Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a34323a3a2f34382d3438203d3e20323135353231.roa
File: 326131313a323963303a34323a3a2f34382d3438203d3e20323135353231.roa (raw, json)
Hash identifier: dBC1oLgOs9p8orVRXcxp/B44IxNpXjvu9iBSwBTZFCo=
Subject key identifier: BF:13:CC:68:36:F8:8F:53:01:AA:B6:9B:4C:B6:F5:A4:7E:8C:CA:36
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 7A1B917C74DA4D756DA5EE1EF8461E7EDA409A89
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a34323a3a2f34382d3438203d3e20323135353231.roa
Signing time: Wed 21 Feb 2024 09:35:14 +0000
ROA not before: Wed 21 Feb 2024 09:30:14 +0000
ROA not after: Wed 19 Feb 2025 09:35:14 +0000
asID: 215521
IP address blocks: 2a11:29c0:42::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:1b:91:7c:74:da:4d:75:6d:a5:ee:1e:f8:46:1e:7e:da:40:9a:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Feb 21 09:30:14 2024 GMT
Not After : Feb 19 09:35:14 2025 GMT
Subject: CN=BF13CC6836F88F5301AAB69B4CB6F5A47E8CCA36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:10:d2:a0:75:7f:b8:10:8b:aa:87:b0:08:53:
83:1a:db:0a:15:75:8a:15:a4:09:b1:e6:c3:76:df:
bb:0c:52:f7:33:f4:f4:d3:4a:20:0d:1b:77:05:9d:
f9:f7:43:61:af:a1:74:d0:38:b2:af:4f:6e:0e:52:
b0:d1:47:d0:12:92:99:19:26:bf:fe:14:9e:a4:98:
2c:c2:4d:cb:46:38:d5:a2:20:5b:86:5e:f6:80:96:
ed:45:d0:85:42:f9:0c:39:5b:e1:76:25:d0:b9:43:
c3:13:c5:e8:1a:11:03:5a:20:06:48:39:7f:77:00:
b7:05:14:14:2b:d6:18:eb:3e:e7:fd:89:b9:a6:38:
68:d4:66:ef:fc:37:6d:cf:5f:6f:2c:ee:e4:aa:24:
a8:82:24:7c:51:2f:71:8d:52:36:e1:0c:26:cd:c9:
38:c0:6e:7e:c4:cd:68:37:0a:92:62:29:bd:5d:bf:
d0:80:1e:b6:fa:da:e7:f1:26:1e:82:a2:44:4c:3e:
c5:31:93:fa:c1:b0:33:c8:d5:c1:98:9f:02:6b:1f:
f8:15:48:74:7f:ad:4a:55:5d:88:ba:52:1d:57:3c:
6d:e3:a6:57:e7:fd:2f:54:9f:5d:a1:dd:0a:ae:f1:
4f:24:7c:ba:09:58:ca:62:77:8f:a8:46:4f:da:83:
c8:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:13:CC:68:36:F8:8F:53:01:AA:B6:9B:4C:B6:F5:A4:7E:8C:CA:36
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a34323a3a2f34382d3438203d3e20323135353231.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:42::/48
Signature Algorithm: sha256WithRSAEncryption
7b:bf:79:3a:27:49:ea:1e:05:76:78:ac:71:16:13:a5:ba:4a:
ae:17:cd:39:9c:f7:ac:97:42:bb:2f:93:58:81:2c:20:83:ce:
e5:01:af:dd:37:fe:de:a4:f0:12:d4:fd:7b:58:37:a6:66:3c:
b6:6b:a9:df:21:e9:42:e6:b8:58:b6:e9:27:59:f8:7e:69:b4:
dd:1f:a0:1f:32:4b:ae:0c:ac:6d:78:03:79:40:6d:ba:f3:06:
da:18:2f:63:d7:7e:2d:d9:05:f1:7c:91:32:c4:24:a9:bf:14:
78:a4:63:5a:0b:87:6a:49:2b:9d:7c:bd:88:11:53:57:c7:75:
43:09:b3:5f:3f:62:a4:27:fc:e3:69:c4:24:4d:7d:b2:cb:1b:
ec:84:0e:aa:e9:0d:84:c4:1f:b0:54:bd:6e:29:2d:02:91:18:
bd:c3:ae:03:f6:2f:e8:18:c2:7e:47:c4:77:f6:3e:7d:a8:e7:
2b:3d:08:26:32:92:bf:ad:4d:fe:88:8a:03:d6:33:4d:3d:26:
cd:34:cf:78:a4:db:81:c7:27:cf:67:56:1a:d2:34:f8:0a:d0:
33:a2:4b:9b:e7:b9:d6:34:9f:0c:6f:ec:fb:88:96:f3:e9:a4:
b6:26:0f:4c:d2:c7:c1:5b:b4:7d:33:95:71:51:05:d8:a7:29:
bb:21:2d:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 18:06:13 2024 by rpki-client on console-fra.rpki-client.org