Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a623030623a3a2f34382d3438203d3e20323132313439.roa
File: 326131313a323963303a623030623a3a2f34382d3438203d3e20323132313439.roa (raw, json)
Hash identifier: sz6iZSlrcoQucztHTiTfR+CAkByfra5+z/KD8JYYs40=
Subject key identifier: AC:06:13:27:4D:60:28:45:E7:AC:74:97:0A:7D:B0:3C:F6:09:86:E8
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 6DAD1AA8358E18995D8D6EC212813CC5090A4154
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a623030623a3a2f34382d3438203d3e20323132313439.roa
Signing time: Wed 19 Jun 2024 14:01:16 +0000
ROA not before: Wed 19 Jun 2024 13:56:16 +0000
ROA not after: Wed 18 Jun 2025 14:01:16 +0000
asID: 212149
IP address blocks: 2a11:29c0:b00b::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:ad:1a:a8:35:8e:18:99:5d:8d:6e:c2:12:81:3c:c5:09:0a:41:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Jun 19 13:56:16 2024 GMT
Not After : Jun 18 14:01:16 2025 GMT
Subject: CN=AC0613274D602845E7AC74970A7DB03CF60986E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:b5:cd:d9:57:e8:c6:f3:3d:f9:c7:29:b5:5d:
41:70:4d:97:fa:6c:c4:17:00:93:e3:9f:0e:1f:64:
31:4e:42:84:e0:bc:03:ed:60:38:df:45:04:7b:ac:
6f:9d:c8:b8:68:5e:df:b2:26:73:40:c3:dd:5c:1f:
d3:14:9c:52:2a:e8:5b:c1:7a:73:64:1d:3d:65:bf:
9d:56:e3:32:85:f5:88:d2:61:2e:35:a2:fe:8d:e6:
81:99:32:72:0f:e1:3f:8c:92:61:d6:c2:c0:ae:44:
d2:6a:84:a6:50:9b:4c:bc:c3:db:b3:52:f6:aa:39:
0d:b5:b1:a3:bc:98:79:08:16:ab:db:81:5f:72:b7:
e4:0a:10:6f:50:31:6c:b6:01:01:43:64:35:08:18:
b4:84:39:d7:3d:e9:a9:53:87:fd:ca:81:13:cc:41:
36:90:8e:27:59:01:ac:bc:66:9c:ef:ca:29:55:0c:
d5:4f:ba:5e:3b:17:60:49:b8:05:2e:23:a5:48:ed:
a5:e0:a3:c6:c4:36:f0:3c:28:a0:32:23:cc:ae:f4:
40:69:f8:9f:48:90:48:e8:40:55:45:69:25:ca:13:
9b:c8:94:5e:87:d5:ea:40:0e:b2:45:69:79:13:c1:
23:7f:e3:8c:ab:dc:d7:b9:58:46:6e:49:54:de:89:
ad:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:06:13:27:4D:60:28:45:E7:AC:74:97:0A:7D:B0:3C:F6:09:86:E8
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a623030623a3a2f34382d3438203d3e20323132313439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:b00b::/48
Signature Algorithm: sha256WithRSAEncryption
43:8f:82:d7:38:1e:19:27:ab:bc:67:56:80:0b:6a:f9:15:d1:
b7:ec:58:96:31:b2:bf:72:99:48:67:9e:3a:98:ec:ee:9a:14:
3c:55:e5:21:c9:dc:83:e1:c5:53:ed:45:13:ac:1a:a5:d0:6f:
b9:02:76:c0:1b:0e:a0:30:a1:93:9b:3d:0c:7b:5a:4e:16:0e:
30:09:6a:8a:12:53:57:b7:98:ec:55:b8:44:ea:4b:b3:ad:10:
2e:ec:96:48:8e:d1:e3:76:b8:8b:3e:ed:88:cb:25:3d:c1:ef:
1f:89:d2:72:30:26:02:07:2f:4b:99:9f:1b:26:e1:16:61:15:
f8:19:86:df:ad:63:e4:6f:e9:7a:4f:54:a8:b5:4e:4b:0f:d7:
e3:f7:54:c4:6e:38:3c:1c:95:ac:6a:f3:8a:29:be:12:85:8d:
de:f3:39:53:06:5d:2a:81:6d:bd:d8:4e:3d:5f:02:70:f0:e9:
1d:5c:6b:0e:f1:3d:53:3d:af:be:89:58:43:51:ba:b2:c8:e4:
98:f6:7f:d6:af:21:4a:65:78:ef:a8:e5:e5:d6:7e:6a:f6:0d:
4f:94:4f:ad:72:20:3d:c4:21:97:56:3d:84:3e:bd:9d:c1:10:
ce:73:55:1e:f0:3b:90:1a:92:20:d7:e6:be:23:c0:bd:88:a0:
f2:9f:43:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 18:06:13 2024 by rpki-client on console-fra.rpki-client.org