Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a653a3a2f34382d3438203d3e203530333931.roa
File: 326131313a323963303a653a3a2f34382d3438203d3e203530333931.roa (raw, json)
Hash identifier: NUtKOiLHm2zQwrwixTbL9VymftPuzAN9/hnZJYUgrE8=
Subject key identifier: 3B:BC:82:A8:01:60:CE:E4:C1:0A:C1:64:6B:A4:72:8A:E0:2B:8E:B5
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 463C30ECBEBDA457429210614ADFC636DE721F89
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a653a3a2f34382d3438203d3e203530333931.roa
Signing time: Mon 18 Sep 2023 08:57:06 +0000
ROA not before: Mon 18 Sep 2023 08:52:06 +0000
ROA not after: Mon 16 Sep 2024 08:57:06 +0000
asID: 50391
IP address blocks: 2a11:29c0:e::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Jun 2024 14:48:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:3c:30:ec:be:bd:a4:57:42:92:10:61:4a:df:c6:36:de:72:1f:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Sep 18 08:52:06 2023 GMT
Not After : Sep 16 08:57:06 2024 GMT
Subject: CN=3BBC82A80160CEE4C10AC1646BA4728AE02B8EB5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:af:47:54:ac:3d:cd:2d:d9:f5:ea:72:84:ff:
7e:9b:50:8b:ac:fc:a7:fb:80:0a:67:72:e2:11:5d:
2d:f8:c8:bc:1b:c3:44:bb:ea:b4:c5:03:8a:ec:98:
8f:c2:38:f1:7b:7a:51:8a:52:8e:1a:f2:5e:e4:72:
e6:f5:5f:1d:86:22:66:c7:66:c2:16:5d:bb:f4:3b:
1e:f7:3d:06:e9:6f:f6:b7:e3:a0:50:af:65:06:a2:
e9:3b:f2:6f:59:54:eb:a8:a5:a4:44:24:3d:83:c4:
3f:59:31:11:22:42:49:ac:cf:4f:01:d1:b0:d9:67:
a4:8a:1e:66:91:60:57:f9:9d:07:42:4d:d2:aa:a5:
67:ca:9c:4e:9c:d8:69:41:94:d6:c4:7b:53:97:8e:
1b:d1:9f:18:1a:d9:95:a1:5f:8e:c1:d4:43:e1:de:
c9:c7:9c:9a:cb:93:5f:71:10:ce:13:ec:b6:45:7e:
64:95:69:8c:ec:ce:c1:15:2e:f1:5a:2f:2f:bb:5c:
d5:16:68:94:4e:50:f3:ad:2a:2f:fc:5a:d8:e0:b7:
59:13:4b:5f:c2:ea:02:c2:b7:80:55:0b:d2:19:3a:
34:ed:1f:07:20:1a:fa:5e:60:d5:20:e4:b0:77:9a:
f6:09:a8:09:35:5d:0a:1b:fe:40:44:a6:85:72:e2:
3f:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:BC:82:A8:01:60:CE:E4:C1:0A:C1:64:6B:A4:72:8A:E0:2B:8E:B5
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963303a653a3a2f34382d3438203d3e203530333931.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:e::/48
Signature Algorithm: sha256WithRSAEncryption
73:6f:f7:8b:f2:66:43:be:a7:2b:39:a9:eb:fc:0f:be:a5:af:
c7:db:84:ba:03:8a:5a:5c:d9:3c:a5:c9:61:dd:73:8b:71:cb:
c5:94:91:aa:e7:71:c4:09:92:92:cc:24:b4:99:37:4e:d9:a4:
51:67:7c:0c:a4:ca:5e:33:29:3f:ca:15:6d:68:7d:84:70:fc:
bb:9b:1e:66:7e:72:a3:85:5c:3e:3b:d8:7a:82:1a:5d:3d:a0:
7a:33:aa:17:fd:41:22:c1:eb:4b:be:c3:f3:99:3d:cd:95:fa:
15:c1:b5:42:25:06:5e:cd:8f:33:0a:71:a6:92:97:9e:75:7e:
7f:8e:d1:6a:c1:cd:99:fc:45:15:5d:2e:24:8f:b8:aa:c4:26:
5d:86:b5:57:5e:05:59:1c:7b:91:ae:89:1a:f7:b2:79:c7:18:
6d:40:41:5b:58:e8:1d:2c:fc:e1:0f:69:59:96:44:cf:f3:5e:
e0:49:6d:4e:22:8b:b8:61:7c:78:13:d8:89:05:36:7c:a0:c2:
0b:96:86:72:8f:6a:22:3c:ea:4e:e1:fd:6b:75:69:0c:e3:84:
17:4d:a5:31:ff:1f:f3:45:80:20:ab:eb:45:7f:99:5c:f3:ed:
d2:5e:84:de:51:61:1d:20:2a:70:94:a2:1e:06:f8:78:97:84:
e7:7a:7b:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 13 00:36:56 2024 by rpki-client on console-ams.rpki-client.org