Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336466333a3a2f34382d3438203d3e20323131383931.roa
File: 326131313a323963303a336466333a3a2f34382d3438203d3e20323131383931.roa (raw, json)
Hash identifier: aWozjZ8j8na0cVMJCcefZkhaCBZJsGemZssdhTbHtwo=
Subject key identifier: 42:40:9A:6C:89:50:E9:89:80:7C:30:7B:CC:36:42:7E:88:41:87:D7
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 12C19C4EAE54B53FEF58DAEB5FFEBB4A7C3AE2A6
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336466333a3a2f34382d3438203d3e20323131383931.roa
Signing time: Wed 19 Jul 2023 13:30:29 +0000
ROA not before: Wed 19 Jul 2023 13:25:29 +0000
ROA not after: Wed 17 Jul 2024 13:30:29 +0000
asID: 211891
IP address blocks: 2a11:29c0:3df3::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Jun 2024 08:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:c1:9c:4e:ae:54:b5:3f:ef:58:da:eb:5f:fe:bb:4a:7c:3a:e2:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Jul 19 13:25:29 2023 GMT
Not After : Jul 17 13:30:29 2024 GMT
Subject: CN=42409A6C8950E989807C307BCC36427E884187D7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:fd:d1:0c:75:38:53:a5:4a:13:bd:99:47:9f:
91:27:cc:de:26:62:8c:a0:61:9e:39:7d:35:c1:c6:
a8:f5:9e:3b:96:f6:2a:47:35:ef:30:bb:42:92:87:
32:ca:57:97:90:03:db:1f:bf:27:83:d1:e7:6b:33:
0a:4b:0c:00:22:90:a2:72:96:d6:93:ba:1f:dc:f6:
19:30:78:53:ab:c8:aa:bb:2f:e6:8f:7b:32:87:51:
ac:96:53:9a:f2:7c:b0:64:9c:93:bc:98:5e:8b:a5:
7c:0c:b4:e3:ef:df:75:f4:65:66:69:50:86:42:fb:
d7:b2:e9:0d:c3:c6:f7:5e:45:d0:3d:1b:df:56:62:
36:c0:01:c7:e7:1a:9c:40:82:ca:8b:b8:e3:d1:7b:
17:bd:84:f0:a4:68:23:40:56:e1:b2:de:69:0e:ca:
76:9e:0f:39:d4:b4:ed:56:01:7e:de:78:4d:83:19:
1c:fe:42:45:46:61:d5:fb:a4:ba:d4:4c:dc:e4:05:
28:79:5c:27:ad:06:b5:9c:d4:5f:8c:9b:8e:fa:11:
43:b4:93:b9:7d:34:8f:26:05:8a:8c:5f:a8:1b:77:
1a:04:b3:53:64:cb:09:6b:ae:b6:c8:5e:e3:e9:9a:
35:07:11:e8:6d:b7:7e:de:d5:f1:d6:96:55:8a:ae:
ee:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:40:9A:6C:89:50:E9:89:80:7C:30:7B:CC:36:42:7E:88:41:87:D7
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336466333a3a2f34382d3438203d3e20323131383931.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:3df3::/48
Signature Algorithm: sha256WithRSAEncryption
3b:b2:8d:1c:ee:c0:37:56:df:cc:d2:d7:52:05:70:5b:d7:6e:
8e:27:4f:33:4f:08:dd:b1:58:b4:c2:5a:3c:e7:fb:d2:17:fe:
23:be:47:40:42:dc:af:05:e2:7e:8f:b3:52:17:4b:a6:05:42:
29:6f:3e:73:7e:7c:80:5d:12:dd:09:cc:e9:7e:6a:77:56:62:
e5:1f:64:c0:d3:de:f4:e2:40:55:9f:0d:89:1c:02:1f:29:66:
64:f3:1f:02:63:c4:b8:2b:e9:de:ed:12:2a:92:84:38:6f:9e:
9d:6a:71:0d:b9:4a:31:6c:12:da:7c:5f:46:08:d5:49:be:da:
bc:5d:6f:58:7a:43:42:ed:79:9b:7a:41:55:0c:e5:ac:5d:e7:
1f:a2:6a:cc:8c:8c:e1:68:ba:86:a7:5c:1c:88:b0:49:d5:1f:
66:55:d6:93:00:39:11:ed:a1:1f:c1:e5:4b:ba:6a:71:39:36:
fa:b3:16:be:2a:f8:1e:ed:9f:a3:4f:85:3e:dd:44:7c:d3:85:
d8:04:50:04:38:c4:26:d0:ae:25:65:9a:af:51:41:01:e4:40:
b2:ae:19:c5:20:3b:61:00:f3:3a:92:59:70:53:22:39:6e:fe:
89:87:24:83:ab:9e:78:6b:71:7f:e9:4b:29:3d:ce:82:b7:65:
7f:9c:5a:0f
-----BEGIN CERTIFICATE-----
MIIFQDCCBCigAwIBAgIUEsGcTq5UtT/vWNrrX/67Snw64qYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZTk2ZDg1OTk2ZTkzNTRkMTAwNWU0NGM3ODFkMzhhZGNm
MTA4Mjg3MzAeFw0yMzA3MTkxMzI1MjlaFw0yNDA3MTcxMzMwMjlaMDMxMTAvBgNV
BAMTKDQyNDA5QTZDODk1MEU5ODk4MDdDMzA3QkNDMzY0MjdFODg0MTg3RDcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDg/dEMdThTpUoTvZlHn5EnzN4m
YoygYZ45fTXBxqj1njuW9ipHNe8wu0KShzLKV5eQA9sfvyeD0edrMwpLDAAikKJy
ltaTuh/c9hkweFOryKq7L+aPezKHUayWU5ryfLBknJO8mF6LpXwMtOPv33X0ZWZp
UIZC+9ey6Q3DxvdeRdA9G99WYjbAAcfnGpxAgsqLuOPRexe9hPCkaCNAVuGy3mkO
ynaeDznUtO1WAX7eeE2DGRz+QkVGYdX7pLrUTNzkBSh5XCetBrWc1F+Mm476EUO0
k7l9NI8mBYqMX6gbdxoEs1NkywlrrrbIXuPpmjUHEehtt37e1fHWllWKru47AgMB
AAGjggJKMIICRjAdBgNVHQ4EFgQUQkCabIlQ6YmAfDB7zDZCfohBh9cwHwYDVR0j
BBgwFoAU6W2FmW6TVNEAXkTHgdOK3PEIKHMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvODExMTViYzYtMTBmNi00YWYzLWJhMDktOGI2ODdhNTZm
YmY1LzAvRTk2RDg1OTk2RTkzNTREMTAwNUU0NEM3ODFEMzhBRENGMTA4Mjg3My5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzZXMkZtVzZUVk5FQVhrVEhnZE9LM1BF
SUtITS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvODExMTViYzYt
MTBmNi00YWYzLWJhMDktOGI2ODdhNTZmYmY1LzAvMzI2MTMxMzEzYTMyMzk2MzMw
M2EzMzY0NjYzMzNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzMTM4MzkzMS5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw
DwQCAAIwCQMHACoRKcA98zANBgkqhkiG9w0BAQsFAAOCAQEAO7KNHO7AN1bfzNLX
UgVwW9dujidPM08I3bFYtMJaPOf70hf+I75HQELcrwXifo+zUhdLpgVCKW8+c358
gF0S3QnM6X5qd1Zi5R9kwNPe9OJAVZ8NiRwCHylmZPMfAmPEuCvp3u0SKpKEOG+e
nWpxDblKMWwS2nxfRgjVSb7avF1vWHpDQu15m3pBVQzlrF3nH6JqzIyM4Wi6hqdc
HIiwSdUfZlXWkwA5Ee2hH8HlS7pqcTk2+rMWvir4Hu2fo0+FPt1EfNOF2ARQBDjE
JtCuJWWar1FBAeRAsq4ZxSA7YQDzOpJZcFMiOW7+iYckg6ueeGtxf+lLKT3Ogrdl
f5xaDw==
-----END CERTIFICATE-----
Generated at Thu Jun 13 14:15:22 2024 by rpki-client on console-fra.rpki-client.org