Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336464303a3a2f34342d3434203d3e203230343733.roa
File: 326131313a323963303a336464303a3a2f34342d3434203d3e203230343733.roa (raw, json)
Hash identifier: w6CW/HmWKHSKcKMs+YbF+50s3aBl7U0RgIq7zj+t7b8=
Subject key identifier: 97:FD:CE:12:77:16:49:DC:9E:C8:10:0C:FA:36:6E:9D:79:01:D7:53
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 0E7000524575DCA3FD4BD94511FE0841472EB8D8
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336464303a3a2f34342d3434203d3e203230343733.roa
Signing time: Tue 26 Sep 2023 15:54:45 +0000
ROA not before: Tue 26 Sep 2023 15:49:45 +0000
ROA not after: Tue 24 Sep 2024 15:54:45 +0000
asID: 20473
IP address blocks: 2a11:29c0:3dd0::/44 maxlen: 44
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:70:00:52:45:75:dc:a3:fd:4b:d9:45:11:fe:08:41:47:2e:b8:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Sep 26 15:49:45 2023 GMT
Not After : Sep 24 15:54:45 2024 GMT
Subject: CN=97FDCE12771649DC9EC8100CFA366E9D7901D753
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:2c:22:ad:ed:32:fe:fc:40:37:a8:df:1b:6e:
9b:38:93:89:59:f1:eb:8d:ef:8e:ce:03:8c:8e:e3:
67:47:ce:62:52:24:36:4a:dd:35:5f:d9:fc:96:2a:
0b:05:56:04:6d:64:70:9e:03:c4:94:b0:06:c2:fb:
eb:6e:db:25:a0:04:a8:09:9e:81:32:7c:23:77:02:
bb:3a:3c:3c:5b:c3:a4:34:34:ac:6a:af:7b:10:23:
c4:b7:dd:34:8d:16:95:94:4d:31:b9:ed:e1:26:2c:
11:c5:65:7e:25:de:bb:5c:87:e6:be:8f:fc:0d:a6:
f7:4f:6c:b3:50:6e:6a:bc:24:66:55:48:df:a4:72:
82:1e:e6:12:4d:7d:ec:d2:61:3c:89:59:02:6c:fe:
b8:32:48:1b:83:0e:79:54:71:a0:e0:0f:94:8c:b5:
cb:cf:5d:07:dd:23:00:ca:3c:27:15:fc:0a:1c:32:
ad:51:8a:15:6a:b4:48:09:af:ad:81:43:92:70:7c:
d7:2d:49:11:7f:be:c1:3a:dc:6f:1a:15:7f:ea:78:
8b:3c:dd:62:3e:59:6c:d9:94:51:94:0b:7f:fa:e2:
fd:b2:8f:b8:54:8d:56:e3:cb:82:03:b1:be:22:25:
8e:d0:4d:99:f4:37:ad:71:7a:0c:5d:06:58:98:6f:
66:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:FD:CE:12:77:16:49:DC:9E:C8:10:0C:FA:36:6E:9D:79:01:D7:53
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336464303a3a2f34342d3434203d3e203230343733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:3dd0::/44
Signature Algorithm: sha256WithRSAEncryption
5e:c0:2c:d6:c2:ef:e0:99:a6:ff:6e:80:8d:9f:91:1f:ea:bf:
5f:70:70:f0:5c:a8:6f:cf:08:33:5c:dc:80:2d:8b:ff:a3:f5:
d4:0b:cc:29:a9:fd:45:b2:92:e0:d0:4d:35:6b:e3:21:fc:b8:
5e:f0:9d:0e:4d:ff:21:ae:eb:93:62:98:85:61:b1:20:dd:30:
79:6a:53:49:ea:e7:31:60:79:ab:06:fd:ec:24:ed:e6:ac:08:
5a:36:7a:fd:cf:fa:f7:14:7f:94:a9:46:7e:2d:f6:03:28:aa:
e1:f8:bc:43:89:c7:dc:45:9f:78:65:99:23:e3:f3:d9:42:42:
0c:42:7a:c6:4d:8d:ff:2d:fd:e9:80:28:e8:79:59:56:a5:30:
9f:a2:74:9c:5b:d2:1e:c8:b4:11:ea:d5:4e:87:79:19:f0:28:
8d:6d:f0:c8:8d:fb:33:3f:70:ce:d8:8b:57:93:db:44:56:c9:
c7:14:93:9e:36:fe:1b:fd:a5:3e:fb:f4:cc:e4:a2:cf:0e:5d:
65:0f:91:0f:a8:5e:4b:26:ef:80:3e:14:35:fb:f8:9a:8f:fd:
aa:17:34:a9:4a:69:47:1d:91:de:19:b6:46:b8:dc:cb:8e:13:
0b:f2:b0:ec:3e:42:e9:de:e3:35:ec:8e:96:bd:ed:0e:38:49:
ae:05:bb:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 16:41:23 2024 by rpki-client on console-fra.rpki-client.org