Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a623030623a3a2f34382d3438203d3e20323132313439.roa
File: 326131313a323963303a623030623a3a2f34382d3438203d3e20323132313439.roa (raw, json)
Hash identifier: 8f8FymSRB23VMFrTEvlEmJVdx4JJWrPT+2tX8IOhQG4=
Subject key identifier: 88:A5:21:29:80:D9:BF:11:5F:D0:97:EC:6D:FE:A6:45:09:33:12:46
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 27848C3C7A5BD7077A7F0A7BAB0751CDF80727D5
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a623030623a3a2f34382d3438203d3e20323132313439.roa
Signing time: Wed 19 Jul 2023 13:30:32 +0000
ROA not before: Wed 19 Jul 2023 13:25:32 +0000
ROA not after: Wed 17 Jul 2024 13:30:32 +0000
asID: 212149
IP address blocks: 2a11:29c0:b00b::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:84:8c:3c:7a:5b:d7:07:7a:7f:0a:7b:ab:07:51:cd:f8:07:27:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Jul 19 13:25:32 2023 GMT
Not After : Jul 17 13:30:32 2024 GMT
Subject: CN=88A5212980D9BF115FD097EC6DFEA64509331246
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:cd:2c:f4:15:7c:fa:cb:c3:bf:93:da:ea:b7:
7a:50:9c:2c:58:b0:e5:79:46:43:fa:15:2b:8e:4f:
23:66:dd:49:7d:d2:5e:0f:ff:18:c3:f2:f9:97:85:
44:10:bc:02:8b:3a:31:d9:bc:d4:e7:f6:76:b0:b7:
af:4c:91:49:c1:ef:67:bc:1a:07:4d:f1:7b:44:74:
1e:5c:34:59:49:b9:aa:85:3b:4d:c3:ae:37:bd:60:
57:2a:73:6f:7b:06:6f:ae:2f:ee:16:1f:9d:5c:19:
42:b9:82:d5:f9:ea:f5:01:98:28:69:5b:74:cb:1c:
ee:44:1b:6c:27:af:cc:91:da:24:9d:06:83:30:cb:
4f:47:7e:e2:8a:8a:6b:ad:c4:e2:b7:0a:fc:75:db:
41:33:83:40:6a:8d:34:7d:1a:fa:db:a1:75:c8:60:
fa:a6:32:84:00:4b:22:e8:38:0f:7f:76:03:e6:28:
6f:1b:33:a8:dc:bf:76:a4:df:d3:c0:c6:44:b1:5d:
a6:f6:66:e7:3e:0f:05:dc:e3:ef:7a:80:da:d7:2b:
02:e3:69:ed:64:7e:18:db:b4:0c:51:35:e1:b0:8d:
a1:4f:70:ba:7b:e8:95:81:12:1f:b9:7f:80:f0:a0:
cb:05:f9:54:5e:9e:09:1d:fe:71:07:e7:f5:75:b8:
fe:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:A5:21:29:80:D9:BF:11:5F:D0:97:EC:6D:FE:A6:45:09:33:12:46
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a623030623a3a2f34382d3438203d3e20323132313439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:b00b::/48
Signature Algorithm: sha256WithRSAEncryption
05:48:77:53:b1:7c:05:28:21:8b:b3:a1:6d:a8:35:81:35:ae:
7a:20:cb:00:03:df:cb:2b:07:19:33:76:4e:61:7d:fc:26:3e:
b8:60:3a:4c:f4:e4:59:c6:2a:f4:42:a6:f8:fe:1c:87:5b:f6:
4d:47:ad:7e:bc:25:be:81:de:41:60:54:08:c9:9b:18:46:ad:
ef:62:5b:6f:19:da:cc:62:a4:0b:14:6b:17:33:ea:b3:0f:33:
f6:66:3a:0e:5e:52:70:82:bf:62:87:66:42:52:53:48:37:57:
83:af:a5:3b:8d:10:02:15:db:47:83:41:41:6c:f7:47:7b:6e:
20:46:18:e2:6f:61:3f:7b:55:c7:71:91:b8:69:8d:aa:14:e2:
29:63:27:1e:5b:8d:99:6d:3c:c7:a0:75:a6:fe:79:3b:b3:b2:
5c:a3:d5:8f:08:65:b5:ea:4f:39:a1:eb:0f:b5:37:4a:93:38:
ed:28:12:4b:01:82:c8:0b:75:65:e1:0e:5b:e6:01:c7:57:51:
ba:17:07:6a:bb:9d:11:48:13:70:72:ef:12:d4:23:48:8a:25:
a2:c9:fd:d9:70:68:3e:40:be:94:e4:a0:52:84:0a:ab:07:c6:
a4:4e:de:7b:4c:32:e9:b5:ee:e1:15:5a:d0:2d:91:52:34:34:
b8:30:b8:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 03:19:23 2024 by rpki-client on console-ams.rpki-client.org