Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a353a3a2f34382d3438203d3e203530333931.roa
File: 326131313a323963303a353a3a2f34382d3438203d3e203530333931.roa (raw, json)
Hash identifier: PuOEMNxCAE2N9rqhfgSNlX0144Wl/kRHAAGbUkQHwaA=
Subject key identifier: 80:E5:84:1B:EA:F7:46:62:B6:B1:0C:F6:F1:5A:AD:D8:F0:3B:6B:2E
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 34A552B0437DCC69FEF640F25E718A29DD8E54F8
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a353a3a2f34382d3438203d3e203530333931.roa
Signing time: Wed 19 Jul 2023 13:29:57 +0000
ROA not before: Wed 19 Jul 2023 13:24:57 +0000
ROA not after: Wed 17 Jul 2024 13:29:57 +0000
asID: 50391
IP address blocks: 2a11:29c0:5::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Jun 2024 14:48:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:a5:52:b0:43:7d:cc:69:fe:f6:40:f2:5e:71:8a:29:dd:8e:54:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Jul 19 13:24:57 2023 GMT
Not After : Jul 17 13:29:57 2024 GMT
Subject: CN=80E5841BEAF74662B6B10CF6F15AADD8F03B6B2E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:d4:e1:71:cd:34:6d:a5:a9:77:a6:df:6a:46:
49:44:26:e4:75:c8:99:1d:82:55:25:a8:d4:08:de:
f1:c9:cf:8d:1c:4c:16:44:a7:96:3b:fe:d4:1c:01:
8e:de:91:47:b1:37:81:6e:60:a8:ea:de:da:8e:8e:
3b:d2:aa:c0:23:64:8a:13:f4:55:73:df:d1:87:32:
f1:c4:5b:e5:97:52:ca:d1:59:1c:be:27:62:e9:8c:
a3:52:c2:5f:7d:78:ba:e8:38:4c:a2:d6:ac:94:bf:
13:c6:12:ae:56:34:4c:0f:54:be:32:e4:b8:4a:82:
7c:d4:77:a6:79:b5:c8:15:26:09:98:4e:65:10:f5:
c0:9e:cc:5c:cf:68:a1:f6:5f:15:ba:1c:69:82:5a:
4e:b4:d1:36:af:97:c7:e5:02:0c:41:00:b2:b2:4b:
5b:ab:a2:0b:8e:88:b8:b2:91:79:d8:ee:75:d6:9f:
32:2e:26:f6:10:ca:a1:bb:61:d8:16:c1:e9:fc:c0:
61:11:09:1c:b9:bd:1a:f6:19:2e:d7:00:54:e8:26:
d5:42:15:ea:3e:1e:99:fd:02:ad:55:be:99:a4:51:
5f:35:cf:a0:18:68:a7:60:65:8d:e0:26:8d:6f:71:
5c:57:22:78:0f:3f:a8:1b:72:5f:2a:98:b0:ef:f2:
d7:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:E5:84:1B:EA:F7:46:62:B6:B1:0C:F6:F1:5A:AD:D8:F0:3B:6B:2E
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a353a3a2f34382d3438203d3e203530333931.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:5::/48
Signature Algorithm: sha256WithRSAEncryption
02:c3:f0:d5:7b:6a:97:37:08:d1:a4:50:d0:96:1b:78:f1:6b:
0d:79:4b:0e:7a:0a:77:e7:5f:67:07:40:93:e7:c0:fd:08:9c:
f2:3b:22:74:db:c7:35:c6:28:1d:68:5c:52:04:f2:ab:3c:8c:
13:d4:de:03:99:b3:11:80:86:7e:cf:97:bb:76:9b:e0:e0:46:
fc:9d:ac:42:27:c2:2e:de:e6:b0:0b:f1:f8:c0:d8:74:17:b7:
f0:44:06:c3:bb:2e:d0:7d:6a:d3:80:1d:04:2e:98:48:4e:b9:
22:18:b5:b4:28:40:0d:c2:fd:44:f3:42:e2:82:55:8b:3b:92:
b1:c7:d3:4b:97:77:27:30:5c:75:85:01:e1:1d:e6:55:97:ea:
8c:a0:67:5e:8c:f1:c0:e4:00:92:66:45:ca:46:c9:a6:0d:a9:
3a:75:8a:6c:4e:08:bc:a7:27:c5:96:b9:56:d5:23:9e:46:b9:
ff:33:9b:e9:8f:62:f9:43:72:0a:2f:8a:c6:7d:6d:23:28:d6:
2d:29:a8:db:b2:00:14:1c:28:af:9e:76:9d:15:72:25:58:e2:
66:6e:ac:45:7c:a0:49:c2:de:56:39:34:73:a9:95:e2:a3:84:
f7:68:44:fa:5e:93:c6:ec:3b:80:91:72:9b:8c:e9:5a:71:7a:
05:ad:3c:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 13 00:36:56 2024 by rpki-client on console-ams.rpki-client.org