Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a33623a3a2f34382d3438203d3e20323135353839.roa
File: 326131313a323963303a33623a3a2f34382d3438203d3e20323135353839.roa (raw, json)
Hash identifier: rPro1d3NQhD56kp7TYBsqQJs0gLOmUfNlzVbUQ4KkMQ=
Subject key identifier: 91:3C:E2:54:BD:BD:C3:98:BD:53:FD:73:4E:3E:1E:74:5E:9B:9D:F3
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 788743D28E16A8C884414C45C1DF24822C816A30
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a33623a3a2f34382d3438203d3e20323135353839.roa
Signing time: Tue 06 Feb 2024 18:00:50 +0000
ROA not before: Tue 06 Feb 2024 17:55:50 +0000
ROA not after: Tue 04 Feb 2025 18:00:50 +0000
asID: 215589
IP address blocks: 2a11:29c0:3b::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:87:43:d2:8e:16:a8:c8:84:41:4c:45:c1:df:24:82:2c:81:6a:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Feb 6 17:55:50 2024 GMT
Not After : Feb 4 18:00:50 2025 GMT
Subject: CN=913CE254BDBDC398BD53FD734E3E1E745E9B9DF3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:db:be:f8:29:8b:4a:a3:0d:36:9c:96:e2:9f:
e0:14:1d:0f:c2:b3:e1:ca:3f:ee:e7:9f:98:6c:bd:
11:b8:9b:de:dd:ef:bb:8f:85:d8:6e:12:bf:61:57:
be:ec:c5:4c:8f:05:9b:a4:b2:a7:55:e4:94:1f:ac:
8a:51:ea:08:bf:62:c1:c5:04:fa:3e:fd:4e:f3:79:
86:ae:96:be:b8:53:2c:da:e3:e4:27:a3:db:a7:c0:
69:49:fc:05:ae:c3:00:26:3e:f5:6e:6b:18:02:ad:
07:4e:2f:30:9c:ff:26:71:40:e1:41:8b:e1:93:29:
13:bf:d0:f4:84:b9:49:22:4b:49:97:cb:04:8e:1e:
64:e2:bd:47:4b:fa:72:a6:7d:cd:6b:8b:a3:0d:cc:
0a:5d:9b:58:1b:d7:0f:7c:7f:f1:3b:5c:73:73:b0:
e6:64:f4:f2:97:47:ae:23:be:5d:b0:c1:5a:03:fe:
cb:68:c6:5d:fe:3c:c1:5a:75:56:ab:bb:f2:31:5f:
87:e6:27:43:b3:5d:8f:ad:fc:28:2f:40:da:74:28:
e8:ad:a0:e1:03:89:d1:0d:1e:ec:a9:97:98:6d:f1:
33:a9:4f:7b:fc:c5:1b:48:c0:98:82:02:35:12:d9:
7f:64:0a:61:da:70:eb:e2:1e:df:e5:86:41:a4:86:
ee:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:3C:E2:54:BD:BD:C3:98:BD:53:FD:73:4E:3E:1E:74:5E:9B:9D:F3
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a33623a3a2f34382d3438203d3e20323135353839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:3b::/48
Signature Algorithm: sha256WithRSAEncryption
8c:72:3c:52:bb:82:c8:46:12:f4:61:38:73:e6:71:ab:ed:46:
79:71:ef:f2:73:2a:da:b4:c8:dc:18:c5:80:d0:33:41:8d:5f:
c9:a6:97:81:37:55:e7:2f:b1:b5:a6:89:58:c4:c1:a4:73:16:
78:5e:2f:a5:58:6a:df:4b:59:2f:70:16:b7:c8:52:51:f7:b0:
79:0e:e5:37:3c:9e:db:81:00:a1:a9:3a:40:18:d3:0b:2c:52:
db:e1:45:48:3c:22:1c:07:b9:cf:90:1d:77:b1:5a:9c:ba:10:
b7:ce:e8:38:4b:a3:40:8c:15:f9:4b:fd:4b:00:d7:0b:3e:55:
fd:c1:b7:46:c4:bd:9a:84:0a:88:5a:99:7f:87:57:a5:d7:f7:
f7:d7:4d:6a:81:d0:85:52:53:c4:7c:36:1a:1a:bf:e1:f8:78:
3d:a4:1a:62:5d:bd:5b:98:c5:b1:8e:fa:5a:db:d5:b3:ab:d9:
7c:07:b9:ac:cb:12:4b:cf:b2:4b:47:92:9d:c4:09:5a:9b:ed:
5c:4b:51:b1:e0:19:ef:a3:d2:53:77:21:fe:92:9c:44:a9:ba:
14:16:53:6f:ef:fd:8a:87:73:99:8d:61:10:4d:6d:0b:3a:db:
6f:2f:14:f8:d8:1b:52:a5:2d:6b:7d:0b:6a:d8:f4:fd:0b:67:
e5:2c:b2:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:35:20 2024 by rpki-client on console-ams.rpki-client.org