Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a666666353a3a2f34382d3438203d3e20323037383835.roa
File: 326131313a663263303a666666353a3a2f34382d3438203d3e20323037383835.roa (raw, json)
Hash identifier: YNJF0fDUPcMEeHzfS1xQf5yRaCN0WMJ6d+c8ck1Kq74=
Subject key identifier: D5:6F:0D:65:E1:28:B2:11:5C:14:FA:03:5C:D4:79:4C:46:57:97:51
Certificate issuer: /CN=11ad49c47e2d0e40cfc9b36a2bd2c514e2a6267b
Certificate serial: 1561EA26C3119069001D6FD3252AA37580DB3F70
Authority key identifier: 11:AD:49:C4:7E:2D:0E:40:CF:C9:B3:6A:2B:D2:C5:14:E2:A6:26:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a666666353a3a2f34382d3438203d3e20323037383835.roa
Signing time: Wed 07 Feb 2024 12:58:10 +0000
ROA not before: Wed 07 Feb 2024 12:53:10 +0000
ROA not after: Wed 05 Feb 2025 12:58:10 +0000
asID: 207885
IP address blocks: 2a11:f2c0:fff5::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.crl
rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 20:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:61:ea:26:c3:11:90:69:00:1d:6f:d3:25:2a:a3:75:80:db:3f:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11ad49c47e2d0e40cfc9b36a2bd2c514e2a6267b
Validity
Not Before: Feb 7 12:53:10 2024 GMT
Not After : Feb 5 12:58:10 2025 GMT
Subject: CN=D56F0D65E128B2115C14FA035CD4794C46579751
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:44:46:eb:b6:70:3a:f6:1b:d1:34:b3:bf:45:
76:c1:5a:5c:9f:a0:04:23:36:e3:a3:1e:4a:5d:ca:
a2:8d:58:3b:37:e1:97:c6:54:22:f0:b0:ca:13:51:
b8:fd:88:37:33:2d:c2:55:51:56:cc:56:f1:13:8b:
2b:50:6a:1a:06:8f:cb:6b:59:87:c5:fe:64:1a:e5:
6d:ae:c9:8d:de:a1:23:78:00:c3:71:33:f2:7d:c3:
41:6b:51:8a:74:56:7a:82:de:90:0d:6d:ff:6f:ec:
e5:07:21:81:2f:4d:dc:bb:96:84:8a:ca:96:97:88:
7e:6c:ca:a0:71:7f:a4:35:ff:1a:58:37:88:c6:c5:
f2:1f:0b:66:41:03:1c:a1:25:df:d6:ff:2d:a5:8b:
1e:88:1e:ad:59:82:99:43:da:fa:16:bd:0b:19:0b:
72:55:57:57:44:d2:3e:96:3c:5d:1c:21:6d:97:93:
20:3b:23:41:19:ec:14:d6:2d:85:bf:5c:11:c5:96:
df:63:66:e2:fb:ed:21:39:d9:f6:7c:5f:7b:1f:20:
7d:f8:ce:8e:f7:55:e2:e2:2b:d5:71:b8:d2:52:36:
73:9a:b6:2a:cc:6f:e3:3b:a8:11:d2:8e:bc:bb:a3:
70:d8:d9:8f:04:5a:c0:e5:34:86:da:2f:3c:f5:d6:
ab:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:6F:0D:65:E1:28:B2:11:5C:14:FA:03:5C:D4:79:4C:46:57:97:51
X509v3 Authority Key Identifier:
keyid:11:AD:49:C4:7E:2D:0E:40:CF:C9:B3:6A:2B:D2:C5:14:E2:A6:26:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a666666353a3a2f34382d3438203d3e20323037383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:f2c0:fff5::/48
Signature Algorithm: sha256WithRSAEncryption
ca:33:39:f4:f4:ea:77:e3:e3:19:d2:cd:db:58:68:84:a5:74:
25:60:82:c2:b6:0d:93:3e:d5:12:ef:70:3c:e4:24:32:91:33:
e0:df:ea:35:a9:a8:e8:e8:48:0f:47:71:68:97:24:01:61:01:
84:e5:0f:1f:9e:ea:7b:54:8f:c0:45:be:71:50:86:f3:1e:a6:
6b:bb:ba:39:bd:c1:c5:1e:6d:db:c2:91:e0:bb:47:89:c1:35:
d3:b0:12:22:23:0f:26:4f:1c:90:c2:e8:ba:e2:84:dd:9d:4f:
c3:d9:30:4f:f5:48:10:f3:0b:99:a4:a2:47:35:cd:6b:07:6e:
d9:23:82:7f:88:ef:49:8f:6c:61:b1:dc:55:ef:24:b3:db:85:
f7:04:c2:57:5f:7d:fd:8e:73:65:fe:a0:9b:f2:d3:26:2b:ee:
46:70:02:b6:44:85:3d:f6:30:3a:ec:10:bc:0f:3c:8a:40:e2:
e6:d1:96:69:29:ca:02:0a:a0:f9:1f:59:86:43:92:d8:24:14:
79:f5:c1:cb:f0:aa:ca:eb:fc:6f:7a:cd:62:33:20:4b:75:65:
13:5d:51:43:d1:70:3e:bd:89:ab:ed:b4:15:ab:5d:f8:78:56:
84:cc:a9:9c:4f:c9:e4:52:6b:fa:f4:06:88:0b:e6:5f:97:56:
b4:d9:d9:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 01:11:17 2024 by rpki-client on console-ams.rpki-client.org