Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336466633a3a2f34382d3438203d3e20323130333438.roa
File: 326131313a323963303a336466633a3a2f34382d3438203d3e20323130333438.roa (raw, json)
Hash identifier: Vdne76jJtdVY7IKqVzJ+Jl3lRQEOmOOb2ak6dNU6cNs=
Subject key identifier: BB:67:22:D5:90:27:26:A0:56:0E:AE:A6:03:FD:3A:68:5C:AA:C4:13
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 28FE9A3524A60F499D590107A5F8E843D822C4CE
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336466633a3a2f34382d3438203d3e20323130333438.roa
Signing time: Wed 19 Jul 2023 13:30:26 +0000
ROA not before: Wed 19 Jul 2023 13:25:26 +0000
ROA not after: Wed 17 Jul 2024 13:30:26 +0000
asID: 210348
IP address blocks: 2a11:29c0:3dfc::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Jun 2024 16:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:fe:9a:35:24:a6:0f:49:9d:59:01:07:a5:f8:e8:43:d8:22:c4:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Jul 19 13:25:26 2023 GMT
Not After : Jul 17 13:30:26 2024 GMT
Subject: CN=BB6722D5902726A0560EAEA603FD3A685CAAC413
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:dc:05:f7:49:0a:08:28:8e:03:13:7f:65:5c:
75:72:02:0d:67:fc:66:b5:ab:30:80:be:ca:d2:ea:
04:04:9f:1b:33:da:98:a4:88:b5:77:cb:81:72:a4:
89:34:87:f6:e3:19:ba:29:5d:30:55:25:72:19:51:
19:13:1e:f6:db:2a:03:d0:50:e0:76:41:5c:9b:62:
30:c4:52:70:a9:8a:a5:87:6a:9b:58:72:2c:cf:76:
7a:e7:b6:27:dc:89:1d:53:8a:34:8c:25:4c:70:ec:
07:d1:de:a7:7e:ee:97:ca:53:26:87:4e:ce:c8:08:
0b:52:19:00:fc:20:33:a5:1e:34:2a:b4:15:d8:07:
ee:76:de:3f:ce:5a:a1:95:94:25:2f:61:6a:9f:e2:
b9:f0:4b:3f:cd:24:2e:71:fd:b7:f6:0f:07:9e:a7:
e0:ca:c3:86:04:4e:7f:36:c0:c5:e6:27:a2:a4:1e:
0c:50:34:7c:72:16:66:b1:53:74:ce:62:69:5f:62:
3f:5f:54:89:3a:f1:15:ae:df:cd:97:f9:a0:77:0d:
0c:42:f2:b7:4d:d1:90:55:dc:07:78:b8:27:dd:c3:
a3:2f:75:a9:3a:29:25:e9:73:03:89:3f:e6:d1:71:
95:dd:3c:a1:16:81:9c:11:70:60:a4:e0:4e:23:e3:
fe:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:67:22:D5:90:27:26:A0:56:0E:AE:A6:03:FD:3A:68:5C:AA:C4:13
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336466633a3a2f34382d3438203d3e20323130333438.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:3dfc::/48
Signature Algorithm: sha256WithRSAEncryption
76:ec:e3:d1:69:57:91:8e:78:ce:02:35:4f:aa:19:35:80:70:
56:62:0d:74:ea:f2:28:b1:a7:97:84:6b:99:fc:1c:14:cd:fe:
50:05:9c:13:d6:5e:7e:c8:e5:eb:38:66:40:f9:36:3f:19:34:
8f:1f:68:2c:9b:cb:d8:ab:f6:0d:61:1b:2c:a7:67:ab:5d:b6:
56:5c:78:df:14:25:5e:30:97:9b:3d:20:f5:97:7e:3b:43:63:
ca:2b:5d:6a:6c:43:5d:81:5d:99:ea:ec:fa:50:61:fa:9f:29:
59:eb:85:cc:64:a7:c2:a1:15:7c:b1:17:8f:c8:55:a7:9e:8b:
62:68:18:06:b1:26:8d:d0:0f:b2:be:74:dc:6e:ae:de:5b:1a:
7c:90:54:c4:4e:26:14:a4:4d:eb:0f:28:66:ec:2e:68:37:26:
8b:3b:16:c3:e6:f3:14:63:0f:29:04:ec:98:24:05:ef:48:2e:
d9:7f:58:da:26:96:38:e4:56:41:3e:5a:50:9f:74:fd:8b:a7:
e0:a9:ac:6c:59:e8:97:ff:aa:90:f3:8c:40:4d:71:57:eb:a4:
c0:ae:27:48:d5:50:8f:29:da:11:b3:e6:dd:51:cc:a5:e0:1a:
2c:bc:29:0a:08:3c:58:fb:60:39:0e:0b:d3:4f:7e:0b:ab:64:
52:7e:3e:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 31 23:16:06 2024 by rpki-client on console-ams.rpki-client.org