Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336465303a3a2f34342d3438203d3e20323136323636.roa
File: 326131313a323963303a336465303a3a2f34342d3438203d3e20323136323636.roa (raw, json)
Hash identifier: wYZXOkp6wddGwmMuq71kFKOsD2BXGRU+8BvPYARY9jg=
Subject key identifier: 08:1A:9C:5A:28:06:9E:ED:A7:70:2A:AB:39:EC:CA:FB:75:69:B6:57
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 3B0327EF9B0E2F4BB68CCBA8CAF2ADDF947B2B3C
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336465303a3a2f34342d3438203d3e20323136323636.roa
Signing time: Sun 22 Oct 2023 20:10:46 +0000
ROA not before: Sun 22 Oct 2023 20:05:46 +0000
ROA not after: Sun 20 Oct 2024 20:10:46 +0000
asID: 216266
IP address blocks: 2a11:29c0:3de0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Jun 2024 16:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:03:27:ef:9b:0e:2f:4b:b6:8c:cb:a8:ca:f2:ad:df:94:7b:2b:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Oct 22 20:05:46 2023 GMT
Not After : Oct 20 20:10:46 2024 GMT
Subject: CN=081A9C5A28069EEDA7702AAB39ECCAFB7569B657
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:02:ec:e2:a3:6f:e1:e9:5c:f1:ee:2d:5a:bf:
b5:a1:10:10:a4:57:41:5a:9e:b8:d3:38:b2:ec:d6:
28:c5:ca:14:7f:44:a6:66:54:d8:db:b7:cd:30:9c:
66:3a:3c:14:8b:66:5d:e4:e9:b2:12:7c:92:41:16:
95:71:2b:46:9b:17:7d:cb:02:7a:4b:6a:a0:07:dc:
1a:c7:89:3e:f7:c3:01:24:8e:2c:ae:23:d7:2e:84:
ee:37:13:d8:dc:4d:45:6e:a8:08:16:44:37:9a:e3:
28:cb:17:69:e4:65:66:b7:b7:ce:b2:bf:af:a1:92:
62:40:2e:2f:27:5c:0b:d3:4c:bb:5a:cf:9c:5c:fa:
ec:9d:1a:90:9c:e6:90:bb:91:d6:a8:24:88:70:f2:
34:f6:b4:47:4b:af:89:1e:0d:ae:c4:de:29:e3:91:
76:39:e8:12:63:57:67:6b:e9:be:76:70:03:f5:e0:
65:d8:ba:85:15:be:10:3c:96:a4:05:4e:88:5d:71:
ab:20:8f:e3:4c:1b:89:dd:d1:94:1a:11:01:0e:f3:
c5:62:38:83:a0:b2:43:00:1c:b0:ba:d7:99:ce:00:
eb:36:d9:a8:4b:16:87:96:c6:ee:fc:99:3a:b5:9a:
fe:b7:dc:fc:2c:29:d2:fa:6f:b7:65:bf:88:27:2e:
50:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:1A:9C:5A:28:06:9E:ED:A7:70:2A:AB:39:EC:CA:FB:75:69:B6:57
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336465303a3a2f34342d3438203d3e20323136323636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:3de0::/44
Signature Algorithm: sha256WithRSAEncryption
01:c4:74:2e:08:b8:e8:a6:72:cd:17:3f:39:87:0c:4a:31:d0:
68:0a:a7:9e:e1:82:a7:2d:7e:7e:98:c7:e5:67:a3:56:bf:ca:
cd:34:b3:3a:a4:d2:f0:82:2a:e0:9c:f3:ed:67:07:bb:b9:be:
f9:3f:01:c6:d1:a1:dc:41:a9:c4:77:94:d9:68:76:c3:0d:8b:
26:a9:d5:4d:be:fb:d3:c0:e6:ab:c4:a2:13:a8:1a:4b:78:62:
08:3a:6b:19:04:69:61:b4:7a:14:7d:45:ab:82:09:55:71:bb:
30:1f:30:9e:24:61:12:f7:c0:a9:9c:c3:ff:38:03:98:e4:10:
09:74:f7:7d:8f:ba:92:3d:6d:86:f9:83:b0:7a:7f:6c:c4:fb:
fe:dd:e1:6a:9d:33:38:44:b3:20:8d:ec:f9:e8:fd:3c:d5:76:
04:e0:48:a0:17:ee:ec:98:0b:7b:f4:b3:40:e6:d2:b2:c0:a9:
ba:0a:18:45:68:c9:af:85:5f:6e:fc:c6:0b:ae:55:c2:7c:a4:
05:78:5d:98:2b:ce:dc:05:82:f7:b2:39:50:76:f9:44:b7:da:
a4:9e:1a:0a:71:34:f7:9b:68:e9:f5:21:c4:16:97:81:03:2d:
0c:43:71:20:8c:f1:59:98:95:26:cd:60:98:4e:d8:2c:9e:18:
89:d0:41:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 31 23:16:06 2024 by rpki-client on console-ams.rpki-client.org