Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336530303a3a2f34342d3438203d3e20323136313934.roa
File: 326131313a323963303a336530303a3a2f34342d3438203d3e20323136313934.roa (raw, json)
Hash identifier: Fs5pwo9j5WQdPn31kWfZLrzzlh3jO08YtKp2Egchzz0=
Subject key identifier: 95:EF:F2:AB:BD:18:DB:7C:A2:65:50:AC:FA:DB:84:40:78:D1:4D:CE
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 099F900725D9CB89F8A8750A1FACAD3947B423AE
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336530303a3a2f34342d3438203d3e20323136313934.roa
Signing time: Sun 15 Oct 2023 20:12:04 +0000
ROA not before: Sun 15 Oct 2023 20:07:04 +0000
ROA not after: Sun 13 Oct 2024 20:12:04 +0000
asID: 216194
IP address blocks: 2a11:29c0:3e00::/44 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Jun 2024 16:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:9f:90:07:25:d9:cb:89:f8:a8:75:0a:1f:ac:ad:39:47:b4:23:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Oct 15 20:07:04 2023 GMT
Not After : Oct 13 20:12:04 2024 GMT
Subject: CN=95EFF2ABBD18DB7CA26550ACFADB844078D14DCE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:7e:af:56:10:34:c0:bb:f1:9f:80:b5:23:62:
3a:01:18:c0:79:b6:c6:a1:b1:48:35:e5:f8:6b:b7:
d6:43:f7:3b:1b:b0:d0:d9:8b:27:32:46:e0:af:0a:
ac:71:c8:b8:b8:21:9e:c2:49:a1:ef:71:c3:7f:95:
2c:c2:b5:21:72:c5:60:8e:d7:fa:05:a5:81:60:73:
9a:09:be:e1:94:11:31:5d:80:b1:5d:69:82:0b:e7:
00:25:20:1f:df:3d:c3:d7:de:58:69:5e:de:e6:ad:
cb:0e:59:2f:81:bf:51:cc:b0:e6:62:bd:87:6a:dc:
9b:ba:51:3b:df:d1:5f:44:e6:4c:98:3a:c9:85:0b:
09:06:53:07:a2:1e:7c:f5:d1:4f:a1:53:9b:d5:a8:
75:59:cd:ed:e1:0e:35:80:dc:56:de:89:af:4d:0c:
89:d2:3f:8a:24:85:2f:70:41:0f:e5:90:40:a0:a7:
2c:11:b7:9b:5a:4e:ad:2a:f1:4f:88:5d:36:a4:4c:
66:45:89:b3:f8:20:e8:57:93:aa:47:7d:f5:a6:33:
f2:22:4b:8e:32:6c:92:83:c1:b9:23:b7:c1:9c:22:
35:4c:01:db:d4:a3:62:96:c2:0e:fb:02:7a:65:db:
13:56:8b:ed:81:a8:9e:ec:aa:e6:cf:f2:98:2e:99:
45:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:EF:F2:AB:BD:18:DB:7C:A2:65:50:AC:FA:DB:84:40:78:D1:4D:CE
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336530303a3a2f34342d3438203d3e20323136313934.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:3e00::/44
Signature Algorithm: sha256WithRSAEncryption
90:29:23:84:45:4c:c1:40:28:b9:5b:94:c0:4c:1d:9c:05:7f:
f7:5e:7d:17:04:96:9d:57:a2:78:13:01:90:e6:29:86:ed:1e:
c1:69:d9:01:bf:93:8b:95:70:d8:71:21:c9:fe:9f:17:1f:8f:
ce:bb:e6:13:d8:83:f5:9f:31:41:35:c2:23:94:93:52:dd:69:
ba:3c:36:5c:52:b0:49:ee:3b:c2:1c:29:5f:6e:e2:24:c2:87:
db:fb:d7:06:5f:89:52:95:7e:85:c5:57:60:9b:7e:a7:56:bd:
2c:a2:06:29:37:0d:3e:7e:ac:b9:eb:59:97:b7:ac:6a:ec:b8:
f8:1c:ff:86:85:ff:a4:41:14:68:17:ab:5d:96:ca:aa:3a:8a:
53:a6:17:64:5b:e7:9c:8d:05:a8:e2:d5:c3:72:13:7e:1d:ce:
4e:09:55:3d:ce:76:5c:27:63:76:f3:34:00:77:db:66:04:b3:
c3:58:63:cb:5e:17:e3:b4:e9:8e:99:c0:5b:11:1d:ad:81:cb:
b9:c4:df:0d:f5:fd:b2:6e:d5:d6:f3:94:7b:a5:ab:2f:30:17:
81:5b:9a:86:92:3c:56:f1:99:f0:75:c0:c0:12:86:36:01:e3:
69:d7:18:c8:ae:a3:7c:d3:b4:f1:3f:15:cc:ff:76:c5:0a:d9:
c9:d2:19:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 31 23:16:06 2024 by rpki-client on console-ams.rpki-client.org