Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a33613a3a2f34382d3438203d3e20323135343539.roa
File: 326131313a323963303a33613a3a2f34382d3438203d3e20323135343539.roa (raw, json)
Hash identifier: X7EGxt3DQhi53Sr/Rkvuwx2ziZ8RphZV0YMtTl7dfZk=
Subject key identifier: B5:B6:E8:31:3F:72:66:80:5D:6C:83:9A:EB:56:6F:B5:FE:F1:CC:A1
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: D4F4739D09CD9F184E5C825F4F2FC6969BAE53
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a33613a3a2f34382d3438203d3e20323135343539.roa
Signing time: Thu 22 Feb 2024 09:18:51 +0000
ROA not before: Thu 22 Feb 2024 09:13:51 +0000
ROA not after: Thu 20 Feb 2025 09:18:51 +0000
asID: 215459
IP address blocks: 2a11:29c0:3a::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
d4:f4:73:9d:09:cd:9f:18:4e:5c:82:5f:4f:2f:c6:96:9b:ae:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Feb 22 09:13:51 2024 GMT
Not After : Feb 20 09:18:51 2025 GMT
Subject: CN=B5B6E8313F7266805D6C839AEB566FB5FEF1CCA1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:82:f3:e8:d0:40:45:ad:e3:af:1e:0c:68:b1:
6a:78:8e:f3:92:68:94:ce:1c:98:54:99:c8:94:f1:
ca:97:40:44:5f:b0:1f:b3:1b:15:69:3b:b5:1b:a5:
ab:a0:cd:48:92:0f:3a:9f:2f:e3:3d:df:a4:c5:33:
7e:6f:0d:48:15:0e:11:0a:a2:81:93:8e:6e:d9:0d:
71:7e:c2:51:f9:54:45:14:94:94:3b:af:fe:60:1e:
97:c5:93:2b:6d:46:7c:fc:ce:ca:f1:40:c4:92:b1:
9f:21:c1:0b:01:92:a0:a4:a1:6d:01:93:01:13:0b:
6c:c5:74:77:13:5b:0f:22:dd:1e:ae:3b:46:33:c0:
a9:fa:5b:51:c9:d1:cf:13:5d:ef:64:f0:1a:68:d1:
20:76:93:ae:13:ac:88:15:e6:e2:3e:8c:7d:69:a8:
4a:bd:c7:65:eb:02:be:6d:d4:57:99:74:5d:83:97:
d5:44:18:7d:6c:f5:ce:ef:fe:66:8d:60:d6:c9:cd:
da:be:d2:79:67:9c:85:c4:64:8b:6d:5f:51:5f:5a:
7a:da:46:29:43:5c:a1:8e:e3:c2:28:7f:16:28:15:
1a:75:24:5b:9a:8b:eb:4f:42:a3:57:6b:da:67:e4:
44:fd:e5:13:a6:4c:37:06:9c:f7:e7:eb:4d:0d:90:
3d:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:B6:E8:31:3F:72:66:80:5D:6C:83:9A:EB:56:6F:B5:FE:F1:CC:A1
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a33613a3a2f34382d3438203d3e20323135343539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:3a::/48
Signature Algorithm: sha256WithRSAEncryption
09:63:48:cd:fa:b7:5c:c2:3b:e9:1a:f2:b9:f5:61:8b:7d:7a:
a5:eb:32:5a:be:03:61:e1:b6:61:c1:80:02:05:5f:92:ed:ea:
ee:60:b7:c0:c3:86:9e:5b:2a:b3:3d:00:a0:18:b4:c0:b2:f8:
65:01:0c:99:73:96:06:fc:46:3f:e7:9d:1c:2e:fe:2a:3b:1a:
29:39:ce:58:08:31:e6:e6:b3:5a:00:d7:5e:56:5c:92:cf:45:
b8:24:d9:98:17:cb:73:59:27:ab:59:b1:e1:e4:12:29:f2:e0:
49:db:26:c8:3c:e3:98:70:06:f7:64:9d:b0:57:d4:ac:0d:3b:
45:05:39:9d:51:7d:07:10:4a:e0:51:32:90:60:9d:fd:4c:c7:
45:9c:2a:51:05:cd:8d:fe:4e:b6:46:f3:2b:fe:5a:6f:33:9d:
50:29:e2:81:20:59:e8:1c:a8:fd:e4:6e:0e:36:d7:d1:f9:2b:
d3:f4:e8:c5:ce:f0:be:b1:1d:a3:f4:39:69:46:a1:1b:23:98:
fb:93:1a:32:97:80:c3:b1:8d:06:41:14:9f:8d:eb:c1:50:13:
c5:3b:9c:bc:0e:a8:67:60:19:c9:7e:01:5d:f5:53:d3:d0:29:
99:be:6b:99:08:6d:61:c2:71:01:90:1b:31:7d:3d:a9:6e:ac:
93:ca:40:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 18:06:13 2024 by rpki-client on console-fra.rpki-client.org