Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336466613a3a2f34382d3438203d3e20323038383530.roa
File: 326131313a323963303a336466613a3a2f34382d3438203d3e20323038383530.roa (raw, json)
Hash identifier: L27h92QnvntPJFfUW0hzvI75jFNFrxGR3OQgeEf7KVE=
Subject key identifier: 07:00:4A:DC:FD:DD:49:95:FF:74:70:AD:EC:13:39:BF:18:90:42:7A
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 5C9BFF10A2B99B4A0B71FDD875005B79F02DA30C
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336466613a3a2f34382d3438203d3e20323038383530.roa
Signing time: Wed 19 Jun 2024 14:01:18 +0000
ROA not before: Wed 19 Jun 2024 13:56:18 +0000
ROA not after: Wed 18 Jun 2025 14:01:18 +0000
asID: 208850
IP address blocks: 2a11:29c0:3dfa::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:9b:ff:10:a2:b9:9b:4a:0b:71:fd:d8:75:00:5b:79:f0:2d:a3:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Jun 19 13:56:18 2024 GMT
Not After : Jun 18 14:01:18 2025 GMT
Subject: CN=07004ADCFDDD4995FF7470ADEC1339BF1890427A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:1f:ac:05:08:b0:74:3f:f1:c6:3f:16:b6:eb:
b4:77:71:c2:ec:54:be:45:dc:2f:ef:73:4d:38:b9:
07:f8:b0:16:db:2c:97:a8:69:ea:f9:36:a2:ab:bc:
50:8c:32:80:d6:22:c9:f8:54:3d:a7:21:a4:a1:f5:
bf:c0:1b:63:9d:79:49:f9:9d:44:ba:a0:7c:b0:6f:
a2:d6:44:64:30:88:b0:26:39:52:9f:f8:39:03:c1:
6b:e2:74:ce:60:c3:fb:3c:b0:37:0a:e2:39:1b:b8:
46:ed:d5:9a:9e:25:c3:d2:6c:9e:b3:19:43:3c:e9:
7d:74:8e:c0:d7:4d:b8:cf:3b:b3:50:c2:d0:82:c6:
07:62:03:25:65:0b:d1:5c:83:24:4f:69:0a:b8:c0:
de:11:70:23:6f:a5:4f:3c:7c:5f:27:f8:c9:bc:8a:
33:9a:5b:72:86:73:bc:6d:32:1f:fa:49:c7:95:fa:
fa:20:d6:90:1e:10:ea:6b:93:48:2f:35:38:51:7d:
f4:7c:21:b4:60:08:2b:cf:d4:24:50:40:29:45:be:
39:0e:39:04:1a:8c:99:5a:e7:c2:a3:89:3f:48:c3:
38:5c:6c:65:0a:41:40:b5:00:40:2b:f5:0d:32:0c:
ae:60:ad:2b:f5:ff:10:16:ff:8f:64:98:af:27:59:
d3:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:00:4A:DC:FD:DD:49:95:FF:74:70:AD:EC:13:39:BF:18:90:42:7A
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336466613a3a2f34382d3438203d3e20323038383530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:3dfa::/48
Signature Algorithm: sha256WithRSAEncryption
b0:81:06:52:1d:5e:b7:d9:8d:5d:24:77:cf:11:65:bc:53:87:
16:1d:f7:b4:ce:93:f8:47:32:e5:5d:e8:bb:b3:55:68:b6:9c:
f1:32:34:72:3b:dd:a8:97:7d:cc:a9:91:00:ab:ab:ff:5c:50:
17:9c:ba:d3:9d:62:c4:97:48:c1:06:d6:df:99:c7:b7:47:6c:
2f:73:8b:48:ce:ed:cf:f1:33:43:dd:5d:78:fd:53:6b:3e:f1:
fd:9d:40:0a:a3:ea:45:ae:cb:05:6d:c1:42:9a:a7:4e:9a:7c:
f5:96:f5:ec:65:2b:d0:12:c6:b8:61:e9:cb:7a:0d:0c:ba:4d:
b8:7a:b3:f0:00:18:22:7a:c6:fc:a9:e0:41:4c:f0:91:2a:9d:
8e:33:e3:cd:51:f3:00:a2:f6:d1:01:0d:54:5b:73:e7:83:c2:
69:4a:e2:c4:d6:35:59:ba:9e:01:d9:74:99:b0:e1:1f:6e:9f:
06:65:c1:da:df:de:d9:92:bc:0a:25:24:f0:bf:40:6e:18:95:
b1:4c:e6:c4:bb:8b:61:e4:53:de:2f:e1:15:42:5e:97:63:e0:
1d:22:42:41:88:6f:93:61:ae:a5:1f:8e:1f:b1:29:4e:d3:00:
ba:ae:e4:04:6f:0e:27:54:b9:74:56:b0:c3:ca:ea:21:39:e7:
65:6e:c6:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 18:06:13 2024 by rpki-client on console-fra.rpki-client.org