Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336464303a3a2f34342d3434203d3e203230343733.roa
File: 326131313a323963303a336464303a3a2f34342d3434203d3e203230343733.roa (raw, json)
Hash identifier: 0sMeJ9j0hSsRDxbk9gYDlrl2tPW6TaPzEmvTfPWpLKc=
Subject key identifier: 5E:1F:A5:6D:BB:B7:FC:D2:40:3D:BD:2D:59:C0:AA:8A:2F:2C:73:8B
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 60F1D2778365952EBAA59CB562554930D64D9B05
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336464303a3a2f34342d3434203d3e203230343733.roa
Signing time: Tue 27 Aug 2024 16:01:28 +0000
ROA not before: Tue 27 Aug 2024 15:56:28 +0000
ROA not after: Tue 26 Aug 2025 16:01:28 +0000
asID: 20473
IP address blocks: 2a11:29c0:3dd0::/44 maxlen: 44
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:f1:d2:77:83:65:95:2e:ba:a5:9c:b5:62:55:49:30:d6:4d:9b:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Aug 27 15:56:28 2024 GMT
Not After : Aug 26 16:01:28 2025 GMT
Subject: CN=5E1FA56DBBB7FCD2403DBD2D59C0AA8A2F2C738B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:66:ae:0b:89:a0:86:d6:4f:09:ca:29:19:75:
3e:8e:4d:08:b9:73:40:9b:b1:20:e2:a6:9d:a0:8d:
5c:a0:c4:57:20:9c:f6:2c:5f:73:fe:2f:92:b3:2c:
e9:3e:ad:93:1f:d7:64:89:52:e0:83:6b:6d:f2:68:
e1:05:b8:64:41:e1:69:e3:25:50:2b:65:a7:1e:25:
09:4e:8d:01:ae:e2:c8:85:1c:d7:70:96:24:25:e1:
62:9f:13:98:66:ac:df:b9:9c:aa:09:3f:4f:87:eb:
5f:7e:3c:bb:12:90:b0:89:9a:df:7e:c7:de:4e:83:
73:96:e7:da:31:87:20:e8:3e:1b:fe:09:36:0a:f8:
27:39:5d:6a:f4:34:5f:31:47:89:e4:40:a0:04:6a:
1d:89:a6:bb:71:12:34:5a:d8:af:63:7f:b9:a9:84:
9f:4e:15:9b:fa:4b:bb:f2:5a:55:83:0d:b9:26:51:
16:67:20:07:a5:d5:33:11:d3:24:b7:7b:8c:97:78:
13:ce:ef:e3:68:10:51:30:32:44:25:81:69:74:22:
7b:55:64:42:85:f8:33:76:85:8d:bc:0e:bd:e0:75:
79:b9:f3:b4:4b:0e:5b:73:ce:98:92:65:f9:bb:eb:
ff:f7:e1:f6:a5:49:0e:57:99:ed:e2:c6:07:ef:fd:
a6:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:1F:A5:6D:BB:B7:FC:D2:40:3D:BD:2D:59:C0:AA:8A:2F:2C:73:8B
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336464303a3a2f34342d3434203d3e203230343733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:3dd0::/44
Signature Algorithm: sha256WithRSAEncryption
15:fc:17:de:fc:1e:3f:83:2a:dc:2a:cb:66:f7:f2:4e:a2:96:
bd:4d:ec:13:75:4c:1c:1b:7b:3b:06:18:df:bd:3c:d7:6f:0c:
66:bd:8c:df:8f:57:b6:b3:18:52:ee:3c:f2:95:db:47:42:09:
28:96:b8:e3:8b:4d:4a:8d:88:ea:f6:f5:7b:c9:df:86:3c:70:
65:6b:a6:18:06:9b:af:be:fe:da:0d:d6:46:20:6b:8c:b7:98:
03:6d:28:d7:c5:ff:ff:c5:63:8a:78:50:cb:48:0e:d4:53:d1:
32:fd:5b:60:50:14:db:8f:63:f4:8c:89:ee:53:9c:30:20:fd:
9d:ac:2d:82:63:38:21:1a:59:1f:1f:46:1d:cb:e5:11:ce:df:
08:1b:a3:9b:98:11:c9:9f:9d:7d:10:3f:e3:4a:92:0d:97:f5:
ca:4c:c4:0d:37:f6:c8:84:12:f3:4d:58:bc:11:4b:1b:79:93:
0a:1b:48:52:84:5e:4f:12:a2:1d:fa:bd:95:bc:b1:bf:cb:a1:
cd:55:75:29:3d:22:4a:0f:a2:05:03:80:32:95:fc:ec:15:34:
03:08:fe:cd:d4:a6:0e:43:f3:12:6b:6a:8d:9f:96:f0:0f:02:
ec:d1:48:90:c8:f7:f7:3a:0e:f4:71:37:98:29:19:2d:20:47:
01:55:56:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:35:20 2024 by rpki-client on console-ams.rpki-client.org