Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a666663643a3a2f34382d3438203d3e20323135353030.roa
File: 326131313a663263303a666663643a3a2f34382d3438203d3e20323135353030.roa (raw, json)
Hash identifier: PHjxuV2U1eDARKJ+6bcGqZ9A3sIoHLrzx77v5mImr6M=
Subject key identifier: A1:89:6D:C6:6A:3B:72:DC:18:33:77:B7:CA:A7:4C:C6:BA:3C:E9:3A
Certificate issuer: /CN=11ad49c47e2d0e40cfc9b36a2bd2c514e2a6267b
Certificate serial: 0A46BC87EACEFFCA92895BCE8DDFA897BF005BAD
Authority key identifier: 11:AD:49:C4:7E:2D:0E:40:CF:C9:B3:6A:2B:D2:C5:14:E2:A6:26:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a666663643a3a2f34382d3438203d3e20323135353030.roa
Signing time: Wed 14 Feb 2024 14:35:33 +0000
ROA not before: Wed 14 Feb 2024 14:30:33 +0000
ROA not after: Wed 12 Feb 2025 14:35:33 +0000
asID: 215500
IP address blocks: 2a11:f2c0:ffcd::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.crl
rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 20:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:46:bc:87:ea:ce:ff:ca:92:89:5b:ce:8d:df:a8:97:bf:00:5b:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11ad49c47e2d0e40cfc9b36a2bd2c514e2a6267b
Validity
Not Before: Feb 14 14:30:33 2024 GMT
Not After : Feb 12 14:35:33 2025 GMT
Subject: CN=A1896DC66A3B72DC183377B7CAA74CC6BA3CE93A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:66:36:f3:0f:e5:c6:d4:0e:e3:34:34:51:4e:
50:39:e9:fe:c5:7f:f3:19:1a:9f:44:b1:fc:08:30:
9a:a2:66:44:ab:c7:2a:d2:b5:01:77:b8:99:21:29:
94:d1:60:4e:6e:75:61:92:f9:ea:29:67:72:25:a9:
02:f8:a8:62:64:10:30:40:37:4e:8d:61:9d:e1:78:
3b:31:59:6d:07:be:fb:f1:b1:3e:49:88:6b:83:38:
e2:45:73:d6:03:c7:cb:97:53:4a:1d:a9:ee:57:4e:
75:bd:eb:91:10:19:00:3d:2e:4c:32:b4:4f:77:71:
e6:5c:04:10:26:90:3f:00:a9:1b:80:68:b1:9a:e7:
aa:fa:0d:de:d1:2e:8d:80:99:d8:14:6b:9e:9f:b7:
87:e7:75:a8:3d:e5:7d:1f:c1:5c:87:86:a4:a2:09:
47:04:36:48:b7:9b:62:13:37:8f:c7:46:88:bb:f8:
d4:18:7a:ea:f4:78:65:21:70:65:6d:96:56:2e:c9:
57:85:fb:48:c4:10:02:e2:98:d4:91:1c:56:51:c4:
a1:6e:cf:cf:3a:d5:c5:12:ea:a4:b9:20:22:4f:60:
02:c1:5c:6e:70:1a:87:6b:90:aa:ed:00:c1:2f:63:
b6:71:e4:4f:ce:8a:c0:67:2c:eb:c4:a6:ef:e1:a9:
27:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:89:6D:C6:6A:3B:72:DC:18:33:77:B7:CA:A7:4C:C6:BA:3C:E9:3A
X509v3 Authority Key Identifier:
keyid:11:AD:49:C4:7E:2D:0E:40:CF:C9:B3:6A:2B:D2:C5:14:E2:A6:26:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a666663643a3a2f34382d3438203d3e20323135353030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:f2c0:ffcd::/48
Signature Algorithm: sha256WithRSAEncryption
97:7d:7b:43:9a:d3:0f:36:d8:95:ba:5a:f5:00:2d:a5:b1:09:
ca:fd:e3:b1:f5:56:e4:6a:76:2d:6f:7d:6c:43:d2:56:3d:28:
86:43:a7:47:4c:7f:da:71:bf:cd:87:67:c9:7f:30:b0:66:7b:
24:6f:49:80:54:6e:f9:14:4a:82:64:13:0a:68:c1:db:50:c3:
3c:60:eb:08:e9:97:f2:e6:4c:b1:d9:95:8e:e7:31:6e:82:dd:
74:eb:c5:50:32:f5:b2:86:66:aa:28:81:08:ff:be:60:1f:f6:
5a:e1:50:ad:7c:dc:ce:84:cc:e0:4b:85:3e:6f:9e:06:82:75:
35:7d:09:50:96:43:c2:f2:9f:84:cb:76:7a:51:4f:8d:b2:32:
ed:15:89:da:ca:34:52:a1:90:f1:e1:34:57:90:dc:a7:d1:e2:
42:c8:d1:02:df:c3:61:51:dc:87:9f:11:54:84:fd:ce:ac:da:
b8:bb:4c:69:ef:e7:48:f1:11:6c:61:86:c5:b7:8a:4d:83:cd:
76:e4:ed:a6:a9:ff:6d:87:cf:e8:e6:03:81:92:f0:8f:a4:fd:
c9:2b:89:0f:ba:e2:c2:08:3b:e6:76:b3:11:a9:84:90:95:2a:
87:d0:9a:b8:66:bc:1d:fd:01:0d:70:3b:e8:52:8f:b6:65:3d:
8a:a6:79:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 01:54:33 2024 by rpki-client on console-fra.rpki-client.org