Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336530303a3a2f34342d3438203d3e203134363138.roa
File: 326131313a323963303a336530303a3a2f34342d3438203d3e203134363138.roa (raw, json)
Hash identifier: U/4yuXzKInj8iHuIgnDzRjZVKM0lux6iDW3cTx8R8J4=
Subject key identifier: 85:58:BE:2B:C2:87:28:D3:0C:62:99:A4:AA:E4:81:09:B8:3A:FC:F2
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 089078BB4365A4E6A74D5CF4168EB04F863FD667
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336530303a3a2f34342d3438203d3e203134363138.roa
Signing time: Sun 15 Oct 2023 20:13:37 +0000
ROA not before: Sun 15 Oct 2023 20:08:37 +0000
ROA not after: Sun 13 Oct 2024 20:13:37 +0000
asID: 14618
IP address blocks: 2a11:29c0:3e00::/44 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 02 May 2024 14:46:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:90:78:bb:43:65:a4:e6:a7:4d:5c:f4:16:8e:b0:4f:86:3f:d6:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Oct 15 20:08:37 2023 GMT
Not After : Oct 13 20:13:37 2024 GMT
Subject: CN=8558BE2BC28728D30C6299A4AAE48109B83AFCF2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:a8:63:e1:8e:83:b1:67:c1:e4:07:59:ed:42:
29:ea:a1:b1:02:75:35:a7:f3:57:19:84:ad:05:bc:
a7:cf:12:b8:bd:be:37:67:f3:85:4f:fa:e7:1e:b0:
44:ac:f2:69:77:4c:44:5b:8a:1f:a2:de:86:06:a4:
1e:d0:05:ad:54:79:9e:c8:63:eb:9d:d8:d0:80:d9:
b2:e8:ea:46:64:de:2d:17:b6:b3:e1:a7:50:2d:68:
26:f4:53:cd:a2:b2:f5:fa:15:86:69:eb:4c:a4:6e:
6e:2b:d1:1c:dc:1a:a0:94:30:8a:1d:9a:89:5d:f1:
2a:2c:a8:6e:4f:85:0b:18:5e:c4:82:46:93:15:50:
60:75:d9:30:38:f2:04:1c:25:c9:5a:db:43:fe:5f:
ff:6b:4f:04:05:50:f9:e4:0f:55:40:fd:32:f9:b5:
6a:ab:2a:52:7d:c3:3e:bb:03:74:d3:b0:0e:a7:e1:
db:a7:e6:b6:40:30:32:72:b2:3f:40:33:2a:a1:e0:
6b:18:b4:38:b2:d3:86:bb:b5:97:59:ec:88:3f:32:
94:16:8b:3f:16:a2:4f:dd:80:a3:da:23:ce:99:10:
eb:08:d1:e2:c0:05:b4:ad:48:3d:c2:6a:b3:33:36:
dc:83:fd:c9:fe:b2:38:50:2c:60:0e:c1:b1:ff:ee:
1f:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:58:BE:2B:C2:87:28:D3:0C:62:99:A4:AA:E4:81:09:B8:3A:FC:F2
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336530303a3a2f34342d3438203d3e203134363138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:3e00::/44
Signature Algorithm: sha256WithRSAEncryption
31:08:97:dc:e3:cb:a1:fe:3c:63:d6:bb:c0:ed:29:25:df:3c:
0d:12:4f:76:c8:9a:ed:06:39:d6:8a:22:9e:05:c1:ff:13:e7:
e5:25:b4:4b:1c:74:35:25:22:b4:91:cb:1b:50:cd:46:4c:a9:
51:3b:75:7f:5d:b5:26:e2:3a:19:52:e7:c7:5d:cf:d7:ee:4a:
f6:fb:0b:26:b3:b2:90:33:87:10:e9:fc:8d:df:9a:cb:ed:5f:
74:1e:50:89:ad:01:c2:44:b0:e3:57:45:ec:60:6a:3c:9b:9d:
a4:b5:9d:70:84:d8:95:ff:b0:84:a5:87:6a:5d:5e:86:42:74:
b4:9c:85:ab:84:ab:cb:31:bc:c0:9c:0d:fa:59:72:7c:e1:e7:
d5:25:90:20:86:c8:ee:bd:8d:f5:fa:b2:6e:b1:32:a4:35:a4:
8f:8c:37:9d:0d:48:80:a1:81:b6:ce:19:dc:69:1c:b8:4a:f2:
70:98:60:93:02:50:b1:ca:70:43:da:4e:2b:40:97:42:ac:fd:
63:7d:3a:68:ed:7c:f5:c1:f8:c7:1a:1b:55:e3:17:73:14:d0:
cc:22:2e:ae:26:7a:f8:40:89:c5:63:ad:95:ef:50:54:50:e7:
46:12:3f:6d:dc:f0:68:e8:cd:e9:c1:26:b3:f5:fd:ff:73:68:
40:10:b0:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 17:21:54 2024 by rpki-client on console-ams.rpki-client.org