Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963343a623030623a3a2f34382d3438203d3e20323132313439.roa
File: 326131313a323963343a623030623a3a2f34382d3438203d3e20323132313439.roa (raw, json)
Hash identifier: oDpbFiAZu6IUEXzgv9Bqwb907Sw5Qq4O8u8qCg+LIKo=
Subject key identifier: A8:87:7E:B5:06:A5:C2:C4:26:2E:2F:E5:EC:05:7F:A0:EA:2D:02:BE
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 649A413B7F157E6AB517B58F9A9289A21921B1F9
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963343a623030623a3a2f34382d3438203d3e20323132313439.roa
Signing time: Wed 19 Jul 2023 13:30:42 +0000
ROA not before: Wed 19 Jul 2023 13:25:42 +0000
ROA not after: Wed 17 Jul 2024 13:30:42 +0000
asID: 212149
IP address blocks: 2a11:29c4:b00b::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 22:57:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:9a:41:3b:7f:15:7e:6a:b5:17:b5:8f:9a:92:89:a2:19:21:b1:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Jul 19 13:25:42 2023 GMT
Not After : Jul 17 13:30:42 2024 GMT
Subject: CN=A8877EB506A5C2C4262E2FE5EC057FA0EA2D02BE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:6c:66:d4:02:ac:96:e1:3c:ed:40:8e:c9:67:
23:7c:4b:9f:81:88:bc:eb:96:fb:55:6c:92:07:57:
e9:e2:56:f9:cb:bb:cd:cb:b6:cd:a3:22:7d:4c:63:
5a:34:f7:3b:d7:8d:68:08:26:fb:6d:4e:a0:57:83:
9c:ef:58:46:f4:01:62:33:95:47:59:c5:bc:4f:5f:
37:2d:09:fd:4f:a7:e9:e0:6b:06:9e:96:7c:72:5c:
01:15:50:c1:e6:af:5f:21:cf:fe:b5:ef:af:72:9b:
c5:87:c5:fa:a2:0f:73:1b:8e:50:e8:31:3d:f4:70:
aa:1c:8c:e5:d8:91:0b:27:e9:6c:78:bd:e2:82:56:
7b:3e:1d:ac:93:2f:e2:81:85:fd:88:a8:b1:47:e4:
33:11:c6:9b:4f:ff:75:fb:64:54:c9:78:e6:72:19:
52:74:06:04:71:ba:b4:d6:ce:fa:44:27:3e:a2:61:
6a:69:e3:93:69:9e:a0:fc:4e:41:b1:79:46:fc:e9:
53:8e:7e:7f:d5:14:c2:64:02:c6:ee:6e:24:80:49:
87:98:8b:35:a9:25:69:82:b6:c4:30:9f:cc:a9:cb:
ff:17:72:7b:37:9b:d3:7c:ac:80:e9:d8:8f:71:d8:
53:0d:6d:88:2b:7e:52:9a:a6:da:38:4a:e3:c2:8a:
fb:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:87:7E:B5:06:A5:C2:C4:26:2E:2F:E5:EC:05:7F:A0:EA:2D:02:BE
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963343a623030623a3a2f34382d3438203d3e20323132313439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c4:b00b::/48
Signature Algorithm: sha256WithRSAEncryption
8d:97:24:eb:9c:06:e0:58:7c:3e:a5:78:9e:47:07:bc:cd:29:
86:70:7a:16:5b:18:ca:f2:dd:72:ac:e5:1c:c7:8c:df:cb:18:
e6:86:9a:98:ec:80:97:0c:af:7b:a1:7c:cc:8a:4c:07:03:0e:
30:99:7c:7e:b5:04:89:6e:60:05:62:48:d9:53:b4:85:0c:f2:
c8:1f:67:1f:f7:00:ae:c0:86:97:72:c6:f5:51:ab:f3:43:35:
4b:1b:2f:5f:73:01:dd:62:1c:80:fe:64:97:95:ee:1e:77:ca:
03:bf:25:5a:3c:fd:61:8c:42:04:03:30:c0:86:24:8c:19:cc:
ef:f1:c8:3b:7e:0d:73:0b:2e:ff:18:76:e1:2b:9c:f1:ea:e0:
4c:78:50:6a:1b:ee:07:a9:02:b7:05:a0:1a:49:66:10:1d:84:
5b:ad:a8:4b:f1:75:51:88:3b:4f:7f:b4:1f:28:f0:fc:96:4b:
92:37:c3:6e:41:46:eb:6d:d3:a2:67:c1:97:f1:2d:1f:83:e0:
ce:c3:46:69:41:f9:fa:5b:82:b0:a8:e2:2c:1d:fc:d7:1e:1e:
19:c7:4b:7b:31:e8:a7:0b:c1:f8:40:ce:21:f9:89:58:3a:62:
23:7d:da:e7:ac:98:c0:b5:a2:73:9b:e0:3d:b0:47:4c:b8:b8:
e1:00:8b:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 03:51:34 2024 by rpki-client on console-ams.rpki-client.org