Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a653a3a2f34382d3438203d3e203530333931.roa
File: 326131313a323963303a653a3a2f34382d3438203d3e203530333931.roa (raw, json)
Hash identifier: q539jN7bCtO+/5W301S5JIYxzi4xkUo59eKJQHD5XHY=
Subject key identifier: C2:B9:96:FD:FC:58:7B:F4:85:D5:4F:AC:0C:EC:12:2C:84:59:E4:00
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 78C6F6F2CF8AC0891E6EA10DC2803573ECAA9265
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a653a3a2f34382d3438203d3e203530333931.roa
Signing time: Mon 19 Aug 2024 09:01:27 +0000
ROA not before: Mon 19 Aug 2024 08:56:27 +0000
ROA not after: Mon 18 Aug 2025 09:01:27 +0000
asID: 50391
IP address blocks: 2a11:29c0:e::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:c6:f6:f2:cf:8a:c0:89:1e:6e:a1:0d:c2:80:35:73:ec:aa:92:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Aug 19 08:56:27 2024 GMT
Not After : Aug 18 09:01:27 2025 GMT
Subject: CN=C2B996FDFC587BF485D54FAC0CEC122C8459E400
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:0a:8c:65:1c:b1:17:04:51:66:c3:04:a1:37:
0c:af:d1:84:30:0e:50:67:81:61:22:96:1c:da:c3:
f7:2a:e2:32:4d:26:c1:ab:52:07:3f:c4:d9:d1:81:
fd:d8:64:03:3b:03:97:64:d3:7e:a2:01:20:75:44:
78:f5:bd:ca:a8:f1:25:06:14:db:90:9e:ef:dd:87:
38:1e:ae:4c:9a:0e:63:99:a8:28:fd:90:98:85:15:
5e:de:df:f7:6c:57:9e:6a:e5:be:02:c2:27:fb:d8:
77:a4:0a:39:8b:78:aa:98:17:f0:94:ef:e7:ab:72:
bc:1c:3f:23:c5:76:a9:00:81:90:d7:c7:9a:59:8f:
89:28:b4:2c:22:37:7b:cd:98:7b:ee:44:27:b9:d7:
12:ac:65:01:b5:9e:3d:b8:59:d1:c2:64:f9:96:74:
f1:f5:45:e8:4a:22:c1:6e:3b:5a:19:0f:7f:ea:54:
7a:3f:a1:b2:77:c9:fb:5a:23:01:35:09:bc:31:94:
e8:f5:06:d5:5b:ac:c6:b1:bf:8d:3d:3d:49:a3:a5:
a4:0f:71:2c:cb:43:72:09:02:52:97:e9:2e:37:bf:
fe:6d:fb:2e:ca:f6:3f:82:90:5d:0f:ca:c6:d8:60:
d8:8c:f6:04:06:21:fa:d1:22:15:c3:44:3c:7c:6f:
ae:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:B9:96:FD:FC:58:7B:F4:85:D5:4F:AC:0C:EC:12:2C:84:59:E4:00
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a653a3a2f34382d3438203d3e203530333931.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:e::/48
Signature Algorithm: sha256WithRSAEncryption
04:c8:73:7f:98:db:c6:2f:04:27:65:19:ca:aa:b1:bb:44:5e:
ba:54:ea:ff:e2:91:ff:fc:4e:c1:50:45:b6:d4:26:24:7c:f8:
d3:20:b4:71:95:1a:62:8b:35:b4:1d:c9:7c:aa:1b:3b:af:e2:
90:72:cd:6f:9f:9a:20:94:b3:ed:ab:43:00:8e:11:8c:c1:09:
5d:ff:ef:8a:fd:b2:d1:1d:16:ea:ea:7a:f0:71:89:dd:e1:ad:
a4:7d:9c:da:72:df:03:58:d6:d4:9a:bd:e9:4e:be:3c:93:32:
5b:49:bd:84:2e:ba:80:52:d9:d5:27:f3:5e:7e:2e:b0:4e:63:
39:4c:c5:a4:cf:22:18:2f:fd:d7:82:1a:3b:4a:22:e5:d3:32:
f3:fb:67:a2:3e:44:0a:6a:58:1c:63:c6:ca:2d:a3:60:42:7c:
bb:77:01:40:e9:ca:3b:49:62:c7:72:35:6e:4b:68:c6:22:12:
40:60:90:8b:67:92:cb:60:3f:e2:24:cf:cd:f9:dd:2c:47:ed:
6a:a5:f4:3c:29:cd:4e:60:87:10:26:c3:f6:32:35:9d:15:09:
29:21:37:ea:7c:3f:c7:43:cb:e6:7c:8e:90:86:ba:7c:3d:97:
27:e9:19:e7:eb:4a:59:37:d2:59:b5:27:19:b3:29:7c:10:58:
6c:d5:d4:e4
-----BEGIN CERTIFICATE-----
MIIFODCCBCCgAwIBAgIUeMb28s+KwIkebqENwoA1c+yqkmUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZTk2ZDg1OTk2ZTkzNTRkMTAwNWU0NGM3ODFkMzhhZGNm
MTA4Mjg3MzAeFw0yNDA4MTkwODU2MjdaFw0yNTA4MTgwOTAxMjdaMDMxMTAvBgNV
BAMTKEMyQjk5NkZERkM1ODdCRjQ4NUQ1NEZBQzBDRUMxMjJDODQ1OUU0MDAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyCoxlHLEXBFFmwwShNwyv0YQw
DlBngWEilhzaw/cq4jJNJsGrUgc/xNnRgf3YZAM7A5dk036iASB1RHj1vcqo8SUG
FNuQnu/dhzgerkyaDmOZqCj9kJiFFV7e3/dsV55q5b4Cwif72HekCjmLeKqYF/CU
7+ercrwcPyPFdqkAgZDXx5pZj4kotCwiN3vNmHvuRCe51xKsZQG1nj24WdHCZPmW
dPH1RehKIsFuO1oZD3/qVHo/obJ3yftaIwE1CbwxlOj1BtVbrMaxv409PUmjpaQP
cSzLQ3IJAlKX6S43v/5t+y7K9j+CkF0PysbYYNiM9gQGIfrRIhXDRDx8b65fAgMB
AAGjggJCMIICPjAdBgNVHQ4EFgQUwrmW/fxYe/SF1U+sDOwSLIRZ5AAwHwYDVR0j
BBgwFoAU6W2FmW6TVNEAXkTHgdOK3PEIKHMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvODExMTViYzYtMTBmNi00YWYzLWJhMDktOGI2ODdhNTZm
YmY1LzAvRTk2RDg1OTk2RTkzNTREMTAwNUU0NEM3ODFEMzhBRENGMTA4Mjg3My5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzZXMkZtVzZUVk5FQVhrVEhnZE9LM1BF
SUtITS5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvODExMTViYzYt
MTBmNi00YWYzLWJhMDktOGI2ODdhNTZmYmY1LzAvMzI2MTMxMzEzYTMyMzk2MzMw
M2E2NTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzAzMzM5MzEucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkD
BwAqESnAAA4wDQYJKoZIhvcNAQELBQADggEBAATIc3+Y28YvBCdlGcqqsbtEXrpU
6v/ikf/8TsFQRbbUJiR8+NMgtHGVGmKLNbQdyXyqGzuv4pByzW+fmiCUs+2rQwCO
EYzBCV3/74r9stEdFurqevBxid3hraR9nNpy3wNY1tSavelOvjyTMltJvYQuuoBS
2dUn815+LrBOYzlMxaTPIhgv/deCGjtKIuXTMvP7Z6I+RApqWBxjxsoto2BCfLt3
AUDpyjtJYsdyNW5LaMYiEkBgkItnkstgP+Ikz8353SxH7Wql9DwpzU5ghxAmw/Yy
NZ0VCSkhN+p8P8dDy+Z8jpCGunw9lyfpGefrSlk30lm1JxmzKXwQWGzV1OQ=
-----END CERTIFICATE-----
Generated at Sat Nov 23 06:18:04 2024 by rpki-client on console-ams.rpki-client.org