Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a33373a3a2f34382d3438203d3e20323135363635.roa
File: 326131313a323963303a33373a3a2f34382d3438203d3e20323135363635.roa (raw, json)
Hash identifier: qLGV4ltWXdaQ3tEwppiGMbfLnObv/RWS2zkq8GDJxQ4=
Subject key identifier: 4C:AC:F3:5E:B8:36:D4:F3:82:D0:CE:23:C1:CD:F3:E9:51:A9:70:86
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 442252C509604264670CB24E454E5E76064974F3
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a33373a3a2f34382d3438203d3e20323135363635.roa
Signing time: Tue 23 Jan 2024 20:00:04 +0000
ROA not before: Tue 23 Jan 2024 19:55:04 +0000
ROA not after: Tue 21 Jan 2025 20:00:04 +0000
asID: 215665
IP address blocks: 2a11:29c0:37::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:22:52:c5:09:60:42:64:67:0c:b2:4e:45:4e:5e:76:06:49:74:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Jan 23 19:55:04 2024 GMT
Not After : Jan 21 20:00:04 2025 GMT
Subject: CN=4CACF35EB836D4F382D0CE23C1CDF3E951A97086
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:55:77:65:92:d1:53:68:d2:bf:8f:f2:b7:07:
ac:7d:f6:ab:7d:6a:62:cf:02:a2:ec:e2:e9:fb:f0:
82:d7:53:a3:b6:14:02:e3:dd:9c:e9:c6:d3:dc:57:
31:04:9b:af:70:08:62:b0:e8:da:b9:55:77:77:49:
33:37:b7:fb:16:27:04:b2:7f:ab:c6:24:72:d8:34:
d3:1f:40:d2:50:09:68:0a:e1:41:23:30:5d:7d:fd:
b2:7e:0e:ed:0f:77:4b:08:b8:10:d2:9a:3f:40:ad:
74:ab:2a:08:ce:56:b7:73:eb:d6:59:b2:9a:cb:f6:
c1:46:8c:a5:69:38:7c:81:ec:64:d7:36:6b:79:64:
44:dd:8a:d6:67:1a:b0:94:31:4f:bf:b2:d8:f9:b0:
c2:cc:1b:35:07:2a:2f:2a:5c:e8:2e:a1:a6:be:19:
0b:7a:2d:aa:8d:1d:ab:f8:d3:fc:ca:ce:4d:ba:d5:
a8:87:11:df:00:5f:bb:2c:cd:bc:dc:1f:8a:23:0d:
b3:78:e4:5a:8d:39:c0:c0:ce:3e:22:8b:c7:6a:46:
2b:0d:d0:5d:d1:33:7e:8f:8d:42:56:74:25:cf:81:
89:27:11:83:81:3c:a5:89:4a:85:90:45:f7:51:dc:
16:4c:a4:d1:b3:59:07:dc:c9:c2:d5:10:70:2f:e5:
b8:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:AC:F3:5E:B8:36:D4:F3:82:D0:CE:23:C1:CD:F3:E9:51:A9:70:86
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a33373a3a2f34382d3438203d3e20323135363635.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:37::/48
Signature Algorithm: sha256WithRSAEncryption
9e:ac:84:a8:1b:a4:b0:4b:33:af:b1:45:ac:d6:b8:23:9b:51:
39:18:5d:67:ec:48:da:5b:eb:d2:fa:39:91:26:08:45:7b:39:
08:a3:7c:5f:7d:4e:2c:17:22:6f:59:56:7f:1c:f5:ae:ad:01:
9f:db:aa:91:df:96:9b:20:19:80:19:7e:22:30:d5:cf:15:db:
ed:cd:65:fc:41:db:1e:31:53:d0:fd:8c:4a:a3:26:39:6e:c6:
2f:f6:e4:7f:58:bc:08:bb:2d:7a:7e:11:bd:3c:44:bd:73:3c:
dc:d6:ab:76:e8:e0:51:3e:49:27:8c:81:62:10:a5:46:6e:69:
8e:12:31:64:92:f0:25:ad:6b:3d:2a:d9:98:43:a3:c9:52:d6:
4d:6c:f0:c8:c5:a1:f8:80:2c:62:03:e1:35:26:28:3c:a7:45:
67:18:d8:0a:65:d8:b0:8f:43:33:b7:49:91:4f:ee:c2:00:24:
ae:df:d7:5e:40:1a:94:63:09:77:5a:e6:3b:f0:fc:1f:59:cd:
09:c2:21:95:87:cc:02:17:da:1f:f8:04:c2:ea:c5:94:aa:6a:
70:29:35:24:e4:3b:ce:de:ad:c3:c4:ba:a0:76:13:cc:52:8f:
dc:8e:ef:1f:14:46:31:9e:68:73:d2:5b:4f:8b:79:2a:76:d7:
69:07:49:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:35:20 2024 by rpki-client on console-ams.rpki-client.org