Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963323a623030623a3a2f34382d3438203d3e20323132313439.roa
File: 326131313a323963323a623030623a3a2f34382d3438203d3e20323132313439.roa (raw, json)
Hash identifier: v+wydNQFmo/KVoL9zzKkWqpFCNyv4+4I8sumcIyb1t0=
Subject key identifier: F9:9D:0F:20:F4:12:2E:05:A0:60:DB:65:9F:B2:A5:D0:5A:B8:BB:23
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 764EC47096108ACAA0FEE29098E7EC898D39F476
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963323a623030623a3a2f34382d3438203d3e20323132313439.roa
Signing time: Wed 19 Jul 2023 13:30:35 +0000
ROA not before: Wed 19 Jul 2023 13:25:35 +0000
ROA not after: Wed 17 Jul 2024 13:30:35 +0000
asID: 212149
IP address blocks: 2a11:29c2:b00b::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:4e:c4:70:96:10:8a:ca:a0:fe:e2:90:98:e7:ec:89:8d:39:f4:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Jul 19 13:25:35 2023 GMT
Not After : Jul 17 13:30:35 2024 GMT
Subject: CN=F99D0F20F4122E05A060DB659FB2A5D05AB8BB23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:69:7f:4a:d3:79:2c:cb:84:5e:fa:a4:40:60:
2c:fe:be:e1:ba:77:db:77:97:70:b3:f3:ca:72:c2:
16:3a:dd:c0:2d:5c:fb:07:07:be:e2:c0:4d:35:c6:
bc:b8:8e:71:6e:63:e4:b0:2f:c3:df:5f:d3:8e:5e:
3d:91:50:91:b2:78:a9:c7:c2:7f:a1:c0:cf:e0:15:
4f:c7:24:d4:b5:21:2c:8a:5c:51:39:fc:38:a5:ca:
9b:c9:43:9f:fd:ae:e7:1f:33:e6:87:c9:dc:0a:a1:
2c:ae:62:6e:8e:ac:03:8b:54:01:90:13:aa:f4:51:
ca:67:8e:c8:ed:f5:e0:f0:93:61:f3:24:20:fb:4d:
e7:29:73:08:a9:86:93:47:dd:3a:7b:ee:ed:9c:ed:
d4:fe:c0:db:6f:c2:c1:98:08:ef:e9:8d:d2:9b:6b:
74:8e:38:f8:f8:72:e0:8c:cb:21:8c:d2:53:ad:b6:
8c:41:69:ca:7b:89:72:01:ac:1e:13:31:0a:d3:d3:
b5:97:f4:a7:8d:78:22:ec:a8:6a:76:75:8f:6d:fe:
fa:d2:56:be:25:6b:12:48:55:26:4f:ba:e7:64:63:
dc:14:8b:0b:53:f9:61:ff:15:f4:a9:3a:20:f0:83:
51:88:66:39:88:8c:53:46:55:a6:73:ab:09:2f:35:
21:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:9D:0F:20:F4:12:2E:05:A0:60:DB:65:9F:B2:A5:D0:5A:B8:BB:23
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963323a623030623a3a2f34382d3438203d3e20323132313439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c2:b00b::/48
Signature Algorithm: sha256WithRSAEncryption
9b:0f:24:02:93:fc:ba:db:75:2a:c0:57:52:52:51:67:6a:f3:
a6:7b:de:76:49:5a:87:b8:e4:f2:fd:9e:ec:64:38:e3:11:32:
4b:96:e8:5b:af:de:4a:83:f1:78:0d:e6:5f:c2:b4:57:6b:02:
b2:b2:11:ee:c7:f8:6a:20:22:7e:9f:28:1f:5b:90:c3:87:86:
19:e1:23:f1:01:c5:1d:ba:06:3c:ea:2f:15:24:5e:7c:62:4d:
45:b9:42:0e:7f:30:28:74:d2:27:15:d6:f2:10:9c:cc:c3:20:
57:e0:89:e1:e8:15:a0:88:69:39:32:8c:ed:69:89:61:1d:cd:
6d:89:af:18:39:59:11:54:17:20:13:ac:98:16:ad:72:d8:8c:
73:8e:6d:83:89:16:d2:c2:69:f6:d7:61:0f:83:d4:12:73:f5:
c5:85:0c:b2:b5:e0:b8:ec:c8:5d:a2:a5:1e:ed:e2:fd:3d:d9:
b5:37:74:a7:18:5e:50:dd:cb:31:0c:46:12:dc:51:74:0b:6c:
2b:fa:7d:04:29:4b:26:43:bc:af:af:16:da:3b:ab:1d:06:80:
2f:6b:86:91:f4:d7:85:6a:1e:fa:43:3e:f1:1a:a1:11:30:a5:
b3:38:ac:31:dd:8b:9e:71:20:26:0c:d6:90:ca:c3:3f:31:7d:
05:99:27:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 03:05:16 2024 by rpki-client on console-fra.rpki-client.org