Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a666663353a3a2f34382d3438203d3e20323136323534.roa
File: 326131313a663263303a666663353a3a2f34382d3438203d3e20323136323534.roa (raw, json)
Hash identifier: mEse6380oZV0Y7oT2B0moF1I2CbZ6nfZ4m05LCg+EJ4=
Subject key identifier: DF:C3:AC:2E:ED:3C:3E:3A:9F:39:11:D5:2C:72:CC:F6:47:18:F0:88
Certificate issuer: /CN=11ad49c47e2d0e40cfc9b36a2bd2c514e2a6267b
Certificate serial: 0FDDE340768961BC3D6178319E32D319D42B0706
Authority key identifier: 11:AD:49:C4:7E:2D:0E:40:CF:C9:B3:6A:2B:D2:C5:14:E2:A6:26:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a666663353a3a2f34382d3438203d3e20323136323534.roa
Signing time: Sat 30 Sep 2023 17:23:47 +0000
ROA not before: Sat 30 Sep 2023 17:18:47 +0000
ROA not after: Sat 28 Sep 2024 17:23:47 +0000
asID: 216254
IP address blocks: 2a11:f2c0:ffc5::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.crl
rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 20:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:dd:e3:40:76:89:61:bc:3d:61:78:31:9e:32:d3:19:d4:2b:07:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11ad49c47e2d0e40cfc9b36a2bd2c514e2a6267b
Validity
Not Before: Sep 30 17:18:47 2023 GMT
Not After : Sep 28 17:23:47 2024 GMT
Subject: CN=DFC3AC2EED3C3E3A9F3911D52C72CCF64718F088
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:a9:a5:31:e0:2b:dc:34:b7:9c:4c:5f:0d:6b:
92:f5:3f:95:c4:a5:25:13:ab:e7:b7:c4:94:18:96:
8a:97:b1:ef:8e:b4:c0:d2:75:6a:5d:e4:59:ac:e3:
44:20:44:e7:9d:ee:c9:ae:97:9b:9d:1c:d4:28:00:
1f:82:b2:9f:7a:30:ac:df:ec:64:45:bb:45:0d:37:
99:c5:91:1b:37:4d:a0:a1:72:20:84:3a:86:6a:b9:
02:df:d3:85:df:76:0f:1e:70:6d:87:0a:a5:03:b1:
fe:d9:3d:cd:4c:15:c3:86:b8:86:b0:eb:40:f4:bd:
9d:f3:65:64:e3:51:8a:84:8f:18:3b:8f:0c:96:20:
c6:68:f7:75:92:b5:05:3c:10:29:4f:97:fa:7d:50:
cd:7f:e5:1c:73:c7:62:e1:89:a9:5c:79:67:7a:da:
f4:60:5c:af:32:21:c5:13:a6:40:df:15:bd:7d:ae:
73:c1:bf:ed:fe:f9:1c:97:69:6a:56:20:02:9b:03:
0d:41:0e:67:a4:05:b8:04:74:9e:a6:d5:6c:2b:27:
60:fc:6f:2e:f1:22:b2:ea:57:37:d7:74:a5:14:38:
22:cd:33:b1:5b:d2:8e:bc:9a:46:42:17:09:57:cf:
18:da:59:67:e8:a4:6d:52:8a:c0:c8:b1:9e:1e:aa:
84:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:C3:AC:2E:ED:3C:3E:3A:9F:39:11:D5:2C:72:CC:F6:47:18:F0:88
X509v3 Authority Key Identifier:
keyid:11:AD:49:C4:7E:2D:0E:40:CF:C9:B3:6A:2B:D2:C5:14:E2:A6:26:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a666663353a3a2f34382d3438203d3e20323136323534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:f2c0:ffc5::/48
Signature Algorithm: sha256WithRSAEncryption
5b:28:e3:44:23:8a:76:e8:9d:8c:fb:ff:e6:22:63:dd:2c:8d:
8d:21:e4:48:ec:e6:81:a3:78:79:6c:fb:4d:62:a4:fc:92:eb:
53:ba:2e:ab:8e:17:b1:9c:1e:fc:bb:4d:16:5c:2c:83:db:45:
18:d4:06:ee:d2:b9:1f:2f:35:69:bd:e7:d1:47:01:a2:c4:67:
89:4a:e1:a7:dd:31:4c:6e:0e:69:29:33:ce:16:b5:f5:a1:62:
55:c0:89:2a:b1:6d:46:a7:f3:3f:a7:d8:99:80:01:68:99:f1:
41:ff:40:0b:08:34:6f:e7:fd:7c:9c:e9:20:3d:6a:f5:b7:a9:
de:d0:84:e2:c6:93:30:44:38:41:5f:59:53:10:9d:e8:27:69:
d2:bf:bd:48:07:ee:f7:69:a8:cd:a8:ef:8e:fa:fc:1c:ee:61:
46:38:f1:82:e1:e0:0f:5e:f2:c8:ef:51:41:05:d7:d4:10:b1:
b2:97:40:94:6f:1c:de:06:aa:47:b8:48:61:76:ab:4b:ed:72:
f6:b7:fd:61:8a:34:db:37:41:e8:1e:ed:bd:0e:d5:1e:ae:ab:
83:b0:72:4e:a9:17:50:8f:1c:54:9f:7b:fc:ed:98:0f:54:86:
fb:c5:fa:59:a0:32:ef:f4:03:43:d3:13:e9:06:1a:af:c2:f7:
ce:8e:70:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 01:11:17 2024 by rpki-client on console-ams.rpki-client.org