Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336530303a3a2f34342d3438203d3e20323136313934.roa
File: 326131313a323963303a336530303a3a2f34342d3438203d3e20323136313934.roa (raw, json)
Hash identifier: MwHE68ilV6NTZ7ES+ULb/Wb2OuiiaIZIbT94Sq1LyPo=
Subject key identifier: 08:3F:19:14:81:34:92:7D:0E:21:4E:0B:F0:3A:63:D4:A1:F3:24:41
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 26AB5C2D9EF685AB97B6BE13B79F209DFBB51189
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336530303a3a2f34342d3438203d3e20323136313934.roa
Signing time: Sun 15 Sep 2024 21:01:30 +0000
ROA not before: Sun 15 Sep 2024 20:56:30 +0000
ROA not after: Sun 14 Sep 2025 21:01:30 +0000
asID: 216194
IP address blocks: 2a11:29c0:3e00::/44 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:ab:5c:2d:9e:f6:85:ab:97:b6:be:13:b7:9f:20:9d:fb:b5:11:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Sep 15 20:56:30 2024 GMT
Not After : Sep 14 21:01:30 2025 GMT
Subject: CN=083F19148134927D0E214E0BF03A63D4A1F32441
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:0c:63:8c:18:e6:55:0c:0f:c5:77:2c:58:4b:
f2:3d:1a:0e:89:d8:38:60:0a:e3:3d:0a:0b:0d:f0:
6f:b4:1f:68:91:48:ed:3f:82:0c:9b:54:22:47:22:
89:bf:06:af:68:4b:0d:60:cc:b6:98:e4:05:1f:48:
ec:65:36:cb:71:0e:8f:c0:53:04:a3:5c:ce:ca:b5:
37:be:ac:57:46:aa:39:b4:06:ae:43:aa:bd:08:23:
c4:1e:12:01:85:e6:41:99:61:70:88:da:c0:42:c2:
3b:48:04:e9:ac:6e:cf:fa:70:0a:c7:b3:7f:41:93:
5f:73:10:19:53:72:fd:2e:40:43:c9:8e:e9:00:83:
d5:52:a0:f6:e4:26:66:87:e7:02:9a:9c:87:49:bc:
ca:f3:b3:e2:f8:85:02:6c:e0:25:fc:13:d2:8f:67:
13:81:2f:93:d3:b7:ec:90:b2:83:c5:9d:62:17:ab:
0e:60:76:15:93:ed:49:8c:d0:45:32:71:a7:48:e1:
5a:9f:09:fc:31:de:bb:9b:b4:8e:8f:e4:a1:19:b3:
bb:b0:c2:6f:d7:78:77:9f:78:05:dc:d2:b2:8f:4b:
10:af:c8:77:a8:b3:3f:47:41:68:22:6c:06:4a:bb:
2f:2c:92:6a:19:a8:a4:24:bd:f8:18:18:32:32:57:
82:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:3F:19:14:81:34:92:7D:0E:21:4E:0B:F0:3A:63:D4:A1:F3:24:41
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a336530303a3a2f34342d3438203d3e20323136313934.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:3e00::/44
Signature Algorithm: sha256WithRSAEncryption
8e:d6:d0:f7:60:c2:2c:eb:ff:41:c9:e5:5c:28:b3:13:93:05:
cb:84:bc:e5:01:5c:c5:b5:3e:47:98:2e:83:66:3a:48:05:b9:
6b:e4:96:b8:91:69:3b:88:44:d9:54:f3:43:6a:7c:ff:e1:35:
37:ce:31:8c:60:45:8b:ac:f3:95:ce:86:a9:ce:fb:3c:de:ad:
71:0c:76:3d:76:17:48:10:d0:41:e1:7d:18:9f:ff:c2:a9:0b:
33:55:30:03:2a:55:3a:b4:ed:5b:78:d3:35:c7:d2:78:39:6f:
0e:58:06:a4:d1:04:56:50:ed:be:d4:b2:80:22:0d:7b:43:96:
77:7f:78:76:3a:09:0c:bc:fd:b3:1c:d8:34:e1:5a:d4:62:6b:
03:ce:1a:29:d5:4c:78:2f:9e:ee:a7:92:c5:c3:eb:51:b6:d4:
f2:5a:43:7b:02:c0:0f:a9:24:0f:65:0e:0d:d4:c3:20:12:81:
eb:98:72:68:de:b2:64:f8:46:89:de:00:80:0e:83:d5:c5:34:
49:16:0d:a5:78:a7:74:b8:c4:be:cd:28:38:05:2f:f9:e1:dd:
7b:84:a4:4b:94:b0:d4:cc:78:7f:e8:7c:13:da:d1:75:a7:51:
57:81:db:b5:06:58:6d:39:21:e0:ec:3b:d0:ee:b1:05:a8:7c:
4e:77:1b:d8
-----BEGIN CERTIFICATE-----
MIIFQDCCBCigAwIBAgIUJqtcLZ72hauXtr4Tt58gnfu1EYkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZTk2ZDg1OTk2ZTkzNTRkMTAwNWU0NGM3ODFkMzhhZGNm
MTA4Mjg3MzAeFw0yNDA5MTUyMDU2MzBaFw0yNTA5MTQyMTAxMzBaMDMxMTAvBgNV
BAMTKDA4M0YxOTE0ODEzNDkyN0QwRTIxNEUwQkYwM0E2M0Q0QTFGMzI0NDEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6DGOMGOZVDA/FdyxYS/I9Gg6J
2DhgCuM9CgsN8G+0H2iRSO0/ggybVCJHIom/Bq9oSw1gzLaY5AUfSOxlNstxDo/A
UwSjXM7KtTe+rFdGqjm0Bq5Dqr0II8QeEgGF5kGZYXCI2sBCwjtIBOmsbs/6cArH
s39Bk19zEBlTcv0uQEPJjukAg9VSoPbkJmaH5wKanIdJvMrzs+L4hQJs4CX8E9KP
ZxOBL5PTt+yQsoPFnWIXqw5gdhWT7UmM0EUycadI4VqfCfwx3rubtI6P5KEZs7uw
wm/XeHefeAXc0rKPSxCvyHeosz9HQWgibAZKuy8skmoZqKQkvfgYGDIyV4IPAgMB
AAGjggJKMIICRjAdBgNVHQ4EFgQUCD8ZFIE0kn0OIU4L8Dpj1KHzJEEwHwYDVR0j
BBgwFoAU6W2FmW6TVNEAXkTHgdOK3PEIKHMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvODExMTViYzYtMTBmNi00YWYzLWJhMDktOGI2ODdhNTZm
YmY1LzAvRTk2RDg1OTk2RTkzNTREMTAwNUU0NEM3ODFEMzhBRENGMTA4Mjg3My5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzZXMkZtVzZUVk5FQVhrVEhnZE9LM1BF
SUtITS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvODExMTViYzYt
MTBmNi00YWYzLWJhMDktOGI2ODdhNTZmYmY1LzAvMzI2MTMxMzEzYTMyMzk2MzMw
M2EzMzY1MzAzMDNhM2EyZjM0MzQyZDM0MzgyMDNkM2UyMDMyMzEzNjMxMzkzNC5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw
DwQCAAIwCQMHBCoRKcA+ADANBgkqhkiG9w0BAQsFAAOCAQEAjtbQ92DCLOv/Qcnl
XCizE5MFy4S85QFcxbU+R5gug2Y6SAW5a+SWuJFpO4hE2VTzQ2p8/+E1N84xjGBF
i6zzlc6Gqc77PN6tcQx2PXYXSBDQQeF9GJ//wqkLM1UwAypVOrTtW3jTNcfSeDlv
DlgGpNEEVlDtvtSygCINe0OWd394djoJDLz9sxzYNOFa1GJrA84aKdVMeC+e7qeS
xcPrUbbU8lpDewLAD6kkD2UODdTDIBKB65hyaN6yZPhGid4AgA6D1cU0SRYNpXin
dLjEvs0oOAUv+eHde4SkS5Sw1Mx4f+h8E9rRdadRV4HbtQZYbTkh4Ow70O6xBah8
Tncb2A==
-----END CERTIFICATE-----
Generated at Thu Nov 21 18:06:13 2024 by rpki-client on console-fra.rpki-client.org