Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a666666303a3a2f34382d3438203d3e20323033303234.roa
File: 326131313a663263303a666666303a3a2f34382d3438203d3e20323033303234.roa (raw, json)
Hash identifier: qfQO2X5oAMuL3/exFSbuOQjdQstViHaBqSm67Rq3nmo=
Subject key identifier: 75:AE:9F:B4:F8:05:AB:52:90:F1:F8:2A:2B:5E:10:4E:F4:56:11:CD
Certificate issuer: /CN=11ad49c47e2d0e40cfc9b36a2bd2c514e2a6267b
Certificate serial: 5BE462715306F81A272D17AE41F9CE3FECB83E8C
Authority key identifier: 11:AD:49:C4:7E:2D:0E:40:CF:C9:B3:6A:2B:D2:C5:14:E2:A6:26:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a666666303a3a2f34382d3438203d3e20323033303234.roa
Signing time: Wed 08 Nov 2023 14:50:06 +0000
ROA not before: Wed 08 Nov 2023 14:45:06 +0000
ROA not after: Wed 06 Nov 2024 14:50:06 +0000
asID: 203024
IP address blocks: 2a11:f2c0:fff0::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.crl
rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 20:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:e4:62:71:53:06:f8:1a:27:2d:17:ae:41:f9:ce:3f:ec:b8:3e:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11ad49c47e2d0e40cfc9b36a2bd2c514e2a6267b
Validity
Not Before: Nov 8 14:45:06 2023 GMT
Not After : Nov 6 14:50:06 2024 GMT
Subject: CN=75AE9FB4F805AB5290F1F82A2B5E104EF45611CD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:e0:52:fa:24:44:e6:67:45:51:ea:ba:17:bf:
48:53:fb:c7:3b:68:63:ea:a8:f3:14:bc:69:e4:06:
d4:fc:99:95:77:67:c1:6a:5c:87:4d:6a:88:cf:8f:
29:53:e4:c3:9c:a2:49:f2:5a:de:dc:89:18:f1:6f:
1b:8e:cd:d0:09:d1:d2:44:e9:ee:85:b2:2b:9f:84:
20:ed:0f:1e:70:4d:6b:c5:6a:47:99:4d:f0:2b:a7:
c7:44:fe:d6:b7:a9:ae:5e:81:fc:20:1e:df:45:71:
9b:fb:19:f2:39:22:80:18:e2:78:64:c6:8d:dd:dd:
1a:22:7f:69:90:b6:9a:a3:53:4a:d0:3e:2b:e7:10:
9e:f7:a5:21:b0:8a:87:0a:b1:35:ad:8b:1c:bc:e8:
a1:01:1c:ee:66:1f:24:14:6a:04:1a:5b:34:a9:71:
08:4e:b4:86:85:e6:f2:19:9f:cb:51:e4:cc:64:87:
6b:12:82:ff:f4:5b:1d:67:64:4c:85:a5:fd:f2:6e:
53:17:8d:4c:ec:6f:8a:df:b5:73:74:51:e9:52:54:
fb:d6:a6:35:95:29:96:c1:fa:dc:4e:ab:5e:a0:d8:
46:29:e6:f2:ca:d2:68:64:84:15:38:b3:b0:6f:59:
e2:13:3e:f2:40:a4:38:1d:60:26:3f:93:0f:f6:03:
e4:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:AE:9F:B4:F8:05:AB:52:90:F1:F8:2A:2B:5E:10:4E:F4:56:11:CD
X509v3 Authority Key Identifier:
keyid:11:AD:49:C4:7E:2D:0E:40:CF:C9:B3:6A:2B:D2:C5:14:E2:A6:26:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a666666303a3a2f34382d3438203d3e20323033303234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:f2c0:fff0::/48
Signature Algorithm: sha256WithRSAEncryption
62:29:ab:2c:34:68:a9:a1:49:50:4e:a7:93:d1:e6:87:aa:9f:
29:66:cd:2b:a1:f1:3c:24:52:be:22:bc:43:a5:8c:20:12:d9:
50:79:09:0c:56:6e:fc:14:3d:8e:93:63:27:a5:f8:41:57:cc:
04:3a:8b:4e:d3:7b:8e:1b:26:33:1a:62:a8:06:63:a1:3f:f1:
49:eb:0f:ac:5a:10:f8:91:69:03:fd:b6:64:66:64:be:1d:1e:
e5:28:1a:6f:a9:4d:e5:84:37:d0:f4:e3:cb:f5:45:e8:23:6b:
c9:bf:21:dc:79:1d:f4:26:33:c9:b7:67:3a:1a:c7:78:44:44:
95:9c:5f:36:92:cd:4c:18:c4:d1:b5:27:f3:1e:95:d6:f3:7f:
db:7e:7f:15:36:e4:66:96:31:2e:53:c3:6d:28:32:ef:99:76:
af:3e:68:15:43:e7:39:53:68:0c:1e:2f:6c:29:5f:fa:5b:13:
19:38:bd:3e:8f:e7:ec:10:ae:89:9c:76:bc:50:4d:86:eb:52:
05:ac:ce:dd:45:85:5f:3a:1b:b2:77:66:9b:91:37:93:a7:61:
22:f6:ee:91:fc:e8:b7:e8:65:e1:2a:9e:2d:05:17:27:aa:ea:
a7:97:31:e0:8c:90:97:93:af:b8:c5:ca:99:83:78:a8:06:70:
a1:dc:20:68
-----BEGIN CERTIFICATE-----
MIIFQDCCBCigAwIBAgIUW+RicVMG+BonLReuQfnOP+y4PowwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTFhZDQ5YzQ3ZTJkMGU0MGNmYzliMzZhMmJkMmM1MTRl
MmE2MjY3YjAeFw0yMzExMDgxNDQ1MDZaFw0yNDExMDYxNDUwMDZaMDMxMTAvBgNV
BAMTKDc1QUU5RkI0RjgwNUFCNTI5MEYxRjgyQTJCNUUxMDRFRjQ1NjExQ0QwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDd4FL6JETmZ0VR6roXv0hT+8c7
aGPqqPMUvGnkBtT8mZV3Z8FqXIdNaojPjylT5MOcoknyWt7ciRjxbxuOzdAJ0dJE
6e6FsiufhCDtDx5wTWvFakeZTfArp8dE/ta3qa5egfwgHt9FcZv7GfI5IoAY4nhk
xo3d3Roif2mQtpqjU0rQPivnEJ73pSGwiocKsTWtixy86KEBHO5mHyQUagQaWzSp
cQhOtIaF5vIZn8tR5Mxkh2sSgv/0Wx1nZEyFpf3yblMXjUzsb4rftXN0UelSVPvW
pjWVKZbB+txOq16g2EYp5vLK0mhkhBU4s7BvWeITPvJApDgdYCY/kw/2A+QtAgMB
AAGjggJKMIICRjAdBgNVHQ4EFgQUda6ftPgFq1KQ8fgqK14QTvRWEc0wHwYDVR0j
BBgwFoAUEa1JxH4tDkDPybNqK9LFFOKmJnswDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvN2I1NzVlYTctNzg2Zi00YjJkLWE0NTUtNzlkN2ZjNDNl
Y2VlLzcvMTFBRDQ5QzQ3RTJEMEU0MENGQzlCMzZBMkJEMkM1MTRFMkE2MjY3Qi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0VhMUp4SDR0RGtEUHliTnFLOUxGRk9L
bUpucy5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvN2I1NzVlYTct
Nzg2Zi00YjJkLWE0NTUtNzlkN2ZjNDNlY2VlLzcvMzI2MTMxMzEzYTY2MzI2MzMw
M2E2NjY2NjYzMDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzAzMzMwMzIzNC5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw
DwQCAAIwCQMHACoR8sD/8DANBgkqhkiG9w0BAQsFAAOCAQEAYimrLDRoqaFJUE6n
k9Hmh6qfKWbNK6HxPCRSviK8Q6WMIBLZUHkJDFZu/BQ9jpNjJ6X4QVfMBDqLTtN7
jhsmMxpiqAZjoT/xSesPrFoQ+JFpA/22ZGZkvh0e5Sgab6lN5YQ30PTjy/VF6CNr
yb8h3Hkd9CYzybdnOhrHeERElZxfNpLNTBjE0bUn8x6V1vN/235/FTbkZpYxLlPD
bSgy75l2rz5oFUPnOVNoDB4vbClf+lsTGTi9Po/n7BCuiZx2vFBNhutSBazO3UWF
Xzobsndmm5E3k6dhIvbukfzot+hl4SqeLQUXJ6rqp5cx4IyQl5OvuMXKmYN4qAZw
odwgaA==
-----END CERTIFICATE-----
Generated at Sat May 4 01:54:33 2024 by rpki-client on console-fra.rpki-client.org