Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a33653a3a2f34382d3438203d3e20323135343031.roa
File: 326131313a323963303a33653a3a2f34382d3438203d3e20323135343031.roa (raw, json)
Hash identifier: qvBXB2PL0VjuKYkaz3+IuuULlPrBosnih4ivEh3P/II=
Subject key identifier: F6:B3:BC:83:06:56:83:DC:A2:60:E2:44:9F:1C:B0:51:AE:59:59:A3
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 19D28E5FF1955EBB4671BEBD5210A4E4B9AF1F73
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a33653a3a2f34382d3438203d3e20323135343031.roa
Signing time: Thu 29 Feb 2024 14:25:28 +0000
ROA not before: Thu 29 Feb 2024 14:20:28 +0000
ROA not after: Thu 27 Feb 2025 14:25:28 +0000
asID: 215401
IP address blocks: 2a11:29c0:3e::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 15:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:d2:8e:5f:f1:95:5e:bb:46:71:be:bd:52:10:a4:e4:b9:af:1f:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Feb 29 14:20:28 2024 GMT
Not After : Feb 27 14:25:28 2025 GMT
Subject: CN=F6B3BC83065683DCA260E2449F1CB051AE5959A3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:94:d4:a8:11:b7:4d:4b:cc:c7:55:c7:75:10:
09:69:c8:38:92:da:07:c0:af:ec:7e:b4:42:6a:cc:
34:3d:91:cc:1f:21:3e:87:8b:1b:f2:fd:38:60:60:
ff:b6:89:ef:cb:cd:5e:f7:9b:55:c1:8f:75:6e:08:
e9:0f:42:2d:40:c6:e9:cf:34:60:2f:dc:4c:95:0d:
5d:49:49:d9:d6:8a:4c:58:fe:53:bd:a1:d8:31:9e:
80:12:df:b6:b0:c4:49:a6:79:19:6b:ec:d0:10:0d:
13:91:39:e7:50:f5:2b:c4:9b:a4:7b:b9:4b:99:09:
2c:b3:19:5c:90:a0:0e:40:93:d3:ad:fd:40:73:28:
e9:fe:47:9e:5d:bb:07:e9:9c:39:f6:ff:83:48:dc:
29:7b:51:cb:02:30:6e:81:dd:a4:08:13:9d:6d:c2:
c5:d2:9c:56:36:0a:ae:23:ad:f6:07:a2:4e:6c:8a:
f0:f0:df:c6:e5:9a:0d:84:cf:aa:93:5e:60:90:1b:
b2:60:56:53:cc:83:03:56:04:e8:09:4a:ea:74:d1:
fb:34:4a:30:38:c5:64:40:61:8e:d8:23:04:dd:9d:
f0:38:c7:8e:e2:a9:bb:e3:c3:36:82:15:56:3a:94:
6d:0c:49:87:79:80:15:8a:de:c3:17:53:5d:4a:53:
0a:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:B3:BC:83:06:56:83:DC:A2:60:E2:44:9F:1C:B0:51:AE:59:59:A3
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a33653a3a2f34382d3438203d3e20323135343031.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:3e::/48
Signature Algorithm: sha256WithRSAEncryption
38:5e:e5:89:fe:2c:f0:5f:46:02:b2:b2:bf:ff:a8:5d:fc:a7:
42:2d:e1:22:68:fb:6a:51:f4:4f:fb:7d:21:48:81:d3:f8:d8:
40:19:13:eb:70:c0:6b:6a:d9:4c:64:61:a3:e7:f8:a2:42:b1:
c0:be:ec:33:64:3f:80:f5:7f:5e:2d:59:fe:ff:60:c1:bc:a0:
5e:2b:fa:f2:40:95:76:e0:e4:c1:c7:8a:17:f5:a8:06:2e:69:
ba:df:0a:cc:92:39:fa:10:5a:61:60:d0:59:db:bc:c1:16:e1:
e5:fb:eb:0a:ca:76:05:76:71:71:96:86:74:12:7b:c8:1b:2a:
9c:bf:8c:a0:5e:1f:dc:be:40:28:0c:76:76:a7:0f:5c:ec:fe:
b2:5e:2b:63:3c:4c:1a:ce:44:f5:58:e7:3b:59:06:77:65:7c:
63:29:f6:56:9f:15:df:80:03:f4:c7:27:7f:9e:b8:d5:2e:79:
8a:d2:0b:45:86:31:56:f2:f8:81:1f:b6:3e:47:e7:17:01:e3:
cf:8c:4e:42:ae:cb:93:ec:2f:4f:0d:06:6b:c7:6b:40:1b:cd:
b7:d7:ac:01:e8:41:97:66:d6:ec:68:45:31:ca:e2:c1:33:7b:
d7:70:85:4b:b3:f2:b6:77:ce:29:37:85:cc:f5:83:c6:18:c8:
3b:2d:33:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 23:43:06 2024 by rpki-client on console-fra.rpki-client.org