Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a666663623a3a2f34382d3438203d3e20323135373738.roa
File: 326131313a663263303a666663623a3a2f34382d3438203d3e20323135373738.roa (raw, json)
Hash identifier: YwAEP/goyCtynH4zKybjAVzedXtqvbWtTGpgsViIA74=
Subject key identifier: 53:0C:1E:2B:A2:EF:3F:94:29:C3:57:E0:D7:FB:ED:BC:5E:C5:13:5B
Certificate issuer: /CN=11ad49c47e2d0e40cfc9b36a2bd2c514e2a6267b
Certificate serial: 0F604E46DAF016FAF3A254B03566EBEFCE2EC58F
Authority key identifier: 11:AD:49:C4:7E:2D:0E:40:CF:C9:B3:6A:2B:D2:C5:14:E2:A6:26:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a666663623a3a2f34382d3438203d3e20323135373738.roa
Signing time: Fri 05 Apr 2024 21:30:19 +0000
ROA not before: Fri 05 Apr 2024 21:25:19 +0000
ROA not after: Fri 04 Apr 2025 21:30:19 +0000
asID: 215778
IP address blocks: 2a11:f2c0:ffcb::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.crl
rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 20:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:60:4e:46:da:f0:16:fa:f3:a2:54:b0:35:66:eb:ef:ce:2e:c5:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11ad49c47e2d0e40cfc9b36a2bd2c514e2a6267b
Validity
Not Before: Apr 5 21:25:19 2024 GMT
Not After : Apr 4 21:30:19 2025 GMT
Subject: CN=530C1E2BA2EF3F9429C357E0D7FBEDBC5EC5135B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:7f:e5:42:e3:0b:4a:9b:d7:19:cb:6d:ee:97:
bc:db:7c:12:84:20:45:e8:ab:c0:ef:25:40:60:02:
81:39:fc:c2:67:d8:ab:67:66:28:6c:8a:79:d0:1c:
9e:99:c9:13:7c:2e:4d:1e:a1:d3:11:2f:d3:65:a6:
dc:28:ae:c6:71:b4:45:b3:1a:ff:8b:44:d7:a3:d0:
c4:15:20:94:df:0c:f3:0a:74:18:ea:a3:94:c8:d5:
af:c9:a6:8b:ee:a2:2e:40:ce:4e:a0:81:26:63:1c:
e0:08:b9:f1:8c:54:5e:05:08:48:ce:3d:52:96:a4:
c3:ed:74:31:44:96:f4:d2:4f:f0:47:17:a0:69:a7:
aa:50:14:e6:8e:89:db:30:cc:ac:a3:b8:6d:61:bb:
69:77:87:1d:08:8e:c0:c0:ce:59:48:64:5a:8f:93:
12:8e:5a:f6:d6:a4:77:cb:8f:aa:ac:db:8f:03:65:
02:31:fd:bc:37:59:8e:20:79:52:88:b1:24:a1:0a:
7f:e8:0b:aa:ca:e7:ec:da:4f:52:30:71:00:bf:bf:
db:65:9e:b7:a8:df:44:72:57:00:4c:2f:7b:90:f3:
20:d0:d1:1f:f8:3c:0d:4b:db:86:87:e6:85:90:a6:
0c:27:cf:93:7a:fb:7d:50:9e:12:68:59:5e:b7:05:
80:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:0C:1E:2B:A2:EF:3F:94:29:C3:57:E0:D7:FB:ED:BC:5E:C5:13:5B
X509v3 Authority Key Identifier:
keyid:11:AD:49:C4:7E:2D:0E:40:CF:C9:B3:6A:2B:D2:C5:14:E2:A6:26:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a666663623a3a2f34382d3438203d3e20323135373738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:f2c0:ffcb::/48
Signature Algorithm: sha256WithRSAEncryption
04:7a:03:a1:d9:fe:03:5e:80:8f:cb:24:9f:c8:5e:14:e2:65:
7b:c3:a1:f5:16:de:07:19:b8:c1:2b:0d:fd:53:9b:86:d1:b5:
30:3d:2f:97:48:74:b0:f1:5a:0f:ff:4b:1b:c3:3a:11:58:30:
52:dd:f0:90:d4:95:91:46:0e:71:29:80:9e:d6:dd:33:16:ab:
32:7d:60:6c:b8:15:07:85:b8:d5:14:bd:f8:55:c4:66:81:f8:
28:0b:a7:5c:c5:ec:49:0d:76:f5:95:ac:33:d7:72:5b:c0:16:
e9:48:f4:4b:f0:02:e0:42:d8:16:8b:f5:75:57:30:54:27:59:
89:b2:e1:95:f6:59:c8:7e:51:49:1e:33:4c:ba:bd:e7:ec:f3:
19:0a:33:c8:1a:6f:11:a8:51:ca:d3:01:fe:1c:9e:9d:44:ea:
38:b8:87:55:b1:ed:5e:97:82:6f:b8:07:fc:fa:35:93:e5:c1:
d6:0b:74:60:65:75:e8:95:a5:e8:7e:af:de:31:fc:61:b6:5d:
68:f6:0f:fe:91:2d:dd:c6:ef:62:a6:91:59:74:2c:fc:f1:57:
7f:7f:82:55:4c:52:f3:35:0c:74:c9:ff:44:26:64:95:9d:01:
40:ef:05:0e:0c:99:d1:37:64:66:1e:9a:5a:ff:9c:75:f5:9f:
6b:b7:69:1d
-----BEGIN CERTIFICATE-----
MIIFQDCCBCigAwIBAgIUD2BORtrwFvrzolSwNWbr784uxY8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTFhZDQ5YzQ3ZTJkMGU0MGNmYzliMzZhMmJkMmM1MTRl
MmE2MjY3YjAeFw0yNDA0MDUyMTI1MTlaFw0yNTA0MDQyMTMwMTlaMDMxMTAvBgNV
BAMTKDUzMEMxRTJCQTJFRjNGOTQyOUMzNTdFMEQ3RkJFREJDNUVDNTEzNUIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCLf+VC4wtKm9cZy23ul7zbfBKE
IEXoq8DvJUBgAoE5/MJn2KtnZihsinnQHJ6ZyRN8Lk0eodMRL9NlptworsZxtEWz
Gv+LRNej0MQVIJTfDPMKdBjqo5TI1a/Jpovuoi5Azk6ggSZjHOAIufGMVF4FCEjO
PVKWpMPtdDFElvTST/BHF6Bpp6pQFOaOidswzKyjuG1hu2l3hx0IjsDAzllIZFqP
kxKOWvbWpHfLj6qs248DZQIx/bw3WY4geVKIsSShCn/oC6rK5+zaT1IwcQC/v9tl
nreo30RyVwBML3uQ8yDQ0R/4PA1L24aH5oWQpgwnz5N6+31QnhJoWV63BYBFAgMB
AAGjggJKMIICRjAdBgNVHQ4EFgQUUwweK6LvP5Qpw1fg1/vtvF7FE1swHwYDVR0j
BBgwFoAUEa1JxH4tDkDPybNqK9LFFOKmJnswDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvN2I1NzVlYTctNzg2Zi00YjJkLWE0NTUtNzlkN2ZjNDNl
Y2VlLzcvMTFBRDQ5QzQ3RTJEMEU0MENGQzlCMzZBMkJEMkM1MTRFMkE2MjY3Qi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0VhMUp4SDR0RGtEUHliTnFLOUxGRk9L
bUpucy5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvN2I1NzVlYTct
Nzg2Zi00YjJkLWE0NTUtNzlkN2ZjNDNlY2VlLzcvMzI2MTMxMzEzYTY2MzI2MzMw
M2E2NjY2NjM2MjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNTM3MzczOC5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw
DwQCAAIwCQMHACoR8sD/yzANBgkqhkiG9w0BAQsFAAOCAQEABHoDodn+A16Aj8sk
n8heFOJle8Oh9RbeBxm4wSsN/VObhtG1MD0vl0h0sPFaD/9LG8M6EVgwUt3wkNSV
kUYOcSmAntbdMxarMn1gbLgVB4W41RS9+FXEZoH4KAunXMXsSQ129ZWsM9dyW8AW
6Uj0S/AC4ELYFov1dVcwVCdZibLhlfZZyH5RSR4zTLq95+zzGQozyBpvEahRytMB
/hyenUTqOLiHVbHtXpeCb7gH/Po1k+XB1gt0YGV16JWl6H6v3jH8YbZdaPYP/pEt
3cbvYqaRWXQs/PFXf3+CVUxS8zUMdMn/RCZklZ0BQO8FDgyZ0TdkZh6aWv+cdfWf
a7dpHQ==
-----END CERTIFICATE-----
Generated at Sat May 4 01:11:17 2024 by rpki-client on console-ams.rpki-client.org