.roa (raw, json)
Hash identifier: tga09TYylRlCdQuuVOISBfGiRxL3TMlXymQA2J/KvOA=
Subject key identifier: F8:B4:C7:98:57:46:FA:2D:F8:EF:FA:79:7F:1C:23:42:63:21:38:7B
Certificate issuer: /CN=11ad49c47e2d0e40cfc9b36a2bd2c514e2a6267b
Certificate serial: 7C939570800A82F0BDB076357B2FD6B19F21BF1C
Authority key identifier: 11:AD:49:C4:7E:2D:0E:40:CF:C9:B3:6A:2B:D2:C5:14:E2:A6:26:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a666663343a3a2f34382d3438203d3e20323136333733.roa
Signing time: Wed 30 Aug 2023 13:15:04 +0000
ROA not before: Wed 30 Aug 2023 13:10:04 +0000
ROA not after: Wed 28 Aug 2024 13:15:04 +0000
asID: 216373
IP address blocks: 2a11:f2c0:ffc4::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.crl
rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 20:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:93:95:70:80:0a:82:f0:bd:b0:76:35:7b:2f:d6:b1:9f:21:bf:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11ad49c47e2d0e40cfc9b36a2bd2c514e2a6267b
Validity
Not Before: Aug 30 13:10:04 2023 GMT
Not After : Aug 28 13:15:04 2024 GMT
Subject: CN=F8B4C7985746FA2DF8EFFA797F1C23426321387B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:0b:ac:4c:b6:a2:46:91:f1:dc:ff:ba:c4:cf:
42:09:44:e0:6d:48:d5:ba:72:2f:71:4f:44:4a:69:
6d:31:64:07:4d:15:6b:4f:d8:0e:57:ab:0e:4c:22:
03:83:f4:66:f7:11:bb:12:58:0c:95:86:e3:2b:10:
4f:2d:25:65:b0:d9:2b:41:78:69:ff:33:36:1a:3b:
06:55:58:b8:0e:8c:e4:26:2f:07:a3:da:bd:f4:72:
52:81:8b:48:83:14:77:1d:4b:d7:40:45:b3:a6:70:
c2:fb:0f:57:fc:b0:27:94:be:68:79:cf:aa:d4:00:
73:bd:4e:b5:63:23:36:82:2e:ac:13:2e:41:b1:5c:
32:42:b7:68:df:5e:38:1d:53:53:68:dd:e9:13:2b:
b8:72:7e:c6:9b:56:49:83:f4:be:e4:fe:b7:f7:1e:
9a:c7:60:17:e3:39:24:34:c2:01:bc:64:e9:e8:f9:
4f:7f:c6:34:ef:5f:8c:c7:b5:8d:95:c3:18:85:f6:
dc:fd:c5:25:21:0e:c9:0d:bf:76:73:a2:96:f5:94:
1a:a4:ba:97:40:0f:3b:ea:62:2f:6f:6b:b4:3b:fa:
73:fb:f0:bc:62:92:21:b1:30:45:21:da:24:6a:20:
da:06:a6:69:8b:ff:ff:99:c8:27:ff:be:72:16:86:
21:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:B4:C7:98:57:46:FA:2D:F8:EF:FA:79:7F:1C:23:42:63:21:38:7B
X509v3 Authority Key Identifier:
keyid:11:AD:49:C4:7E:2D:0E:40:CF:C9:B3:6A:2B:D2:C5:14:E2:A6:26:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a666663343a3a2f34382d3438203d3e20323136333733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:f2c0:ffc4::/48
Signature Algorithm: sha256WithRSAEncryption
5f:ac:38:bb:60:3c:97:2a:f8:7c:b7:12:53:4d:26:9a:6a:9e:
52:47:df:ea:a8:22:9d:e8:f4:9b:dd:03:ce:ab:41:0d:05:84:
2a:b5:3f:1b:d2:c3:81:1c:7d:a8:d9:51:cc:c7:25:81:be:0a:
ca:4d:4b:2b:dd:4b:87:23:a1:35:7a:2e:32:82:4e:44:20:b3:
0c:fa:3c:5d:31:c2:c7:db:c8:35:59:ed:a6:ea:0a:f6:bd:89:
56:3f:a0:0a:de:2a:ce:a7:5f:d9:76:c7:13:7e:ed:4a:c8:c5:
c7:1c:a4:9d:46:48:f4:ef:65:e9:02:0d:c8:a6:8d:35:c1:e2:
a6:12:7b:04:7a:80:3d:3d:7a:99:be:d2:73:3e:ea:ea:35:b9:
fb:35:22:03:e0:0d:bf:0f:ba:10:bd:3b:8a:3e:02:ae:2b:a5:
b6:de:8c:7e:60:38:4a:f6:14:f8:d2:39:6e:04:0a:c4:d7:25:
a9:60:f3:50:f4:1b:92:a3:40:91:1e:de:2b:f5:44:74:a3:b1:
d0:a9:3d:5f:0b:97:f0:e5:71:77:53:3a:6d:6c:16:67:aa:6e:
ec:a2:25:07:90:31:72:8a:75:1c:1e:90:08:6f:57:1e:11:bc:
5c:f3:63:3f:5a:05:cc:2a:27:11:61:38:ee:bc:8f:f2:fe:02:
e0:70:d9:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 01:11:17 2024 by rpki-client on console-ams.rpki-client.org