Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a666666373a3a2f34382d3438203d3e20323039323435.roa
File: 326131313a663263303a666666373a3a2f34382d3438203d3e20323039323435.roa (raw, json)
Hash identifier: HML+Oi165x/H8GtFmJp71Xl1F+whi2B/znTPfTpm6/4=
Subject key identifier: D7:5D:D1:87:21:4A:FE:EB:57:9A:57:1E:08:17:45:0F:F3:BF:D1:6D
Certificate issuer: /CN=11ad49c47e2d0e40cfc9b36a2bd2c514e2a6267b
Certificate serial: 453FA64B1A3929177F0408AEBF0ECC15DDEC3652
Authority key identifier: 11:AD:49:C4:7E:2D:0E:40:CF:C9:B3:6A:2B:D2:C5:14:E2:A6:26:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a666666373a3a2f34382d3438203d3e20323039323435.roa
Signing time: Sat 09 Mar 2024 02:02:11 +0000
ROA not before: Sat 09 Mar 2024 01:57:11 +0000
ROA not after: Sat 08 Mar 2025 02:02:11 +0000
asID: 209245
IP address blocks: 2a11:f2c0:fff7::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.crl
rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 20:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:3f:a6:4b:1a:39:29:17:7f:04:08:ae:bf:0e:cc:15:dd:ec:36:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11ad49c47e2d0e40cfc9b36a2bd2c514e2a6267b
Validity
Not Before: Mar 9 01:57:11 2024 GMT
Not After : Mar 8 02:02:11 2025 GMT
Subject: CN=D75DD187214AFEEB579A571E0817450FF3BFD16D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:83:75:c8:4c:66:2b:99:ff:a8:22:4b:4b:d0:
1d:d5:33:3a:13:6a:90:0f:4d:cc:8b:3d:1f:17:e5:
ba:7c:e6:f9:48:91:a8:b8:46:82:75:5a:e7:b6:53:
f8:87:c3:26:07:54:60:fc:ba:32:cb:51:e1:6d:03:
b3:ea:4d:29:2b:94:a3:3b:74:e0:85:15:be:40:b4:
20:e4:5c:96:65:0f:e9:45:35:c5:eb:6c:e0:66:54:
e8:f7:54:77:e2:c3:87:1a:25:fb:a8:5b:78:5a:a7:
67:07:07:79:8d:f5:01:18:c6:17:10:11:27:ff:ec:
b3:71:71:ee:3b:b6:f1:28:a9:eb:0e:63:f6:ed:d2:
97:63:2c:43:d1:a5:df:5e:e2:9c:04:fd:95:73:4e:
21:4d:aa:4b:6b:92:eb:f2:9d:0a:b1:9e:2a:73:69:
b3:1a:c9:44:f9:d1:48:a5:17:30:08:ce:1f:e2:55:
a8:8d:ba:8e:c5:24:81:aa:ab:00:ea:47:f4:80:42:
64:6f:05:72:be:13:82:1e:44:48:ec:97:bd:11:0c:
57:c3:04:57:58:ee:09:66:e1:a0:aa:c1:5a:d7:40:
dd:fd:3e:97:e9:30:a0:a2:6f:38:27:44:20:67:5c:
aa:d2:57:85:3f:93:54:96:4f:de:9e:d1:55:1a:a0:
fa:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:5D:D1:87:21:4A:FE:EB:57:9A:57:1E:08:17:45:0F:F3:BF:D1:6D
X509v3 Authority Key Identifier:
keyid:11:AD:49:C4:7E:2D:0E:40:CF:C9:B3:6A:2B:D2:C5:14:E2:A6:26:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a666666373a3a2f34382d3438203d3e20323039323435.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:f2c0:fff7::/48
Signature Algorithm: sha256WithRSAEncryption
36:25:6b:fe:88:f1:81:49:a8:f3:28:68:c8:ad:7b:e3:99:9c:
6f:c8:8b:70:51:46:6c:d9:31:56:6f:f6:f7:65:50:cd:ba:62:
99:5d:c4:d3:67:70:2b:3d:7d:0d:c6:1d:3d:73:d0:d7:23:5f:
96:68:c6:66:e7:c7:52:7c:68:64:4e:ad:7e:0a:34:ea:de:b7:
d7:06:f2:2d:d1:ed:4e:e3:a7:04:4d:62:9c:38:ff:4d:17:c9:
bd:cb:a8:61:99:16:65:6e:43:b4:04:2d:b2:82:f7:60:fa:f7:
d4:e2:41:a9:7c:13:a3:05:f1:f4:6d:67:38:7f:31:bb:a4:71:
6d:28:cf:f3:49:25:b3:4e:86:c5:72:a3:71:02:0f:1a:54:f5:
ae:e8:57:46:a3:cc:f6:b2:52:c6:da:0f:82:ac:8c:6f:dc:7f:
1e:a1:9c:30:6c:ca:fa:e5:9a:e1:95:c3:2b:4f:4f:d6:f4:6c:
c2:1b:b5:16:28:f3:b4:3c:24:03:7f:e4:77:25:49:77:18:30:
f3:1f:4b:91:22:fb:84:2b:ed:12:d6:51:f4:f4:38:a0:22:ca:
67:a8:ad:af:77:9d:50:ff:83:7a:ed:12:56:e1:ac:07:20:34:
49:c9:27:f1:20:72:d6:fe:6b:4c:89:9c:94:9e:5d:6e:59:73:
aa:8e:fc:0b
-----BEGIN CERTIFICATE-----
MIIFQDCCBCigAwIBAgIURT+mSxo5KRd/BAiuvw7MFd3sNlIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTFhZDQ5YzQ3ZTJkMGU0MGNmYzliMzZhMmJkMmM1MTRl
MmE2MjY3YjAeFw0yNDAzMDkwMTU3MTFaFw0yNTAzMDgwMjAyMTFaMDMxMTAvBgNV
BAMTKEQ3NUREMTg3MjE0QUZFRUI1NzlBNTcxRTA4MTc0NTBGRjNCRkQxNkQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYg3XITGYrmf+oIktL0B3VMzoT
apAPTcyLPR8X5bp85vlIkai4RoJ1Wue2U/iHwyYHVGD8ujLLUeFtA7PqTSkrlKM7
dOCFFb5AtCDkXJZlD+lFNcXrbOBmVOj3VHfiw4caJfuoW3hap2cHB3mN9QEYxhcQ
ESf/7LNxce47tvEoqesOY/bt0pdjLEPRpd9e4pwE/ZVzTiFNqktrkuvynQqxnipz
abMayUT50UilFzAIzh/iVaiNuo7FJIGqqwDqR/SAQmRvBXK+E4IeREjsl70RDFfD
BFdY7glm4aCqwVrXQN39PpfpMKCibzgnRCBnXKrSV4U/k1SWT96e0VUaoPohAgMB
AAGjggJKMIICRjAdBgNVHQ4EFgQU113RhyFK/utXmlceCBdFD/O/0W0wHwYDVR0j
BBgwFoAUEa1JxH4tDkDPybNqK9LFFOKmJnswDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvN2I1NzVlYTctNzg2Zi00YjJkLWE0NTUtNzlkN2ZjNDNl
Y2VlLzcvMTFBRDQ5QzQ3RTJEMEU0MENGQzlCMzZBMkJEMkM1MTRFMkE2MjY3Qi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0VhMUp4SDR0RGtEUHliTnFLOUxGRk9L
bUpucy5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvN2I1NzVlYTct
Nzg2Zi00YjJkLWE0NTUtNzlkN2ZjNDNlY2VlLzcvMzI2MTMxMzEzYTY2MzI2MzMw
M2E2NjY2NjYzNzNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzAzOTMyMzQzNS5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw
DwQCAAIwCQMHACoR8sD/9zANBgkqhkiG9w0BAQsFAAOCAQEANiVr/ojxgUmo8yho
yK1745mcb8iLcFFGbNkxVm/292VQzbpimV3E02dwKz19DcYdPXPQ1yNflmjGZufH
UnxoZE6tfgo06t631wbyLdHtTuOnBE1inDj/TRfJvcuoYZkWZW5DtAQtsoL3YPr3
1OJBqXwTowXx9G1nOH8xu6RxbSjP80kls06GxXKjcQIPGlT1ruhXRqPM9rJSxtoP
gqyMb9x/HqGcMGzK+uWa4ZXDK09P1vRswhu1FijztDwkA3/kdyVJdxgw8x9LkSL7
hCvtEtZR9PQ4oCLKZ6itr3edUP+Deu0SVuGsByA0Sckn8SBy1v5rTImclJ5dbllz
qo78Cw==
-----END CERTIFICATE-----
Generated at Sat May 4 01:11:17 2024 by rpki-client on console-ams.rpki-client.org