Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336466643a3a2f34382d3438203d3e20323036303538.roa
File: 326131313a323963303a336466643a3a2f34382d3438203d3e20323036303538.roa (raw, json)
Hash identifier: d0ZcDZ54CDY4ESm3pSDCvdW6yFj1cJca8wAOVjEkRVw=
Subject key identifier: 8C:4B:11:F9:6C:46:2C:A5:39:F9:17:A0:E3:C5:63:E0:2A:5F:E1:F5
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 391D77BB14BCF7D406340FE31F5FF3AAC738F6FF
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336466643a3a2f34382d3438203d3e20323036303538.roa
Signing time: Wed 19 Jul 2023 13:30:07 +0000
ROA not before: Wed 19 Jul 2023 13:25:07 +0000
ROA not after: Wed 17 Jul 2024 13:30:07 +0000
asID: 206058
IP address blocks: 2a11:29c0:3dfd::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Jun 2024 08:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:1d:77:bb:14:bc:f7:d4:06:34:0f:e3:1f:5f:f3:aa:c7:38:f6:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Jul 19 13:25:07 2023 GMT
Not After : Jul 17 13:30:07 2024 GMT
Subject: CN=8C4B11F96C462CA539F917A0E3C563E02A5FE1F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:cb:8e:bd:f2:c2:72:88:a8:98:fc:12:17:f0:
d0:58:e4:e9:1f:9e:9d:73:bb:f8:aa:76:7a:57:9a:
fd:a6:47:fb:eb:cd:31:ef:f9:d7:bb:03:35:d8:81:
22:d6:a3:98:8d:92:d1:5c:94:58:6f:8e:59:f6:c9:
e1:3d:06:72:4a:2c:61:b0:a6:17:92:19:42:83:56:
98:72:20:1b:06:9c:f5:8c:f5:70:28:52:57:4c:ee:
80:4a:a5:5e:3e:79:08:f1:b2:ec:4b:e3:8f:3c:11:
67:af:07:1a:a6:01:9e:51:1b:d2:7c:7f:17:62:c2:
41:6d:37:78:19:b3:e1:32:58:34:7d:d0:7d:19:d3:
29:3e:c4:0c:25:7d:0b:12:39:cf:a2:d2:ad:de:51:
15:0f:19:ea:d0:cf:08:9a:f7:54:c0:dc:a9:ae:47:
d0:62:5f:a5:2b:cd:bd:17:d1:62:f7:ef:44:d3:a0:
80:df:b5:04:af:22:b0:0c:ea:c2:d7:21:fe:ea:83:
a4:7a:0e:f1:cc:d7:20:0c:26:86:03:08:63:e7:10:
c7:01:d4:a1:5f:cc:5a:51:bf:af:ee:a1:8b:17:bb:
00:fc:e4:d3:0e:8a:a4:33:5d:16:6f:a4:74:11:41:
b3:91:01:78:49:32:63:9e:f1:82:ba:a1:aa:fa:9b:
25:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:4B:11:F9:6C:46:2C:A5:39:F9:17:A0:E3:C5:63:E0:2A:5F:E1:F5
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336466643a3a2f34382d3438203d3e20323036303538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:3dfd::/48
Signature Algorithm: sha256WithRSAEncryption
6f:30:a8:e1:9f:33:03:49:dc:4f:63:8b:19:a5:c4:fb:ee:03:
89:fb:4a:26:b8:2e:af:cf:ea:53:9e:b0:b0:b5:36:73:ec:ca:
00:b4:c1:ba:80:df:e3:1a:43:aa:25:03:40:d1:dc:3a:81:38:
fd:39:46:0d:f6:08:46:08:12:96:46:16:43:15:f9:8e:04:f0:
dd:53:12:16:88:c6:f3:17:ab:46:9f:ef:77:ef:9a:47:e8:06:
39:1c:89:f1:de:c5:5d:0f:90:9f:6a:cb:24:10:4a:22:60:8d:
73:cc:6b:eb:27:0d:c8:5a:6b:5a:8d:9b:36:6f:b7:52:9c:80:
6a:24:3c:c8:57:f6:43:49:71:a7:de:07:53:d1:90:e2:8b:8e:
0a:b7:99:a1:3c:8f:08:c2:15:34:89:14:62:03:c3:cf:c7:c3:
d4:52:62:14:61:bf:e3:b3:78:48:6e:83:f0:03:c9:dc:b1:36:
34:c6:64:74:1d:83:79:a3:87:d8:0a:cb:ed:bc:d0:55:1e:e3:
78:a5:72:44:d9:34:d0:ab:0b:e0:35:a9:00:55:ea:ab:8a:3a:
26:0e:c4:3f:36:de:4e:df:6a:a2:ea:4e:e2:20:10:30:61:7a:
6f:9b:6c:69:6c:3c:84:83:ee:9d:fb:25:2d:e2:66:db:8b:c3:
5c:41:ad:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 13 16:33:11 2024 by rpki-client on console-ams.rpki-client.org