Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336466343a3a2f34382d3438203d3e20323130333434.roa
File: 326131313a323963303a336466343a3a2f34382d3438203d3e20323130333434.roa (raw, json)
Hash identifier: HVJ+k5vVzmUYhEaOf6XU33gojeYS/PaTDmbb/14YPw0=
Subject key identifier: 06:E9:91:EC:C7:52:11:BD:7D:71:2C:24:98:47:0E:71:2C:E5:08:CF
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 796D405DDE1E06C155336A01C21C958BB10487A3
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336466343a3a2f34382d3438203d3e20323130333434.roa
Signing time: Wed 19 Jul 2023 13:30:23 +0000
ROA not before: Wed 19 Jul 2023 13:25:23 +0000
ROA not after: Wed 17 Jul 2024 13:30:23 +0000
asID: 210344
IP address blocks: 2a11:29c0:3df4::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Jun 2024 15:19:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:6d:40:5d:de:1e:06:c1:55:33:6a:01:c2:1c:95:8b:b1:04:87:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Jul 19 13:25:23 2023 GMT
Not After : Jul 17 13:30:23 2024 GMT
Subject: CN=06E991ECC75211BD7D712C2498470E712CE508CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:1c:61:1d:53:24:e3:86:a8:a6:d7:20:65:0b:
96:9d:86:4b:0a:91:61:4a:c4:16:38:4d:d9:70:2e:
ac:83:e4:7f:43:45:54:e8:ce:d3:50:50:29:ad:3f:
8e:0d:f8:c7:76:e4:43:73:f3:27:88:5e:57:9e:51:
74:68:92:96:c1:44:cb:3e:5f:64:21:f7:b6:40:e2:
cd:f1:b3:54:f4:fe:c2:86:f5:9d:bf:95:b3:2a:86:
20:ba:3a:b7:b3:1f:09:6d:10:2b:85:59:ec:0a:19:
7d:bd:8d:cb:3e:a5:86:52:a7:75:a7:c1:9a:90:11:
de:af:13:f0:ba:84:ae:44:42:ce:78:f8:99:e8:d6:
b7:5e:07:ad:a3:14:43:cc:05:84:8c:01:94:b0:08:
4f:2a:98:66:78:e4:42:bf:2e:8d:81:ec:14:e6:d7:
bb:c0:0b:60:83:41:9e:d2:07:40:30:76:7e:8f:23:
37:91:64:be:dc:9a:c3:77:10:3b:ac:63:bf:d3:2f:
a1:09:5f:6d:f4:66:4c:e9:0a:08:98:91:88:bb:33:
10:d3:32:15:fa:c9:cf:3d:00:99:3c:d6:00:81:e8:
db:d5:cb:b9:de:d3:88:91:72:a9:a9:0a:bf:5b:1c:
f6:f9:7c:20:68:2c:30:15:89:9b:3e:21:a4:3a:65:
59:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:E9:91:EC:C7:52:11:BD:7D:71:2C:24:98:47:0E:71:2C:E5:08:CF
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336466343a3a2f34382d3438203d3e20323130333434.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:3df4::/48
Signature Algorithm: sha256WithRSAEncryption
1d:df:b7:06:83:de:b9:0d:24:e1:aa:67:8e:4d:78:db:4a:ac:
cb:c1:53:35:5a:c2:62:d2:fa:15:7d:34:8c:b1:9f:61:bc:13:
ec:3c:33:c3:1a:27:c3:e7:9b:28:75:5e:3a:d5:1e:ac:91:73:
41:d2:a3:81:e7:50:27:ea:bd:24:67:c1:08:09:1b:ba:92:e5:
37:c2:37:d4:26:9e:cf:c1:80:df:93:f1:1c:45:05:c4:09:eb:
84:1f:16:82:1f:39:10:8b:7c:82:81:ad:73:fe:e3:59:de:84:
d9:45:42:84:a1:c0:e8:0a:28:b0:b4:16:b0:b0:a5:f9:06:64:
96:cd:08:15:7f:1d:e9:92:aa:70:af:8f:54:20:cc:5d:14:2f:
ef:21:de:e0:67:01:52:4a:47:da:33:be:92:88:e3:66:aa:7e:
c6:2d:b5:9c:a0:3e:9b:da:11:f8:95:0c:a7:3a:62:bd:f5:cd:
54:6e:75:57:92:72:ab:e9:35:94:35:b9:e9:3f:a6:2f:d2:22:
b0:1a:0a:ca:49:f0:c4:8f:97:2a:49:88:4c:3b:c2:ed:1b:8d:
b9:d0:90:fe:52:95:d5:df:ca:20:e5:46:83:a6:06:c6:32:81:
8b:e6:a6:30:65:4b:84:35:52:e4:a1:76:7b:8d:af:48:87:3f:
27:f0:a0:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 31 19:07:49 2024 by rpki-client on console-fra.rpki-client.org