Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336530303a3a2f34342d3438203d3e203134363138.roa
File: 326131313a323963303a336530303a3a2f34342d3438203d3e203134363138.roa (raw, json)
Hash identifier: ANWb2hcSCK6bqxWVXHpbthjG169V/VkGlcAzJMcLlO8=
Subject key identifier: F7:D8:80:7A:20:4D:6B:9C:CB:90:DD:DD:45:FA:52:FE:82:48:65:96
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 450D10469863BB61FB8BDCAC4440DC4A7C77B809
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336530303a3a2f34342d3438203d3e203134363138.roa
Signing time: Sun 15 Sep 2024 21:01:30 +0000
ROA not before: Sun 15 Sep 2024 20:56:30 +0000
ROA not after: Sun 14 Sep 2025 21:01:30 +0000
asID: 14618
IP address blocks: 2a11:29c0:3e00::/44 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:0d:10:46:98:63:bb:61:fb:8b:dc:ac:44:40:dc:4a:7c:77:b8:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Sep 15 20:56:30 2024 GMT
Not After : Sep 14 21:01:30 2025 GMT
Subject: CN=F7D8807A204D6B9CCB90DDDD45FA52FE82486596
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:4e:6b:92:e4:61:03:36:58:93:3d:62:ac:68:
a1:80:bd:c3:bd:0b:53:f0:24:d7:2c:26:68:39:cb:
9d:e8:9a:e0:17:e4:19:12:bc:4a:7f:0f:1f:99:5d:
e0:64:20:bc:dc:7a:dd:87:79:2f:cc:20:db:42:93:
5b:83:58:03:29:e6:bc:bf:8c:5f:3b:f7:a8:3e:1f:
f4:0b:32:48:a3:6a:84:22:a0:37:a9:39:2d:e7:a3:
68:ba:4b:e4:2e:21:93:4a:65:fd:f8:ee:1f:29:7e:
1c:02:c1:a3:46:b2:b3:39:69:b1:33:a4:af:1f:ce:
60:9b:d9:d5:6c:d7:e8:6a:01:07:06:d4:97:f8:13:
77:7d:5b:13:19:bf:fd:70:16:64:83:9d:b1:61:46:
d9:cc:9e:a1:b4:e9:ac:26:aa:1c:91:ab:f4:d8:d5:
60:01:a6:d4:f6:36:5f:94:03:a8:ea:88:34:df:53:
e4:a5:56:26:c8:7e:28:e2:8a:9d:26:9e:2d:f4:47:
9f:a2:17:dc:9f:c6:08:8e:6d:4c:28:e5:aa:5e:d3:
b7:66:6d:ff:53:69:88:a9:ce:f4:63:dc:5d:db:94:
28:d6:d1:49:4e:22:9b:95:3c:09:43:2c:33:95:71:
3f:36:f9:0b:f1:7d:24:31:f6:f5:ec:b3:a1:26:fc:
0e:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:D8:80:7A:20:4D:6B:9C:CB:90:DD:DD:45:FA:52:FE:82:48:65:96
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336530303a3a2f34342d3438203d3e203134363138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:3e00::/44
Signature Algorithm: sha256WithRSAEncryption
70:20:7c:a4:1a:39:84:6a:92:c2:65:d7:ea:5b:f2:75:a2:28:
a2:71:57:81:97:53:47:88:3d:d7:bb:c6:3f:50:ea:16:d4:ff:
5a:e0:b9:59:84:a8:d3:0c:df:ee:7c:b2:21:42:06:85:08:a5:
75:71:ae:b0:b8:69:92:ad:76:c3:d7:c1:5f:1f:5c:b5:d0:f3:
8c:4d:63:03:f5:03:32:da:ba:72:62:1c:60:c5:08:50:64:23:
80:8a:3e:24:74:3c:2a:7f:c6:c4:f5:b1:e5:28:a9:47:d0:40:
97:01:ed:30:11:29:5b:96:a2:04:70:2e:dd:fb:c8:e7:84:9c:
a8:ff:d0:ac:ef:5f:f7:7e:00:f9:51:e8:9a:c6:a7:c3:90:92:
91:94:f5:01:dc:24:ac:71:3b:22:a5:50:ce:bd:96:d1:3d:fa:
c7:93:1c:c1:de:9a:02:84:a3:af:cc:0e:3b:4c:9b:8b:b6:4b:
ae:7b:39:85:d9:75:00:51:3d:82:9e:9c:a4:90:06:51:b3:3c:
92:f1:f1:29:0e:d4:9c:27:f1:c6:6d:b7:2c:73:35:25:3d:c6:
5b:6f:27:83:19:a2:a2:ec:ed:9e:c3:85:43:db:39:45:39:c2:
f6:66:70:86:7a:c8:d8:f9:c6:86:36:d0:07:6f:2f:c4:7c:6c:
eb:71:ca:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 18:06:13 2024 by rpki-client on console-fra.rpki-client.org