Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963313a623030623a3a2f34382d3438203d3e20323132313439.roa
File: 326131313a323963313a623030623a3a2f34382d3438203d3e20323132313439.roa (raw, json)
Hash identifier: qm5o+Fm7I9SKfIK9M76cZQ5NuaiXxdQLDOzaBlWP1Ik=
Subject key identifier: BD:01:4E:EA:4D:C3:96:E4:32:A9:08:3F:EF:92:D8:EA:81:D3:65:0B
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 73C85ACE682D40CCA2ABF061D9AA0B262CFBB1DC
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963313a623030623a3a2f34382d3438203d3e20323132313439.roa
Signing time: Wed 19 Jul 2023 13:30:33 +0000
ROA not before: Wed 19 Jul 2023 13:25:33 +0000
ROA not after: Wed 17 Jul 2024 13:30:33 +0000
asID: 212149
IP address blocks: 2a11:29c1:b00b::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 May 2024 23:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:c8:5a:ce:68:2d:40:cc:a2:ab:f0:61:d9:aa:0b:26:2c:fb:b1:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Jul 19 13:25:33 2023 GMT
Not After : Jul 17 13:30:33 2024 GMT
Subject: CN=BD014EEA4DC396E432A9083FEF92D8EA81D3650B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:9c:09:68:6e:24:71:cc:7b:34:4a:ef:c0:89:
43:bb:d3:91:69:ba:7e:6e:78:ac:be:f0:8b:e1:1f:
c4:8e:0b:41:fd:bf:43:69:19:ce:47:b5:10:5b:91:
0b:8a:63:c2:b7:d1:c8:65:cd:b5:ec:4f:3b:36:48:
89:a7:49:ab:3e:f9:af:c4:9b:07:cb:61:a7:4f:3c:
68:9c:bc:cb:bf:18:71:ac:bd:45:b5:aa:f8:58:b6:
b2:2e:0f:dc:bd:34:45:07:24:1c:bc:f8:26:80:48:
06:06:e2:b6:61:1f:80:49:4f:ab:c7:26:6f:d9:aa:
ea:47:21:38:02:e8:a0:43:ae:66:7b:76:e5:bc:f7:
6a:df:1d:3b:72:10:b6:e8:ba:74:c4:26:2c:d9:57:
8d:3d:c5:0e:6c:62:f0:be:5b:04:0b:19:3f:64:80:
77:8c:1d:44:fb:ba:f3:a0:73:68:20:a8:3e:16:39:
5b:66:d6:3b:ac:ff:5b:e0:9b:4f:55:ee:fd:f7:de:
2b:b3:82:f7:a6:f5:44:af:a3:2c:7a:8a:c6:57:91:
36:4f:e3:e3:c1:93:30:05:5f:73:fe:fa:87:36:92:
17:09:b6:24:0c:0f:ed:90:fa:a4:c4:01:23:c5:bf:
e1:8d:fb:e2:bf:55:4e:37:dd:7d:ee:b6:a6:6c:9e:
9c:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:01:4E:EA:4D:C3:96:E4:32:A9:08:3F:EF:92:D8:EA:81:D3:65:0B
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963313a623030623a3a2f34382d3438203d3e20323132313439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c1:b00b::/48
Signature Algorithm: sha256WithRSAEncryption
84:e6:6e:c2:a3:ec:8a:41:77:da:21:d8:df:3a:90:bd:c6:58:
13:b8:05:a4:87:91:66:c6:8e:37:f3:00:04:1c:34:ca:c2:be:
55:4c:ce:90:91:d2:0c:53:72:18:6c:38:2e:03:1b:45:c9:76:
fa:20:3f:2b:f3:f5:09:72:c3:c3:f8:7e:7c:cd:57:1c:4d:ad:
a8:84:4b:23:26:f6:d7:38:3e:25:b5:b3:56:74:95:78:96:bd:
0c:35:2e:8c:94:40:c3:83:46:2d:97:aa:bf:95:2f:10:19:ec:
61:d0:03:3d:bb:50:f3:f8:69:ea:09:de:68:be:c5:89:3c:c3:
0a:39:83:a5:96:04:13:00:bc:9b:6e:37:9c:9a:b6:19:17:05:
13:51:bd:3a:12:74:7d:45:91:fe:e3:3b:45:ef:52:ed:3d:90:
cc:01:e7:76:03:b1:7c:0c:8d:bc:3d:12:c4:75:e5:ec:8c:d5:
5f:8e:77:14:ec:32:17:ca:21:ef:1b:8a:46:fa:ee:f1:e0:1e:
40:0f:16:5e:9b:ff:76:91:b1:81:67:d3:a2:1f:0f:3d:12:5e:
b7:34:7c:06:f2:18:bc:79:d8:79:19:af:d7:7f:15:a2:9c:05:
48:f3:0e:0f:7e:6d:82:41:87:2a:a3:7d:2b:ab:bb:f2:57:77:
1f:d0:0b:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 09:34:36 2024 by rpki-client on console-fra.rpki-client.org