Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336463303a3a2f34342d3434203d3e20323039363030.roa
File: 326131313a323963303a336463303a3a2f34342d3434203d3e20323039363030.roa (raw, json)
Hash identifier: ZPYBlziivpTCMjWV7dqZq8pjl6H/PN8N8qubN0mhpN0=
Subject key identifier: B9:C0:BB:2A:CA:30:30:84:6E:54:02:27:75:3E:22:D0:71:66:57:06
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 5269BDE6DA172EF4398DC4EBE66D28F77679AEB5
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336463303a3a2f34342d3434203d3e20323039363030.roa
Signing time: Fri 03 May 2024 10:40:09 +0000
ROA not before: Fri 03 May 2024 10:35:09 +0000
ROA not after: Fri 02 May 2025 10:40:09 +0000
asID: 209600
IP address blocks: 2a11:29c0:3dc0::/44 maxlen: 44
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:69:bd:e6:da:17:2e:f4:39:8d:c4:eb:e6:6d:28:f7:76:79:ae:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: May 3 10:35:09 2024 GMT
Not After : May 2 10:40:09 2025 GMT
Subject: CN=B9C0BB2ACA3030846E540227753E22D071665706
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:8f:a0:f1:18:1d:f5:10:7a:d7:26:aa:a3:f5:
29:4b:66:6c:d1:08:50:dd:0d:12:c4:f2:34:ff:bb:
19:1a:ec:10:2a:dc:be:84:52:03:74:30:39:01:87:
1c:0f:cd:e6:07:51:36:d5:b7:ff:f0:8a:26:f4:ad:
91:1d:30:15:df:2c:d7:93:b8:a3:ca:be:10:5a:42:
1d:ab:9b:80:a5:a2:59:b3:ed:5a:78:d4:2e:02:37:
a7:35:1b:54:c8:05:53:14:49:d7:2c:a6:25:b2:fa:
b6:74:b1:4a:58:b0:a0:5b:7a:05:b7:9e:ba:20:fa:
76:5b:05:a3:6f:83:a1:23:29:35:85:b9:91:88:c1:
84:74:1c:33:79:26:10:e8:eb:f4:ba:df:77:c2:63:
43:0f:06:95:2e:58:bf:31:65:51:80:4b:d3:fe:ff:
77:f2:7c:47:44:6d:b3:40:11:f9:27:69:22:c1:7a:
6a:86:0e:bf:1a:75:03:d2:ad:99:46:bb:a6:82:51:
b8:34:cc:f1:6c:63:43:01:a6:bb:45:27:24:aa:f9:
dc:f0:ea:58:38:26:6f:cb:98:5b:d4:30:0e:71:b6:
b1:6e:6b:de:ff:23:e3:dd:47:dc:a6:37:47:b4:50:
ae:f5:d3:94:a0:f8:b7:b2:26:1c:a5:a3:f3:50:61:
14:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:C0:BB:2A:CA:30:30:84:6E:54:02:27:75:3E:22:D0:71:66:57:06
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336463303a3a2f34342d3434203d3e20323039363030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:3dc0::/44
Signature Algorithm: sha256WithRSAEncryption
73:19:5f:8f:dc:1b:16:66:65:48:b4:6b:18:97:17:14:c5:cd:
ad:8a:f8:69:37:a3:62:12:cf:53:47:98:4c:0e:2f:b6:a9:36:
27:48:de:6d:0d:90:4e:39:91:d7:2a:54:77:79:b5:40:b0:b4:
88:12:23:10:c9:07:dd:50:d0:ba:cf:5b:bd:1e:c5:7d:cc:08:
17:10:52:9c:80:bb:e7:27:27:40:f9:7f:10:9e:5c:00:55:84:
0c:d6:4a:40:13:8c:4f:a3:07:c9:e6:f1:90:cb:ef:89:67:b0:
7e:d7:6f:53:9d:92:68:48:5d:82:1e:3d:a2:39:ed:9d:66:e2:
3d:ef:11:06:9d:9b:9e:54:a0:12:38:18:a1:d8:85:ca:59:b8:
17:ae:a5:cc:00:c2:f9:0d:d8:06:d8:a8:80:4d:15:6d:64:7a:
7f:a7:fc:98:5c:71:fc:fe:60:0c:bf:66:04:30:8d:90:e0:ee:
4d:94:8b:53:6e:ce:66:98:b9:bb:d7:c2:d5:76:81:d7:00:19:
9a:02:e5:91:46:41:8c:da:a1:a5:49:c3:ad:bb:eb:22:36:63:
52:26:88:36:5e:92:88:7d:45:99:f2:73:39:b0:69:29:b6:c7:
21:a7:a6:92:07:d6:d2:02:03:f1:e3:98:d3:14:b0:11:34:35:
5e:f2:89:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 18:06:13 2024 by rpki-client on console-fra.rpki-client.org