Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a346430303a3a2f34302d3438203d3e20323135363338.roa
File: 326131313a323963303a346430303a3a2f34302d3438203d3e20323135363338.roa (raw, json)
Hash identifier: 1AHtw/ShtDhdL5FiTC82WKaYkJqPxkMFEcBWbERBBTY=
Subject key identifier: 47:14:B9:31:75:FE:3D:D8:52:0F:C5:49:42:71:1B:34:C9:75:73:38
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 0C18C7D64809846E28E700494F188F8EC1F268FA
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a346430303a3a2f34302d3438203d3e20323135363338.roa
Signing time: Tue 17 Sep 2024 20:20:07 +0000
ROA not before: Tue 17 Sep 2024 20:15:07 +0000
ROA not after: Tue 16 Sep 2025 20:20:07 +0000
asID: 215638
IP address blocks: 2a11:29c0:4d00::/40 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:18:c7:d6:48:09:84:6e:28:e7:00:49:4f:18:8f:8e:c1:f2:68:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Sep 17 20:15:07 2024 GMT
Not After : Sep 16 20:20:07 2025 GMT
Subject: CN=4714B93175FE3DD8520FC54942711B34C9757338
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:95:4e:6a:4e:db:8f:b9:5f:c7:80:50:8a:af:
05:1c:15:5f:43:ac:15:3a:2f:46:99:61:3e:4c:da:
51:4a:15:dd:6a:b6:ac:2c:5b:c4:71:91:ec:ff:a8:
38:28:25:4f:fb:e1:7e:dc:dd:eb:01:47:eb:88:32:
a3:f6:5c:38:2e:64:77:69:a1:4d:1a:fa:36:66:9e:
3c:0a:dc:ab:44:ce:27:6a:ea:24:19:3a:2f:50:58:
f5:1f:a6:34:0f:a7:12:fc:d4:4b:3e:76:c2:72:14:
58:ed:21:04:1d:c7:fd:0a:b6:24:55:d7:b6:8e:ad:
6c:26:68:dd:ea:cd:4f:2a:9a:c3:d9:0d:25:9a:99:
d7:18:0d:99:a1:56:f1:71:25:92:76:ea:f2:f9:aa:
1d:3b:41:71:c7:a4:1e:3b:f7:05:69:7a:0e:11:61:
e4:b4:b9:7e:b9:5e:26:8c:2d:92:5b:7e:01:57:75:
81:91:4d:b7:57:7a:ab:59:da:35:e6:0a:3d:68:e6:
64:4b:b5:e9:27:d4:db:88:d1:6a:65:74:11:fa:7e:
e1:7a:a5:47:77:9c:0b:02:20:83:c3:78:e3:43:68:
f6:69:46:9b:b2:bb:ae:1e:f0:92:83:1b:7c:a2:10:
07:95:93:fc:e7:72:0b:24:6b:43:44:a3:71:a5:8a:
3f:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:14:B9:31:75:FE:3D:D8:52:0F:C5:49:42:71:1B:34:C9:75:73:38
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a346430303a3a2f34302d3438203d3e20323135363338.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:4d00::/40
Signature Algorithm: sha256WithRSAEncryption
af:28:5e:1d:90:aa:d8:9c:a2:ca:58:1a:79:c5:d7:d6:86:41:
15:79:23:bd:cf:d7:52:65:c4:5e:89:d7:c8:61:5c:1b:37:f0:
57:72:5a:48:8e:11:d0:43:70:dd:0c:89:46:0d:2d:88:3e:93:
d5:59:35:13:61:11:75:66:dd:86:83:1a:db:80:b5:fe:17:7e:
98:e4:06:b0:c5:36:72:44:1c:b1:34:52:b4:31:f9:5f:d7:48:
36:60:17:c0:2c:92:6c:26:87:ae:79:8e:d5:ba:ad:27:8e:ea:
df:4d:bc:62:28:56:b2:9c:5e:f1:1b:88:b9:0f:34:ca:50:ba:
d1:20:bb:6e:a6:97:dc:67:c5:0e:be:7a:b2:84:98:cb:38:53:
78:51:0b:8a:35:46:d0:6c:0c:a8:a3:ae:95:5b:93:3d:8d:9f:
c7:6e:c9:cd:15:10:62:ec:ca:11:fc:a9:6f:78:2e:d0:6a:ff:
c2:4d:5f:b3:b1:37:e1:99:f2:81:11:47:4f:27:2c:66:11:cd:
76:88:1b:2b:44:6a:0b:7f:c5:1e:80:fa:22:c4:49:53:f7:12:
24:3b:c0:7f:ac:48:86:16:3a:93:ad:f7:65:72:d3:b3:4a:1a:
1c:d9:0f:6c:90:b9:1f:b5:b3:cf:0a:d9:cc:e6:52:d2:c6:f0:
9b:db:13:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:35:20 2024 by rpki-client on console-ams.rpki-client.org