Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a666666633a3a2f34382d3438203d3e20323037383332.roa
File: 326131313a663263303a666666633a3a2f34382d3438203d3e20323037383332.roa (raw, json)
Hash identifier: LrxXPSnAsG6tccjs+EsWwrwWxgacVDFnMP4+C6msELw=
Subject key identifier: 82:5B:4E:B6:AF:7C:FB:02:1D:88:16:DF:58:88:1D:EA:5F:A1:5C:F6
Certificate issuer: /CN=11ad49c47e2d0e40cfc9b36a2bd2c514e2a6267b
Certificate serial: 328A1E8C636DC2A80918A124441B9F21137661AC
Authority key identifier: 11:AD:49:C4:7E:2D:0E:40:CF:C9:B3:6A:2B:D2:C5:14:E2:A6:26:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a666666633a3a2f34382d3438203d3e20323037383332.roa
Signing time: Wed 08 Nov 2023 14:50:03 +0000
ROA not before: Wed 08 Nov 2023 14:45:03 +0000
ROA not after: Wed 06 Nov 2024 14:50:03 +0000
asID: 207832
IP address blocks: 2a11:f2c0:fffc::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.crl
rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 20:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:8a:1e:8c:63:6d:c2:a8:09:18:a1:24:44:1b:9f:21:13:76:61:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11ad49c47e2d0e40cfc9b36a2bd2c514e2a6267b
Validity
Not Before: Nov 8 14:45:03 2023 GMT
Not After : Nov 6 14:50:03 2024 GMT
Subject: CN=825B4EB6AF7CFB021D8816DF58881DEA5FA15CF6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:2d:54:46:f8:a7:bc:78:a6:3b:e4:d9:07:f0:
d7:c6:a8:54:50:12:c7:6d:ed:95:fb:a4:ce:2b:0a:
df:35:60:9c:0c:fc:1f:df:46:e0:22:22:d8:9b:25:
24:79:09:8e:ee:e6:b2:63:36:c7:43:61:d0:ab:e0:
68:a9:08:a0:84:47:32:fc:41:02:1e:93:f3:59:a3:
81:54:bf:ad:40:f6:eb:35:90:52:da:85:60:f7:89:
fb:bf:03:c7:91:43:fd:5c:6f:85:68:c1:7a:24:3e:
c5:64:a8:b0:d8:7a:29:c5:08:8a:98:5b:8a:a3:7d:
c6:7e:14:fc:ec:a4:3d:64:a4:6e:1d:45:c0:c8:b4:
5d:5e:a0:3a:de:19:f5:ca:65:d4:b8:a9:e2:49:66:
16:cb:be:09:80:da:e4:d7:36:5b:74:cc:cb:73:f2:
a4:97:e6:3e:29:1b:67:eb:fd:29:f7:83:73:f5:be:
01:63:b8:ef:74:86:a4:b0:b7:a1:dc:8d:a7:2a:40:
70:5a:2f:2e:e8:e7:50:1a:20:9b:12:c4:cc:8b:d5:
6c:30:df:b6:a6:10:5f:05:3a:40:13:c9:11:8c:46:
ac:30:22:35:55:f2:e9:79:6a:ad:f8:0c:de:b0:b5:
4c:b7:1f:76:aa:93:a7:42:fe:62:60:f8:56:bb:b2:
ec:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:5B:4E:B6:AF:7C:FB:02:1D:88:16:DF:58:88:1D:EA:5F:A1:5C:F6
X509v3 Authority Key Identifier:
keyid:11:AD:49:C4:7E:2D:0E:40:CF:C9:B3:6A:2B:D2:C5:14:E2:A6:26:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a666666633a3a2f34382d3438203d3e20323037383332.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:f2c0:fffc::/48
Signature Algorithm: sha256WithRSAEncryption
30:26:0c:52:3f:52:e5:79:74:e4:2a:39:14:78:f1:e6:8f:26:
e6:35:65:79:fd:e3:5d:e5:07:f6:a8:1c:b0:6b:a6:ff:4d:8f:
29:4d:2b:73:12:0a:0e:a8:50:53:b0:0a:47:1e:e0:1e:85:f7:
c5:2c:bf:1b:3e:25:66:22:f3:7d:db:4f:2f:9a:f5:0c:83:29:
27:03:ba:af:bf:2b:ad:6b:8e:ea:c8:e6:7b:61:d0:52:84:30:
e5:fb:47:88:c7:8a:fe:a5:80:39:0f:41:81:88:28:65:0f:21:
97:da:0a:b7:fc:17:0b:1d:04:8b:dd:ba:2b:11:41:04:50:8f:
f9:4b:52:14:09:43:d3:43:98:9a:7f:30:66:4e:ef:4c:60:e1:
5c:98:6b:09:af:76:a0:f0:95:d6:cd:58:9d:0e:6e:8e:45:4f:
19:50:e3:46:69:05:fd:f1:15:ae:1d:21:76:de:bf:e8:60:a5:
4f:93:65:ff:d4:0e:5a:6b:d1:f3:fe:50:ad:e3:10:bb:00:6a:
67:56:99:2e:3a:a6:7d:d9:7d:2d:47:29:89:4d:77:08:f4:ca:
f2:c1:59:cb:04:79:18:14:c4:39:93:05:44:76:1a:52:e9:20:
ac:1c:48:a7:7d:2a:73:29:08:f8:7a:1b:bb:7b:3e:81:14:1c:
73:c8:45:dd
-----BEGIN CERTIFICATE-----
MIIFQDCCBCigAwIBAgIUMooejGNtwqgJGKEkRBufIRN2YawwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTFhZDQ5YzQ3ZTJkMGU0MGNmYzliMzZhMmJkMmM1MTRl
MmE2MjY3YjAeFw0yMzExMDgxNDQ1MDNaFw0yNDExMDYxNDUwMDNaMDMxMTAvBgNV
BAMTKDgyNUI0RUI2QUY3Q0ZCMDIxRDg4MTZERjU4ODgxREVBNUZBMTVDRjYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvLVRG+Ke8eKY75NkH8NfGqFRQ
Esdt7ZX7pM4rCt81YJwM/B/fRuAiItibJSR5CY7u5rJjNsdDYdCr4GipCKCERzL8
QQIek/NZo4FUv61A9us1kFLahWD3ifu/A8eRQ/1cb4VowXokPsVkqLDYeinFCIqY
W4qjfcZ+FPzspD1kpG4dRcDItF1eoDreGfXKZdS4qeJJZhbLvgmA2uTXNlt0zMtz
8qSX5j4pG2fr/Sn3g3P1vgFjuO90hqSwt6HcjacqQHBaLy7o51AaIJsSxMyL1Www
37amEF8FOkATyRGMRqwwIjVV8ul5aq34DN6wtUy3H3aqk6dC/mJg+Fa7suwzAgMB
AAGjggJKMIICRjAdBgNVHQ4EFgQUgltOtq98+wIdiBbfWIgd6l+hXPYwHwYDVR0j
BBgwFoAUEa1JxH4tDkDPybNqK9LFFOKmJnswDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvN2I1NzVlYTctNzg2Zi00YjJkLWE0NTUtNzlkN2ZjNDNl
Y2VlLzcvMTFBRDQ5QzQ3RTJEMEU0MENGQzlCMzZBMkJEMkM1MTRFMkE2MjY3Qi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0VhMUp4SDR0RGtEUHliTnFLOUxGRk9L
bUpucy5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvN2I1NzVlYTct
Nzg2Zi00YjJkLWE0NTUtNzlkN2ZjNDNlY2VlLzcvMzI2MTMxMzEzYTY2MzI2MzMw
M2E2NjY2NjY2MzNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzAzNzM4MzMzMi5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw
DwQCAAIwCQMHACoR8sD//DANBgkqhkiG9w0BAQsFAAOCAQEAMCYMUj9S5Xl05Co5
FHjx5o8m5jVlef3jXeUH9qgcsGum/02PKU0rcxIKDqhQU7AKRx7gHoX3xSy/Gz4l
ZiLzfdtPL5r1DIMpJwO6r78rrWuO6sjme2HQUoQw5ftHiMeK/qWAOQ9BgYgoZQ8h
l9oKt/wXCx0Ei926KxFBBFCP+UtSFAlD00OYmn8wZk7vTGDhXJhrCa92oPCV1s1Y
nQ5ujkVPGVDjRmkF/fEVrh0hdt6/6GClT5Nl/9QOWmvR8/5QreMQuwBqZ1aZLjqm
fdl9LUcpiU13CPTK8sFZywR5GBTEOZMFRHYaUukgrBxIp30qcykI+Hobu3s+gRQc
c8hF3Q==
-----END CERTIFICATE-----
Generated at Sat May 4 01:54:33 2024 by rpki-client on console-fra.rpki-client.org