Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a313a3a2f34382d3438203d3e203530333931.roa
File: 326131313a323963303a313a3a2f34382d3438203d3e203530333931.roa (raw, json)
Hash identifier: x5gcDtSOCpgjtMKhODTGDY2bNnmG/tNpY0dfhwYF9cQ=
Subject key identifier: DC:F7:5E:9D:7B:10:DF:B6:3D:C7:03:49:73:F5:40:3A:AA:0B:8B:18
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 4F2842FF823E56FCE1661322B5FEB5AC80240164
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a313a3a2f34382d3438203d3e203530333931.roa
Signing time: Wed 19 Jun 2024 14:01:16 +0000
ROA not before: Wed 19 Jun 2024 13:56:16 +0000
ROA not after: Wed 18 Jun 2025 14:01:16 +0000
asID: 50391
IP address blocks: 2a11:29c0:1::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 21 Nov 2024 15:27:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:28:42:ff:82:3e:56:fc:e1:66:13:22:b5:fe:b5:ac:80:24:01:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Jun 19 13:56:16 2024 GMT
Not After : Jun 18 14:01:16 2025 GMT
Subject: CN=DCF75E9D7B10DFB63DC7034973F5403AAA0B8B18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:cd:88:5c:98:fb:7b:d1:9d:45:42:30:9b:e1:
5b:98:04:92:f8:a2:63:50:b1:5c:1d:73:5a:b6:d9:
b7:5c:c6:42:bc:06:69:13:1d:13:9b:9d:b3:38:2e:
f7:bb:2d:a9:df:9a:3e:d7:4e:b7:ba:c0:1c:2b:5c:
94:07:33:66:b5:c6:7c:3b:35:84:2f:27:1c:31:6c:
c0:62:0d:2d:61:0a:04:dc:37:bc:a9:14:f4:bd:00:
30:45:36:2b:3c:4b:94:78:36:0a:a2:80:c5:64:a6:
44:cc:d4:5b:56:0a:61:b1:ea:00:c6:61:f0:03:dd:
fb:f1:22:5e:cb:8c:5f:05:2b:ae:16:69:c1:09:0e:
84:c7:68:2f:d3:19:6f:0e:c2:64:fb:9c:71:cc:25:
cf:25:86:20:8c:46:e0:4d:5e:60:e2:63:95:eb:54:
c0:aa:2b:5a:15:73:b3:18:84:e4:90:07:29:d6:8e:
90:3c:53:d6:1b:eb:43:bf:9c:aa:73:e9:83:49:00:
0c:ae:2c:93:3a:79:16:bc:53:bc:0d:b1:5b:cd:28:
aa:dd:43:55:0a:35:c9:cd:65:c9:c0:a2:f3:55:2d:
63:db:a9:fe:4c:a4:b1:9e:4a:c9:99:ef:27:23:41:
19:08:15:4b:ce:b3:3d:6b:7f:17:45:0d:8e:a8:ae:
96:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:F7:5E:9D:7B:10:DF:B6:3D:C7:03:49:73:F5:40:3A:AA:0B:8B:18
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a313a3a2f34382d3438203d3e203530333931.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:1::/48
Signature Algorithm: sha256WithRSAEncryption
5f:54:4c:60:78:96:00:a7:02:13:88:b5:97:e0:2a:db:ea:49:
c2:02:7b:e3:e1:7f:a7:b0:29:a2:52:1c:4f:e3:c1:a1:26:5f:
71:2c:ff:17:37:6f:52:90:10:10:d7:8d:53:4d:56:f7:30:5a:
fe:30:ab:7a:dd:b2:f3:3e:78:81:83:93:7c:fd:dc:2b:25:3a:
99:c8:98:6b:b4:74:a7:87:a6:62:61:2d:1f:0a:f9:26:24:8b:
13:d4:62:e8:10:6c:2c:cf:8c:ea:ef:c9:18:04:ae:49:f9:59:
1a:00:a9:df:44:45:3e:c6:62:6f:0a:fa:81:77:2c:7c:c3:d4:
81:f1:67:a7:da:c7:8f:c3:9f:af:84:c9:71:c7:38:3f:8c:c5:
db:e6:e3:d0:c5:6e:2e:ff:3e:bd:96:59:10:17:94:f2:85:7e:
8c:76:e6:8f:21:ea:bb:7a:0d:72:e5:e0:66:90:8b:d4:b8:69:
38:81:9f:95:c0:37:1e:27:b3:b0:67:17:dd:81:9d:b4:5f:00:
5f:85:1e:4c:33:35:16:b0:ad:fa:e1:98:60:37:bc:06:d3:88:
26:43:89:9f:b3:69:b9:02:c5:ca:4c:2e:aa:08:5b:ac:c7:64:
d0:1b:1a:be:74:c8:96:5c:d3:ce:7d:2b:29:d5:4e:dc:66:99:
b4:e0:ae:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 20 23:15:04 2024 by rpki-client on console-fra.rpki-client.org