Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336466323a3a2f34382d3438203d3e20323131393434.roa
File: 326131313a323963303a336466323a3a2f34382d3438203d3e20323131393434.roa (raw, json)
Hash identifier: WxFl0QYmBvbcm5rbyCoyDejvvFz6JgmyiH0sOgnUROc=
Subject key identifier: 79:FE:4E:21:76:6E:F6:8D:7E:07:A5:7C:D3:10:2C:04:2F:76:4D:55
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 0A5CCA4D36DC04268AE50EB316DE8CE1342C5379
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336466323a3a2f34382d3438203d3e20323131393434.roa
Signing time: Wed 19 Jul 2023 13:30:30 +0000
ROA not before: Wed 19 Jul 2023 13:25:30 +0000
ROA not after: Wed 17 Jul 2024 13:30:30 +0000
asID: 211944
IP address blocks: 2a11:29c0:3df2::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Jun 2024 15:19:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:5c:ca:4d:36:dc:04:26:8a:e5:0e:b3:16:de:8c:e1:34:2c:53:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Jul 19 13:25:30 2023 GMT
Not After : Jul 17 13:30:30 2024 GMT
Subject: CN=79FE4E21766EF68D7E07A57CD3102C042F764D55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:9a:a2:6f:8e:3d:cc:d3:d9:02:aa:38:82:d5:
74:00:a0:9f:b8:9b:9e:2d:01:3c:dc:90:b1:e2:e2:
74:ed:4d:1a:f2:89:0d:27:31:3e:90:50:b8:c2:dd:
00:d3:db:ae:d5:a6:1a:c5:3d:16:79:ef:a4:cd:e5:
7a:32:15:1f:51:d2:42:11:85:95:e3:9f:63:ca:9e:
bb:4d:dc:a9:ec:a5:a5:86:2d:00:cf:25:ca:28:2e:
c8:b9:50:e1:90:8c:3b:6a:59:c4:4e:28:10:a1:7a:
f1:46:f7:64:2f:5c:a4:7f:fa:f1:09:67:30:66:30:
e3:78:9b:af:61:b6:ab:6d:b9:a1:b2:fd:4e:7b:52:
d6:ff:da:47:ba:71:01:2d:49:ae:aa:90:97:57:e9:
9d:f5:4c:2c:d1:e6:6f:5d:71:24:fe:e8:9b:51:c5:
df:00:7e:25:db:1a:c6:4e:99:26:42:74:4b:0d:f5:
13:06:e7:70:87:85:7f:9d:d3:64:bc:0e:2b:c1:2a:
7b:dc:27:2b:b9:c7:5e:f8:05:55:8e:e3:a0:99:4f:
7a:0e:e0:90:c6:37:2b:2e:88:55:e2:07:11:39:8e:
8b:a1:f1:c1:9c:0f:91:89:b9:07:30:40:13:5a:f7:
46:a2:07:c7:5a:39:4c:5a:c3:ab:c2:1f:ed:65:24:
bc:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:FE:4E:21:76:6E:F6:8D:7E:07:A5:7C:D3:10:2C:04:2F:76:4D:55
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336466323a3a2f34382d3438203d3e20323131393434.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:3df2::/48
Signature Algorithm: sha256WithRSAEncryption
0d:ed:6f:42:69:54:31:24:1a:e9:ae:35:75:c1:91:cb:18:7b:
a9:05:d2:26:b4:29:9c:ba:e9:c5:5a:62:58:cf:93:73:1f:4d:
09:c3:ce:c6:02:4b:3e:ff:95:ac:21:6a:6b:05:19:da:8e:52:
97:2e:59:3e:2c:54:39:c0:69:a5:73:74:25:82:ec:b9:6d:da:
f7:a4:7d:fa:ae:69:c7:2c:db:f6:a1:8e:f9:42:bf:0c:72:4c:
a6:04:f4:bc:dd:e5:ea:09:60:59:c8:7e:72:2e:2b:60:c6:cd:
22:36:8e:58:5d:12:4f:e0:d9:f1:0e:b5:02:e7:08:a6:c4:3a:
24:86:46:84:a2:d0:a7:d1:ff:31:9b:11:35:36:62:ca:53:32:
08:d5:85:3c:ab:a6:21:c0:9e:24:48:bc:5c:ec:23:bc:a5:c1:
02:7b:24:7e:2c:9f:49:26:5b:d7:bd:35:e9:8a:c1:d5:c8:77:
67:f9:8e:a2:fc:cb:4c:e5:4a:4f:73:12:2a:21:5c:94:59:fb:
ef:b1:6f:13:ff:77:6e:44:57:9b:b2:9c:46:2d:79:dc:b6:3f:
e4:1c:24:7a:96:95:d6:2d:78:88:d7:32:7a:ba:b7:52:ac:0f:
f5:34:f1:b0:f9:60:d8:67:8f:90:71:9f:8d:07:5a:4d:3e:3b:
f1:7b:1c:12
-----BEGIN CERTIFICATE-----
MIIFQDCCBCigAwIBAgIUClzKTTbcBCaK5Q6zFt6M4TQsU3kwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZTk2ZDg1OTk2ZTkzNTRkMTAwNWU0NGM3ODFkMzhhZGNm
MTA4Mjg3MzAeFw0yMzA3MTkxMzI1MzBaFw0yNDA3MTcxMzMwMzBaMDMxMTAvBgNV
BAMTKDc5RkU0RTIxNzY2RUY2OEQ3RTA3QTU3Q0QzMTAyQzA0MkY3NjRENTUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrmqJvjj3M09kCqjiC1XQAoJ+4
m54tATzckLHi4nTtTRryiQ0nMT6QULjC3QDT267VphrFPRZ576TN5XoyFR9R0kIR
hZXjn2PKnrtN3KnspaWGLQDPJcooLsi5UOGQjDtqWcROKBChevFG92QvXKR/+vEJ
ZzBmMON4m69htqttuaGy/U57Utb/2ke6cQEtSa6qkJdX6Z31TCzR5m9dcST+6JtR
xd8AfiXbGsZOmSZCdEsN9RMG53CHhX+d02S8DivBKnvcJyu5x174BVWO46CZT3oO
4JDGNysuiFXiBxE5jouh8cGcD5GJuQcwQBNa90aiB8daOUxaw6vCH+1lJLx3AgMB
AAGjggJKMIICRjAdBgNVHQ4EFgQUef5OIXZu9o1+B6V80xAsBC92TVUwHwYDVR0j
BBgwFoAU6W2FmW6TVNEAXkTHgdOK3PEIKHMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvODExMTViYzYtMTBmNi00YWYzLWJhMDktOGI2ODdhNTZm
YmY1LzAvRTk2RDg1OTk2RTkzNTREMTAwNUU0NEM3ODFEMzhBRENGMTA4Mjg3My5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzZXMkZtVzZUVk5FQVhrVEhnZE9LM1BF
SUtITS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvODExMTViYzYt
MTBmNi00YWYzLWJhMDktOGI2ODdhNTZmYmY1LzAvMzI2MTMxMzEzYTMyMzk2MzMw
M2EzMzY0NjYzMjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzMTM5MzQzNC5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw
DwQCAAIwCQMHACoRKcA98jANBgkqhkiG9w0BAQsFAAOCAQEADe1vQmlUMSQa6a41
dcGRyxh7qQXSJrQpnLrpxVpiWM+Tcx9NCcPOxgJLPv+VrCFqawUZ2o5Sly5ZPixU
OcBppXN0JYLsuW3a96R9+q5pxyzb9qGO+UK/DHJMpgT0vN3l6glgWch+ci4rYMbN
IjaOWF0ST+DZ8Q61AucIpsQ6JIZGhKLQp9H/MZsRNTZiylMyCNWFPKumIcCeJEi8
XOwjvKXBAnskfiyfSSZb17016YrB1ch3Z/mOovzLTOVKT3MSKiFclFn777FvE/93
bkRXm7KcRi153LY/5BwkepaV1i14iNcyerq3UqwP9TTxsPlg2GePkHGfjQdaTT47
8XscEg==
-----END CERTIFICATE-----
Generated at Fri May 31 19:07:49 2024 by rpki-client on console-fra.rpki-client.org