Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336466373a3a2f34382d3438203d3e20323038343731.roa
File: 326131313a323963303a336466373a3a2f34382d3438203d3e20323038343731.roa (raw, json)
Hash identifier: KReE5Pc49q5PEwbdGoqcdmD8Lo4LqfRQrg1eUVlms4Y=
Subject key identifier: 8B:7E:30:8D:20:B1:FC:B3:93:64:16:FD:DA:A9:74:C6:F0:CC:DA:21
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 632AEDD15D9FE0B9CA74F2E0B778EA5E5C7BD870
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336466373a3a2f34382d3438203d3e20323038343731.roa
Signing time: Wed 19 Jun 2024 14:01:15 +0000
ROA not before: Wed 19 Jun 2024 13:56:15 +0000
ROA not after: Wed 18 Jun 2025 14:01:15 +0000
asID: 208471
IP address blocks: 2a11:29c0:3df7::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:2a:ed:d1:5d:9f:e0:b9:ca:74:f2:e0:b7:78:ea:5e:5c:7b:d8:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Jun 19 13:56:15 2024 GMT
Not After : Jun 18 14:01:15 2025 GMT
Subject: CN=8B7E308D20B1FCB3936416FDDAA974C6F0CCDA21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:71:fc:64:67:bb:d1:83:56:79:c4:01:31:76:
68:c1:fe:d1:f9:b8:fe:42:13:02:43:e3:23:d3:12:
3e:ac:87:3b:05:5c:3f:85:00:88:73:0f:39:27:41:
be:43:62:d0:05:e4:2c:a2:06:97:31:67:bd:3f:75:
9f:ee:df:d5:cc:d4:a2:9d:22:6c:eb:5a:2b:93:6e:
ca:5e:a5:49:a0:01:4f:da:b1:98:cd:cf:af:bc:e0:
c5:4b:fe:e5:99:13:96:94:f5:97:71:85:f1:6d:86:
37:62:41:94:d0:ab:65:7d:0e:53:10:8a:fa:6c:ed:
b8:d5:ed:85:3f:4b:42:c7:03:f7:5a:d8:e6:66:d6:
77:2e:f3:9c:11:48:85:2b:a4:4f:3f:28:a3:43:e6:
75:a5:73:1f:7e:95:6f:ba:01:ab:46:30:17:4a:e5:
f6:0d:27:8b:e8:4c:b9:b7:1e:02:5f:7d:1a:62:d6:
cb:4e:aa:21:57:56:97:5a:56:cc:ea:11:7e:40:62:
51:9f:6e:fa:f3:ae:d3:70:ac:f6:f1:68:3a:c8:d8:
84:a0:04:5f:0c:8e:23:24:68:9b:87:ca:17:77:5f:
95:20:a6:e4:67:4a:ec:9b:f4:3b:48:63:a5:e5:e7:
a7:a7:61:d4:2b:9a:d5:06:a2:36:68:98:9c:2c:7c:
bb:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:7E:30:8D:20:B1:FC:B3:93:64:16:FD:DA:A9:74:C6:F0:CC:DA:21
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336466373a3a2f34382d3438203d3e20323038343731.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:3df7::/48
Signature Algorithm: sha256WithRSAEncryption
6d:6e:23:12:99:57:f2:0f:55:83:eb:5a:de:43:6a:dd:fa:f8:
92:36:11:08:9e:34:63:5b:48:11:af:bb:c0:d5:10:69:f3:db:
9f:bc:74:c5:18:7d:2e:de:b0:00:52:b5:13:89:15:94:1c:81:
b1:18:c5:45:17:cc:9e:b8:46:71:37:7e:26:7f:6d:f6:eb:f0:
e1:35:01:b2:40:20:a2:55:88:32:50:b7:6d:31:3d:83:c3:33:
1e:74:08:cb:38:d4:0e:2b:e8:3e:a0:22:f6:0c:8b:fa:55:40:
f0:d2:9a:e0:d6:90:99:74:e0:ff:2e:05:8d:7c:3a:8d:f1:b0:
c6:fb:f0:5e:29:ab:7e:b6:fe:25:02:68:ec:db:4e:a4:3c:5c:
e5:cf:bb:7d:28:53:fb:6b:e0:a6:b4:c0:5b:aa:2c:56:51:28:
b3:9d:79:d6:12:46:7c:dc:4a:e2:57:ea:f5:34:97:65:9b:ca:
f1:63:e6:d7:de:07:67:06:ac:e0:e3:c5:41:3e:39:04:9a:26:
33:62:0a:16:f8:55:e1:7d:ee:60:8e:95:27:16:f8:01:2f:19:
2d:16:25:9a:c6:81:ae:f7:18:6e:17:cc:df:11:d2:3d:52:36:
8c:93:fa:c5:97:31:ee:bb:4a:9c:4e:6f:64:87:b9:56:ca:f6:
cc:6c:ee:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:35:20 2024 by rpki-client on console-ams.rpki-client.org