Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a666663383a3a2f34382d3438203d3e20323136303535.roa
File: 326131313a663263303a666663383a3a2f34382d3438203d3e20323136303535.roa (raw, json)
Hash identifier: lw4wrUKDnc9MrzE58FMInTYCC/a4+ewQWnFhyPJtB+4=
Subject key identifier: 07:D2:17:B6:5B:4C:09:12:9D:55:7E:5F:ED:37:D6:47:CC:3E:DF:4F
Certificate issuer: /CN=11ad49c47e2d0e40cfc9b36a2bd2c514e2a6267b
Certificate serial: 5DAE0201384CBAF240074A42399068F0C8EEB1D3
Authority key identifier: 11:AD:49:C4:7E:2D:0E:40:CF:C9:B3:6A:2B:D2:C5:14:E2:A6:26:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a666663383a3a2f34382d3438203d3e20323136303535.roa
Signing time: Thu 02 Nov 2023 00:28:41 +0000
ROA not before: Thu 02 Nov 2023 00:23:41 +0000
ROA not after: Thu 31 Oct 2024 00:28:41 +0000
asID: 216055
IP address blocks: 2a11:f2c0:ffc8::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.crl
rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 20:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:ae:02:01:38:4c:ba:f2:40:07:4a:42:39:90:68:f0:c8:ee:b1:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11ad49c47e2d0e40cfc9b36a2bd2c514e2a6267b
Validity
Not Before: Nov 2 00:23:41 2023 GMT
Not After : Oct 31 00:28:41 2024 GMT
Subject: CN=07D217B65B4C09129D557E5FED37D647CC3EDF4F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:67:04:55:59:71:e8:22:86:eb:7b:d7:e6:f8:
d2:cf:54:87:80:b2:94:5b:12:dd:89:54:aa:8f:5d:
78:0d:6f:6c:5a:76:19:76:11:a9:3f:6b:5b:13:ca:
42:81:4a:0d:9e:db:9c:ba:05:1a:cf:e5:f1:bb:61:
48:bb:2d:b8:76:96:9e:27:e0:81:c5:9f:34:52:e0:
1c:08:4b:ca:01:49:fc:f0:92:2c:92:53:43:3e:44:
fe:83:04:6d:24:1b:fa:c1:36:68:94:c2:bf:87:74:
f1:87:29:03:ed:3a:f3:4d:f1:5c:f9:29:2c:ed:2f:
6a:50:d6:eb:8d:7a:8b:33:32:91:32:f9:71:78:ca:
5c:02:dd:86:ab:90:12:3d:e0:d1:6f:52:3d:ef:65:
2f:98:35:bd:22:a7:d9:1e:cf:15:89:7c:9f:f6:a3:
af:6e:cb:de:6d:0f:d6:2b:a9:f7:8c:fc:60:0a:3d:
15:38:b4:8a:48:21:3f:3c:9a:d1:f5:c7:ef:85:86:
2a:36:80:e2:f4:d6:51:6c:45:3c:b4:0f:9e:d0:4b:
9f:37:82:ec:54:cf:f6:10:02:88:f6:1d:b3:a5:8b:
89:f1:ff:45:e7:11:70:ab:b1:b4:8f:59:6f:51:55:
4d:88:60:b5:99:c1:1d:c8:f0:49:d3:13:17:50:ab:
0b:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:D2:17:B6:5B:4C:09:12:9D:55:7E:5F:ED:37:D6:47:CC:3E:DF:4F
X509v3 Authority Key Identifier:
keyid:11:AD:49:C4:7E:2D:0E:40:CF:C9:B3:6A:2B:D2:C5:14:E2:A6:26:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a666663383a3a2f34382d3438203d3e20323136303535.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:f2c0:ffc8::/48
Signature Algorithm: sha256WithRSAEncryption
2c:04:02:58:8d:9c:2e:50:e6:0d:aa:7e:ba:a9:df:47:39:93:
5c:70:37:80:3c:85:91:f4:01:97:fa:49:5e:c7:48:2b:dc:71:
2a:a1:31:4c:13:3f:25:5f:c2:e9:ac:36:c4:d5:71:46:77:5b:
8e:a4:4d:fa:39:17:db:5b:21:34:f2:92:c3:99:8c:b1:ca:72:
a3:e9:a2:3d:85:ee:5d:f9:e0:fd:e1:63:a4:d6:f0:b7:bd:08:
8a:00:4f:4e:e3:56:c9:57:e9:12:3c:c0:85:ab:64:cf:49:d9:
ed:b5:cf:fc:8a:88:55:1b:c3:d7:30:e4:8e:b9:cf:d8:4e:79:
fc:bf:2f:e7:35:1c:3b:2c:f8:14:c6:02:05:c0:08:33:a4:21:
9c:80:07:34:65:5a:cc:68:8c:21:60:9b:40:d8:03:cb:58:4a:
89:31:aa:8a:47:4c:64:f1:97:fa:b1:f2:08:33:3a:10:ea:62:
3c:52:71:30:7f:63:c6:89:f0:d5:6d:bc:90:b9:9a:a0:19:09:
cd:cd:68:8d:7a:ec:c0:01:81:d0:39:9b:9a:b2:c1:0f:27:fc:
53:84:2e:24:bf:8c:5c:28:c2:00:b9:4e:26:6c:7c:fd:a5:29:
75:66:e2:fb:ac:3f:27:d7:62:f6:e1:bd:e2:c8:2c:51:2d:06:
11:84:0b:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 01:54:33 2024 by rpki-client on console-fra.rpki-client.org