Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336466313a3a2f34382d3438203d3e20323039333839.roa
File: 326131313a323963303a336466313a3a2f34382d3438203d3e20323039333839.roa (raw, json)
Hash identifier: bcU1Nx/XKgtMVVMbvVTP6j95uqcJCokuaLrR+vQerWw=
Subject key identifier: B9:00:5A:BF:6C:04:FD:17:51:1A:10:3C:F6:85:F5:65:D1:8D:79:9E
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 526F949D5762136A041E056EE54F6302AB807CC9
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336466313a3a2f34382d3438203d3e20323039333839.roa
Signing time: Wed 19 Jun 2024 14:01:16 +0000
ROA not before: Wed 19 Jun 2024 13:56:16 +0000
ROA not after: Wed 18 Jun 2025 14:01:16 +0000
asID: 209389
IP address blocks: 2a11:29c0:3df1::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:6f:94:9d:57:62:13:6a:04:1e:05:6e:e5:4f:63:02:ab:80:7c:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Jun 19 13:56:16 2024 GMT
Not After : Jun 18 14:01:16 2025 GMT
Subject: CN=B9005ABF6C04FD17511A103CF685F565D18D799E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:4a:ed:4b:4a:d5:b1:1c:c5:d8:28:b9:cc:6b:
49:76:7f:56:19:70:03:64:52:14:27:f8:e4:b8:55:
5f:62:49:44:af:16:53:79:6c:f4:bb:76:10:74:29:
17:8d:67:a0:aa:c1:a2:8b:95:83:8a:0f:e4:80:63:
2a:45:70:3c:fa:60:76:09:6e:41:04:01:52:43:29:
8d:62:9b:b2:ad:af:c0:18:1f:01:6d:27:90:f1:42:
5b:4b:09:fd:f1:19:94:bb:41:7a:6f:92:29:18:eb:
4c:3e:7a:69:0d:f3:df:4b:9e:e3:67:08:c5:50:c3:
c9:49:a5:b9:bc:af:24:d9:bb:8b:1d:87:6a:d5:88:
f5:0a:75:43:77:1f:fc:a0:7f:75:49:df:df:6d:54:
79:7d:b8:87:50:97:86:6d:5a:82:41:cb:ce:ff:95:
4e:62:d3:ba:f8:9c:3c:b4:3b:0c:41:00:18:fa:12:
de:9f:f4:3f:45:86:31:21:37:40:a9:74:50:29:d1:
4a:a6:61:0d:2e:6d:62:b1:d5:0b:5e:68:e2:76:e2:
57:6e:5c:4b:83:b1:c3:15:95:5d:44:0b:25:e6:4b:
c9:40:77:20:b1:cc:02:19:a6:26:ce:b8:15:66:bd:
38:07:a2:b4:6d:52:4a:29:9a:53:d0:00:ca:fd:5d:
1d:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:00:5A:BF:6C:04:FD:17:51:1A:10:3C:F6:85:F5:65:D1:8D:79:9E
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336466313a3a2f34382d3438203d3e20323039333839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:3df1::/48
Signature Algorithm: sha256WithRSAEncryption
6f:94:3b:db:1b:c0:b3:ec:05:be:64:f3:f6:a2:bd:a5:fe:3e:
14:20:99:81:d9:b1:5f:0f:90:bf:cf:de:46:49:a1:f5:e8:93:
71:e1:b6:b7:77:22:6d:61:e1:07:ff:2d:ea:94:fa:2a:37:cb:
37:8a:cf:7f:8f:02:11:c8:63:bf:3f:48:dd:3b:2b:49:2f:06:
19:e8:d5:40:39:77:87:eb:52:45:21:ba:fa:78:15:93:81:8c:
65:36:19:31:cc:5e:86:f1:1f:db:53:f7:53:74:7b:67:d1:4a:
27:b6:e2:4d:05:85:b5:bc:17:51:ef:39:9d:13:f3:f6:93:79:
86:61:e0:c6:92:40:86:f9:5c:d9:4e:0e:09:e1:d1:5b:9b:0e:
15:3a:ee:c0:81:72:01:b4:ea:1d:19:97:11:4b:ee:f1:e7:ed:
3c:b0:e4:5b:cf:fd:fb:ec:bd:3b:82:34:70:75:de:18:4c:38:
56:a5:be:10:94:af:e5:7d:60:2d:b2:7f:41:ae:8d:39:7c:d1:
6a:1a:ed:4f:ba:89:50:23:0b:25:bc:67:58:50:4f:13:97:9e:
92:8a:0f:5b:ce:88:6d:89:31:0c:d1:48:cb:d0:23:54:a4:e5:
8d:8a:b4:cd:45:39:13:fc:e5:eb:aa:c0:86:ad:f3:74:38:22:
ba:85:47:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:35:20 2024 by rpki-client on console-ams.rpki-client.org