Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a666666613a3a2f34382d3438203d3e20323034303137.roa
File: 326131313a663263303a666666613a3a2f34382d3438203d3e20323034303137.roa (raw, json)
Hash identifier: vGfEBimqaDk+wr08lnELA/NhgnVNnHXdaGDE974899o=
Subject key identifier: F6:B1:3A:B6:C3:81:F9:2B:43:CA:DB:70:C2:03:77:9C:D0:18:80:78
Certificate issuer: /CN=11ad49c47e2d0e40cfc9b36a2bd2c514e2a6267b
Certificate serial: 180C0F645E58EEF5A25DE5FD9D97746DADCB614A
Authority key identifier: 11:AD:49:C4:7E:2D:0E:40:CF:C9:B3:6A:2B:D2:C5:14:E2:A6:26:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a666666613a3a2f34382d3438203d3e20323034303137.roa
Signing time: Wed 08 Nov 2023 14:49:36 +0000
ROA not before: Wed 08 Nov 2023 14:44:36 +0000
ROA not after: Wed 06 Nov 2024 14:49:36 +0000
asID: 204017
IP address blocks: 2a11:f2c0:fffa::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.crl
rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 20:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:0c:0f:64:5e:58:ee:f5:a2:5d:e5:fd:9d:97:74:6d:ad:cb:61:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11ad49c47e2d0e40cfc9b36a2bd2c514e2a6267b
Validity
Not Before: Nov 8 14:44:36 2023 GMT
Not After : Nov 6 14:49:36 2024 GMT
Subject: CN=F6B13AB6C381F92B43CADB70C203779CD0188078
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:79:20:39:f9:02:74:a7:ce:31:59:72:4a:b4:
6c:b0:82:46:2d:86:ea:b0:a0:74:0b:69:a9:4c:15:
a6:a8:e3:9b:7e:f1:b5:21:30:9d:3e:d7:0d:87:31:
f1:28:dc:dc:81:9e:93:10:53:99:5c:7f:1d:f1:74:
31:cb:91:c1:53:4d:60:b1:28:c4:be:bf:72:5c:49:
52:df:73:e9:9e:33:24:63:f3:d7:e8:10:9e:0f:44:
9e:3c:df:53:6d:11:e0:4a:ec:f3:0f:40:c8:d4:44:
96:fe:50:a7:70:1d:b2:72:3c:16:61:b0:63:25:57:
8b:83:9a:99:8c:d4:c3:a0:74:33:b7:36:32:2f:7c:
59:df:3a:3a:cd:da:63:68:91:41:c7:5a:b4:c5:0e:
f2:76:ac:ef:3e:a2:5a:27:22:4c:ef:38:43:23:d3:
1a:7c:2c:6e:f2:43:04:1a:cb:fd:5d:20:32:51:41:
8b:dc:1f:48:90:5a:ff:d1:57:b3:6a:0d:68:53:b6:
d9:71:67:0b:14:fb:d1:03:85:d0:13:a2:42:c2:58:
1d:74:94:fe:f4:2e:73:c5:12:0b:cd:31:78:32:6b:
4a:c0:bd:74:8d:78:7c:54:e8:84:18:0b:e2:2e:91:
cd:72:46:92:57:69:43:91:53:a5:1c:6d:81:f6:fb:
50:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:B1:3A:B6:C3:81:F9:2B:43:CA:DB:70:C2:03:77:9C:D0:18:80:78
X509v3 Authority Key Identifier:
keyid:11:AD:49:C4:7E:2D:0E:40:CF:C9:B3:6A:2B:D2:C5:14:E2:A6:26:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a666666613a3a2f34382d3438203d3e20323034303137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:f2c0:fffa::/48
Signature Algorithm: sha256WithRSAEncryption
5b:e5:ac:b1:53:05:45:1e:fd:87:0f:d9:39:cb:73:28:a6:13:
79:f2:71:b0:43:01:3a:d9:e9:a8:c0:49:23:28:cd:ce:fb:e6:
71:66:42:83:fd:60:d6:bc:d7:af:68:4a:82:5e:78:ae:5d:d1:
03:6e:01:65:bd:1e:45:ba:dc:aa:31:a3:4c:98:c2:7d:65:80:
e8:91:4f:de:39:c2:9f:bc:63:ed:a2:96:34:bb:b2:35:62:a9:
2e:a2:d1:a0:e1:ba:dd:69:64:7c:13:0a:c8:d9:1d:ae:d2:ca:
70:e0:28:1d:07:1f:b6:ef:b6:51:33:c2:05:ab:43:bc:99:d3:
80:97:3b:1b:3b:71:24:19:3c:78:10:f4:29:51:05:2c:3f:cd:
8c:96:b5:79:8f:7c:ab:83:0f:ac:9c:b7:f2:fd:7c:cb:c9:dc:
89:20:5b:66:63:8c:ab:d3:18:95:94:4b:69:9c:16:e4:43:3d:
59:37:77:8a:5d:a4:65:7b:b5:48:f5:b9:87:3a:58:71:94:c2:
a2:f4:68:cc:ec:6a:f6:c2:78:52:34:9c:84:bf:58:e1:ad:ee:
ee:ba:f1:6c:bd:9c:27:b9:8b:a9:a3:ef:eb:02:38:ad:34:e6:
91:70:54:3b:58:70:21:2f:c0:d1:71:05:61:b6:84:c8:9d:08:
88:60:9d:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 01:11:17 2024 by rpki-client on console-ams.rpki-client.org