Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963333a623030623a3a2f34382d3438203d3e20323132313439.roa
File: 326131313a323963333a623030623a3a2f34382d3438203d3e20323132313439.roa (raw, json)
Hash identifier: hBNXWUPyldZ1Ntj0nGjlHiTxoQXIZAula6K8muSen18=
Subject key identifier: DA:27:96:5C:AC:A1:61:E1:2B:B9:55:70:EA:47:89:37:7E:05:2E:A5
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 0CCBFA5D8A17F50D26368B0288EDB2D4AC477834
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963333a623030623a3a2f34382d3438203d3e20323132313439.roa
Signing time: Wed 19 Jun 2024 14:01:18 +0000
ROA not before: Wed 19 Jun 2024 13:56:18 +0000
ROA not after: Wed 18 Jun 2025 14:01:18 +0000
asID: 212149
IP address blocks: 2a11:29c3:b00b::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:cb:fa:5d:8a:17:f5:0d:26:36:8b:02:88:ed:b2:d4:ac:47:78:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Jun 19 13:56:18 2024 GMT
Not After : Jun 18 14:01:18 2025 GMT
Subject: CN=DA27965CACA161E12BB95570EA4789377E052EA5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:8d:7f:64:3b:2a:61:39:cb:09:d5:f6:de:c0:
7a:5e:ca:6f:05:56:cc:5a:f3:ce:40:78:cb:a9:74:
14:1c:ba:a0:ae:10:09:7d:27:4d:18:da:48:23:bd:
3e:b6:ea:59:c4:39:aa:8c:19:67:2b:cf:58:77:1a:
0e:62:96:87:9d:8f:41:c2:95:d4:f6:39:44:58:9e:
23:98:25:c7:db:e4:9d:d5:01:d0:e8:0b:cf:c3:98:
e5:d3:e8:2d:8b:71:63:51:4a:f5:d0:95:47:07:bb:
5b:1e:2f:1c:54:3e:92:c8:69:60:23:1f:c7:12:ee:
d3:e6:01:89:61:ee:2a:39:a4:bf:0a:91:b4:02:3b:
42:5e:b5:14:3d:bc:c0:ef:03:27:f1:67:f0:09:e1:
44:e2:79:b0:a7:3c:b9:06:28:35:b9:c4:7a:06:5f:
99:ae:91:16:c2:c8:40:f8:63:4a:6c:08:fc:ff:5a:
90:2d:99:fb:1d:31:83:db:44:64:a2:3f:8f:97:a5:
71:27:d5:9c:ac:17:3b:06:86:7d:7b:de:8d:4c:66:
15:f0:4c:37:06:8a:e1:16:84:f6:e6:06:52:5a:9a:
fd:57:01:54:84:a2:c1:bd:08:72:1d:bf:4a:6c:50:
9c:5e:ab:74:ae:f7:ea:b7:ef:eb:a7:b5:af:ff:52:
62:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:27:96:5C:AC:A1:61:E1:2B:B9:55:70:EA:47:89:37:7E:05:2E:A5
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963333a623030623a3a2f34382d3438203d3e20323132313439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c3:b00b::/48
Signature Algorithm: sha256WithRSAEncryption
a2:3e:af:a7:87:54:c8:25:13:d6:f8:5a:36:5e:93:f0:77:17:
ca:4c:8b:6c:3f:7a:a0:b5:2e:b2:f3:bb:64:77:bf:34:b0:6a:
2f:2e:ce:81:6c:37:a2:28:6b:d2:0b:0b:a8:ba:49:e1:7d:42:
19:8c:9b:11:e3:94:01:4e:07:8f:29:e3:41:89:12:bd:17:6b:
f2:3a:e6:4a:7d:38:47:88:48:d4:5d:3c:cc:f8:a4:95:ed:dc:
98:0e:f9:ce:d4:d7:43:a6:dd:61:3e:15:fe:3a:ca:c0:74:cc:
ef:c2:a8:a9:6f:fb:c7:a8:12:9b:fd:34:dd:5f:93:d7:1b:79:
6d:f6:16:29:b9:07:f5:09:7b:1e:75:31:8a:89:9d:3f:39:02:
64:4c:e7:24:bd:dd:a7:7a:f9:7a:c8:b9:bb:aa:d9:df:37:55:
5f:9a:c1:bf:5a:91:1b:90:fa:39:78:50:27:0c:98:e4:12:9c:
d9:bc:6e:00:09:4a:36:d1:2c:15:18:f4:8b:69:57:93:34:d8:
1e:9a:99:93:03:2a:12:d0:c1:f4:49:05:1e:4d:8b:e3:3d:be:
61:b5:74:c1:33:68:cc:d4:14:bf:2d:c2:e5:a8:e5:1a:a5:a4:
bf:4b:9a:fd:57:29:68:ec:b8:fb:38:44:0a:58:d7:41:f6:be:
c9:55:d0:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:35:20 2024 by rpki-client on console-ams.rpki-client.org