Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336466343a3a2f34382d3438203d3e20323130333434.roa
File: 326131313a323963303a336466343a3a2f34382d3438203d3e20323130333434.roa (raw, json)
Hash identifier: j4OuYH3s9YsurYbPX+Nwa1gOxDp2SnZqy+xRQXT36C8=
Subject key identifier: 07:A4:A8:37:EB:97:0E:86:10:7D:C2:AC:8C:92:83:8D:C8:6E:EB:79
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 4089AC56730A4FA0F6140D85E1B6C5E6D7D3DE16
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336466343a3a2f34382d3438203d3e20323130333434.roa
Signing time: Wed 19 Jun 2024 14:01:17 +0000
ROA not before: Wed 19 Jun 2024 13:56:17 +0000
ROA not after: Wed 18 Jun 2025 14:01:17 +0000
asID: 210344
IP address blocks: 2a11:29c0:3df4::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:89:ac:56:73:0a:4f:a0:f6:14:0d:85:e1:b6:c5:e6:d7:d3:de:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Jun 19 13:56:17 2024 GMT
Not After : Jun 18 14:01:17 2025 GMT
Subject: CN=07A4A837EB970E86107DC2AC8C92838DC86EEB79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:d4:1f:b5:b4:97:ee:4e:ba:c3:4d:ee:a1:98:
05:dc:06:5a:88:ef:69:bb:cc:e2:61:1b:92:0c:84:
1a:c0:f9:4a:e5:91:a8:e0:c1:5b:46:51:b5:e8:fb:
f6:87:52:a1:b5:b8:5e:e1:1e:dc:19:e4:3d:29:fc:
cf:3d:d0:53:96:2b:6d:e1:d7:74:64:42:f2:4b:90:
7a:2a:51:54:b7:09:1c:2e:4e:15:06:fc:3a:62:2c:
38:5f:61:ae:78:26:77:a5:19:ad:2a:09:eb:74:61:
23:b2:f4:2c:3b:9c:3e:dc:38:77:d7:43:b8:35:80:
f3:f9:2c:8c:06:64:c6:b3:84:be:23:d9:cc:c4:ee:
bd:58:25:19:f9:cb:66:c2:9f:0c:6d:ab:0a:ab:12:
34:e8:90:1f:f6:40:24:b4:94:04:20:88:3a:dd:e8:
0d:51:97:9f:c6:6a:a0:3c:c0:a6:9e:d6:a6:70:11:
d7:cc:ab:ce:88:23:ca:f4:fd:cf:e6:2a:a3:4b:64:
c3:df:ff:14:91:7e:39:76:e0:fc:b8:12:6a:60:62:
8a:36:d9:f0:2b:f9:57:90:b4:b8:c5:36:51:3a:ae:
53:70:fd:42:a7:13:1b:1f:f6:55:0d:18:dc:03:22:
da:67:4d:e0:09:95:99:68:6c:83:63:67:a2:93:dd:
80:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:A4:A8:37:EB:97:0E:86:10:7D:C2:AC:8C:92:83:8D:C8:6E:EB:79
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336466343a3a2f34382d3438203d3e20323130333434.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:3df4::/48
Signature Algorithm: sha256WithRSAEncryption
62:55:9f:89:20:3f:15:dc:a7:e7:d4:1b:1e:8f:04:f3:4d:9f:
6e:81:2a:ea:a9:bb:87:d1:ac:48:3c:d8:84:4d:53:e0:32:1c:
96:4c:fb:ae:8e:0b:13:f0:7a:73:a1:09:df:76:cf:02:36:45:
b1:8f:e6:03:3c:b2:53:2d:5b:78:2c:ac:8c:53:fa:19:f8:ff:
49:9f:86:39:99:6f:dd:3e:43:0d:9a:f6:4d:0b:42:e9:38:30:
15:7f:4a:e7:c0:3c:29:6f:fc:14:e4:20:26:0e:47:ed:a6:90:
ec:6f:34:7a:00:0d:e4:f3:b9:d4:46:1c:45:b0:cc:bb:f7:ec:
3d:41:91:2f:9c:35:4e:59:04:d9:34:7d:ac:12:00:b8:62:35:
07:dd:72:6a:42:02:88:66:de:25:43:43:21:8f:81:8a:d6:56:
ae:53:35:73:57:19:6d:49:f0:f8:60:72:64:d1:ac:88:2a:f3:
d2:bb:1e:02:17:a0:a7:0d:ac:b2:ba:ac:22:6f:b1:2a:a7:c7:
bc:47:51:b3:e0:bd:9c:17:62:cd:b7:18:e2:ce:4d:b1:14:16:
70:8d:ea:57:48:d6:a3:30:13:1a:94:b5:13:f5:18:0f:fa:b8:
3f:73:1f:88:e5:a0:92:6a:77:18:a0:db:cf:a0:83:c9:c1:60:
61:4a:08:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:35:20 2024 by rpki-client on console-ams.rpki-client.org