Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336466393a3a2f34382d3438203d3e20323038373731.roa
File: 326131313a323963303a336466393a3a2f34382d3438203d3e20323038373731.roa (raw, json)
Hash identifier: 47Y/FyDnSbAWRCLCU2gufBYkfE9Ldjb70ytJTirnnGE=
Subject key identifier: 72:26:2C:8E:7A:95:25:F7:75:6C:E8:EF:C0:5D:51:95:0B:5E:2A:81
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 0A0092DE4612C1B12DE882EFBA28B2FC495AF5FB
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336466393a3a2f34382d3438203d3e20323038373731.roa
Signing time: Wed 19 Jun 2024 14:01:19 +0000
ROA not before: Wed 19 Jun 2024 13:56:19 +0000
ROA not after: Wed 18 Jun 2025 14:01:19 +0000
asID: 208771
IP address blocks: 2a11:29c0:3df9::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:00:92:de:46:12:c1:b1:2d:e8:82:ef:ba:28:b2:fc:49:5a:f5:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Jun 19 13:56:19 2024 GMT
Not After : Jun 18 14:01:19 2025 GMT
Subject: CN=72262C8E7A9525F7756CE8EFC05D51950B5E2A81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:6a:24:73:77:57:1f:84:1b:69:54:1f:b4:4e:
54:1b:5e:20:b5:24:2c:ed:33:22:80:ab:1e:e5:7a:
5d:df:b1:1a:6e:c0:56:75:a1:19:51:b9:4f:d3:7c:
3b:b6:bd:08:ed:6f:c7:ce:06:33:6c:ea:8b:88:80:
0a:dc:7e:5b:29:93:41:31:0c:56:3b:22:5b:ba:d7:
6b:ea:5c:64:3b:c6:7e:29:86:91:ad:72:31:1e:23:
67:e0:7f:b1:98:73:e6:28:07:41:37:f3:1a:87:59:
91:46:03:8f:a7:e6:84:ec:5a:50:ed:2c:b1:54:38:
89:0f:df:d1:13:0f:91:f4:e6:eb:c6:a2:ab:e2:40:
61:cc:71:ec:f5:21:76:00:21:a5:6c:10:03:62:30:
12:12:e8:46:3d:5e:7a:2e:10:68:c5:1e:01:bb:c4:
61:00:88:5d:06:c8:55:c9:25:1b:76:80:d4:86:9e:
89:8e:23:f5:25:a6:9c:89:e9:fd:72:8f:2f:42:bc:
6d:98:48:e6:8d:b3:2f:06:78:67:b0:64:7e:3b:87:
5c:96:9b:01:5d:fd:9c:93:71:dc:fb:6a:74:6c:e5:
7c:f2:8b:5a:35:a7:04:69:7f:43:37:61:66:57:c7:
cd:2b:10:d8:3c:c1:aa:d2:03:71:9c:a0:38:62:5f:
fe:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:26:2C:8E:7A:95:25:F7:75:6C:E8:EF:C0:5D:51:95:0B:5E:2A:81
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336466393a3a2f34382d3438203d3e20323038373731.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:3df9::/48
Signature Algorithm: sha256WithRSAEncryption
1e:dc:f6:a9:c6:4c:2f:ad:37:65:9b:5d:aa:a7:f3:25:2c:69:
31:92:c5:8a:e6:95:83:68:4f:82:18:2b:c5:fd:96:1f:00:43:
f5:3f:f5:3b:b6:b2:43:9a:d1:79:99:93:3d:03:1e:30:26:e5:
02:db:1f:3f:dc:63:c7:09:79:7d:b1:6e:79:ff:ec:7f:c0:e4:
76:56:ea:a6:ba:69:6c:9b:71:b9:72:a0:f7:49:a8:11:68:16:
50:34:9f:f6:de:b3:6f:62:cc:49:8e:d7:fd:d2:1a:b5:1f:20:
92:46:eb:fa:5c:bd:3a:a6:b2:55:1e:ff:ff:f8:40:77:26:ca:
86:32:f1:01:61:5f:5c:57:0b:35:ec:42:8e:73:4c:58:e4:7e:
27:9d:a2:b2:7f:a7:92:f4:7f:2a:60:0e:b1:84:1b:28:e9:84:
d0:1a:b9:f6:24:26:c6:f8:52:2c:0e:ed:6e:62:6b:32:6c:4f:
1e:30:5d:f0:48:3a:ae:a7:94:db:47:91:b4:30:b4:d1:10:3f:
89:33:a5:08:85:69:e8:09:b3:51:af:83:8f:71:5f:0f:a5:8b:
f8:e3:83:42:65:08:48:ea:3c:0b:7b:73:b0:a4:11:42:33:65:
0f:3a:71:38:dd:9e:b5:e1:e6:09:0b:e2:52:8c:20:ab:d3:82:
ee:e5:b1:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 11:56:51 2024 by rpki-client on console-ams.rpki-client.org