Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963333a623030623a3a2f34382d3438203d3e20323132313439.roa
File: 326131313a323963333a623030623a3a2f34382d3438203d3e20323132313439.roa (raw, json)
Hash identifier: y8/1PqQdrE/pA2UwWDEvEu9ypsEkXPzRtINwUWpc80k=
Subject key identifier: 6A:00:03:B2:EA:CF:95:F1:FA:3C:C3:90:08:C0:E6:96:16:2F:6D:10
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 47F0297C536435F9A029958F31B476A91DB3F0E1
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963333a623030623a3a2f34382d3438203d3e20323132313439.roa
Signing time: Wed 19 Jul 2023 13:30:38 +0000
ROA not before: Wed 19 Jul 2023 13:25:38 +0000
ROA not after: Wed 17 Jul 2024 13:30:38 +0000
asID: 212149
IP address blocks: 2a11:29c3:b00b::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 May 2024 23:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:f0:29:7c:53:64:35:f9:a0:29:95:8f:31:b4:76:a9:1d:b3:f0:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Jul 19 13:25:38 2023 GMT
Not After : Jul 17 13:30:38 2024 GMT
Subject: CN=6A0003B2EACF95F1FA3CC39008C0E696162F6D10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:7b:85:97:48:5c:52:51:bb:28:40:9c:e9:5d:
1a:f3:ea:bc:34:b7:f2:6b:65:f5:0e:2f:df:60:a1:
62:d8:c4:15:99:86:f8:be:89:93:7b:1f:de:59:9c:
12:36:40:d1:45:c0:97:16:f6:6f:9e:dc:0f:05:50:
8c:ba:b7:26:35:4f:3a:5c:4f:77:25:ab:3f:8b:cd:
9d:d4:e0:50:b0:ce:fa:d7:c0:05:3f:e4:68:ad:33:
e9:e5:0d:4a:c2:60:d0:ad:a7:09:ef:8a:45:bf:39:
f9:b3:1e:4e:25:81:b5:49:fd:02:bb:35:a5:d5:a0:
6b:f6:ab:4d:16:df:58:b0:0c:c0:d1:18:c7:64:71:
a3:b0:50:5c:70:54:22:9e:d1:17:f5:03:45:d1:48:
bf:f3:b6:95:41:46:d0:f5:89:2a:e1:fc:00:42:ae:
ac:8f:1d:15:f2:83:71:c5:49:cf:af:df:86:62:ef:
6e:62:71:60:cf:90:3a:2b:94:3f:f1:01:db:4d:4e:
63:9b:25:63:6c:2d:aa:09:a3:be:bb:79:d7:3f:c2:
87:15:a4:14:72:66:7f:aa:0a:9e:f5:d8:88:82:30:
4d:78:65:6d:86:ce:00:dc:ab:8e:a7:37:19:35:52:
2e:d6:da:c5:1b:08:ab:dc:a9:da:ba:26:2b:b9:1e:
8a:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:00:03:B2:EA:CF:95:F1:FA:3C:C3:90:08:C0:E6:96:16:2F:6D:10
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963333a623030623a3a2f34382d3438203d3e20323132313439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c3:b00b::/48
Signature Algorithm: sha256WithRSAEncryption
af:88:5e:f7:91:e4:ac:eb:b5:48:a0:89:80:d6:f2:5e:17:8a:
8b:3c:6a:80:78:21:4a:7b:ed:6f:f0:27:ac:15:e6:14:6d:76:
57:31:35:21:01:b0:69:12:a6:bc:4d:a1:91:fe:28:ef:a4:6e:
3c:28:7b:e8:ce:f9:ca:eb:56:86:d5:5a:0c:1d:cd:bd:81:80:
d9:37:36:4e:e1:3e:2f:46:f9:e7:98:13:ca:ec:91:e3:59:d3:
8b:50:1c:94:d6:7b:04:89:31:02:7a:08:63:d0:4b:b0:68:4a:
32:56:9c:b2:dc:5b:19:77:9c:47:28:74:09:f1:d4:f8:47:27:
82:12:ca:29:c6:a2:de:cd:20:fb:54:4b:df:cf:75:05:08:a9:
8d:67:c1:22:7f:a4:54:51:74:88:b9:ba:1c:33:ce:9e:a9:e2:
c6:b5:34:74:a4:ea:71:4d:65:9d:fa:bc:bc:58:22:95:e1:86:
a1:c6:2c:15:ba:1c:6d:8c:8c:4f:b8:ad:35:1d:d1:3e:f4:38:
39:24:48:21:18:46:ed:4a:e3:17:85:69:7f:1c:bf:e0:09:76:
dc:80:63:ea:43:72:e3:df:b2:c4:63:27:0b:8d:1d:d1:75:3c:
5f:c5:61:03:0b:de:ce:73:32:b9:ee:c9:48:30:52:ea:76:9f:
45:a1:e8:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 08:09:14 2024 by rpki-client on console-ams.rpki-client.org