Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336530303a3a2f34342d3438203d3e203136353039.roa
File: 326131313a323963303a336530303a3a2f34342d3438203d3e203136353039.roa (raw, json)
Hash identifier: KvqrqECjYX1vjwq2SqVmKDbJ7mnyhwuggW8yK3e4ET4=
Subject key identifier: A4:B5:47:3D:02:F9:9A:E6:E9:CB:E6:33:25:07:4D:2F:4D:8C:5A:63
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 3FEA2609CA161C9800D6CCBDEB536129A9708D46
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336530303a3a2f34342d3438203d3e203136353039.roa
Signing time: Sun 15 Oct 2023 20:12:41 +0000
ROA not before: Sun 15 Oct 2023 20:07:41 +0000
ROA not after: Sun 13 Oct 2024 20:12:41 +0000
asID: 16509
IP address blocks: 2a11:29c0:3e00::/44 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:ea:26:09:ca:16:1c:98:00:d6:cc:bd:eb:53:61:29:a9:70:8d:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Oct 15 20:07:41 2023 GMT
Not After : Oct 13 20:12:41 2024 GMT
Subject: CN=A4B5473D02F99AE6E9CBE63325074D2F4D8C5A63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:90:49:5a:fb:c4:ad:2a:aa:4a:84:51:56:cf:
d3:9c:06:5b:72:9e:a2:db:6d:1d:9f:1c:2f:fb:c2:
33:7c:8c:a6:3c:90:8a:28:09:b0:ca:68:a2:0a:dc:
c8:b6:0a:84:b3:79:4f:4f:c2:5e:9d:50:73:0e:c6:
27:7c:94:3f:08:c0:a3:66:f2:b5:31:75:70:ae:fc:
51:e7:bc:17:65:b0:e6:95:7c:3c:af:06:87:32:68:
f2:d6:6e:48:28:df:85:ec:50:b5:4f:5a:9a:a9:b3:
ea:79:4d:cc:4f:e6:fb:35:a3:61:cb:4a:4a:27:3a:
49:cd:aa:64:b6:40:e7:5a:ea:9f:9c:5c:f9:ad:e0:
3f:77:96:9c:e2:19:c7:a1:63:e9:ea:ad:44:2c:56:
9d:1c:ad:b4:7b:1a:0c:2f:47:f9:f1:e6:c5:5f:e3:
26:ab:52:27:27:19:5c:a4:cc:56:e5:30:d8:f4:cb:
db:65:1a:bd:6b:0f:83:4f:f1:31:f3:cc:b8:ca:e3:
c2:a5:37:d2:d3:77:a7:61:83:e4:0b:be:29:80:2d:
1a:63:81:d6:ae:ed:d5:f0:2e:92:4e:0a:c4:17:f0:
27:87:ff:a3:8c:27:bd:a1:ae:8b:a9:07:83:37:a0:
16:66:a7:21:44:1e:65:70:29:24:54:5d:39:30:f7:
1a:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:B5:47:3D:02:F9:9A:E6:E9:CB:E6:33:25:07:4D:2F:4D:8C:5A:63
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336530303a3a2f34342d3438203d3e203136353039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:3e00::/44
Signature Algorithm: sha256WithRSAEncryption
2e:c8:c8:a8:22:bc:1f:5e:db:46:f4:c9:79:83:bc:e4:94:08:
28:cf:d7:45:01:4c:73:11:c1:04:00:83:07:3d:0a:7d:03:10:
31:03:79:9a:92:f0:20:0b:2a:18:32:c5:7a:9c:4e:af:32:c4:
ee:3e:57:b3:91:65:87:fd:de:ae:d3:05:5c:47:eb:ed:f4:b2:
d5:0c:20:12:0c:23:52:3a:6c:db:6f:78:bd:1c:9f:fb:1f:23:
d4:38:e0:ea:f7:d6:ea:92:6b:a9:8f:d9:8b:0c:3f:7a:5c:ee:
8a:22:e0:2c:47:62:b8:4b:9c:ef:86:bd:00:fd:20:28:a1:f2:
a4:50:5a:29:30:31:b8:90:e3:55:11:81:8a:87:2c:96:6d:7b:
f7:71:ed:d5:7c:ed:ea:53:30:cf:e2:76:f0:35:e1:e3:7c:6a:
ee:2c:59:6f:ba:a0:03:2c:e1:cd:c3:30:9f:4f:ab:de:11:03:
40:9f:5b:b0:08:de:1e:89:b8:85:14:e3:ed:10:99:2f:1a:7e:
1b:a7:fa:03:2f:95:96:df:c8:29:5e:59:81:7b:35:22:2a:2c:
5a:a7:b8:1e:f1:c4:aa:8f:9e:10:fa:3c:7d:e1:f1:2b:a3:3d:
91:5a:85:4a:29:4d:f3:98:7e:8f:29:e3:ef:b8:d9:88:6c:3a:
25:3a:e0:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 11:40:06 2024 by rpki-client on console-ams.rpki-client.org