Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a32663a3a2f34382d3438203d3e20323135393533.roa
File: 326131313a323963303a32663a3a2f34382d3438203d3e20323135393533.roa (raw, json)
Hash identifier: Z3I252/0ZEjatguU8vL/VI/55Z49aV7mpxT/uNTkARk=
Subject key identifier: 11:62:DE:23:6E:43:EE:B4:B8:7D:7F:F9:16:C6:51:F6:82:77:54:30
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 55D3E35F7D9D1784B535E05A202F1CFFF24F4BB8
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a32663a3a2f34382d3438203d3e20323135393533.roa
Signing time: Tue 02 Jan 2024 10:32:12 +0000
ROA not before: Tue 02 Jan 2024 10:27:12 +0000
ROA not after: Tue 31 Dec 2024 10:32:12 +0000
asID: 215953
IP address blocks: 2a11:29c0:2f::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Jun 2024 15:19:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:d3:e3:5f:7d:9d:17:84:b5:35:e0:5a:20:2f:1c:ff:f2:4f:4b:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Jan 2 10:27:12 2024 GMT
Not After : Dec 31 10:32:12 2024 GMT
Subject: CN=1162DE236E43EEB4B87D7FF916C651F682775430
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:14:3a:ce:ab:07:e3:60:06:c3:d6:66:59:da:
5d:21:1d:73:0c:32:64:4b:ea:a9:66:54:46:ee:02:
80:89:a3:c8:6d:d2:f4:03:37:80:df:aa:db:a5:55:
e2:53:a3:6d:31:a0:ec:0b:e2:53:e4:4a:79:19:35:
ba:47:61:9a:37:68:4f:96:38:86:df:20:2b:37:41:
b6:43:35:20:64:cc:b1:89:bc:fd:c5:ed:7e:0e:36:
20:03:ca:66:88:89:2d:24:f7:d8:8c:b7:b2:9b:1e:
5a:8a:f0:88:67:cb:8b:29:62:88:e6:9d:73:b6:55:
a5:44:e6:8a:ac:66:b3:c7:a4:58:d5:f0:5c:e5:5c:
4a:45:99:35:ed:48:fa:0f:6a:9d:35:46:ef:af:0f:
a3:3c:1d:8f:c9:e7:39:34:48:e1:81:30:0c:58:05:
f1:aa:95:da:2e:3c:02:e8:8b:e4:f3:02:91:5a:4e:
c8:1c:35:09:a9:bd:67:11:a2:5c:d1:a6:ab:e5:9a:
00:17:7d:83:cd:c4:80:a6:ac:df:df:3a:48:d1:cd:
dd:30:7f:7c:2a:be:ef:d3:86:8b:26:9c:5d:51:60:
44:9d:ac:8a:4b:cb:ab:c6:c1:67:5f:a8:8e:b6:57:
e7:b6:d6:58:bb:78:1f:e8:b3:07:b4:90:69:68:06:
31:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:62:DE:23:6E:43:EE:B4:B8:7D:7F:F9:16:C6:51:F6:82:77:54:30
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a32663a3a2f34382d3438203d3e20323135393533.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:2f::/48
Signature Algorithm: sha256WithRSAEncryption
06:14:4b:9a:47:b1:13:9c:d2:f5:ff:ac:9b:50:49:61:a1:e9:
7f:91:ca:8d:b2:06:6a:fe:11:8f:b8:10:dd:93:f3:07:b0:56:
4c:cb:26:99:f7:ae:54:56:11:42:e7:cc:37:93:c6:63:eb:26:
d1:2e:45:a2:50:43:8c:29:ad:2e:39:2d:d6:ad:a3:4a:62:f5:
07:28:28:76:a8:33:b9:05:a9:e9:84:be:fb:c6:d1:e4:05:e8:
5f:d1:59:ae:03:33:57:48:1e:fe:cf:da:f0:fb:1d:7a:94:94:
de:63:b7:73:82:52:a7:24:e2:50:42:b7:4c:3e:82:2e:f6:41:
39:41:6e:0e:46:ad:96:8e:d7:02:06:60:94:37:ac:33:e6:ef:
9f:82:85:44:f0:50:63:4f:9a:61:a0:de:56:2d:52:ae:cd:2d:
b0:8d:fd:05:cf:4a:00:ea:96:c3:e3:fd:c2:ea:98:ae:ae:06:
01:91:64:6b:3d:e0:94:b3:5f:58:ec:1c:56:3b:4b:2d:4a:a0:
01:df:c6:e7:87:db:9a:70:76:75:07:04:ff:57:ca:38:e8:c6:
01:78:55:59:ad:29:12:9d:b3:27:98:d8:10:c4:2e:1e:59:38:
63:bd:3e:31:f3:61:87:d6:2b:27:92:62:94:4c:47:eb:9b:20:
35:ea:29:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 31 19:07:49 2024 by rpki-client on console-fra.rpki-client.org