Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963353a623030623a3a2f34382d3438203d3e20323132313439.roa
File: 326131313a323963353a623030623a3a2f34382d3438203d3e20323132313439.roa (raw, json)
Hash identifier: jN1ql6NRHjNPFSUkmIqn/kPBwMuPrxAVr73IYnhztuM=
Subject key identifier: B3:A8:13:A7:67:53:76:86:31:3D:5E:8E:0E:94:5B:12:3D:15:5A:51
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 305E8EDB012F82C814E939257FEC77FFE4313C28
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963353a623030623a3a2f34382d3438203d3e20323132313439.roa
Signing time: Wed 19 Jun 2024 14:01:17 +0000
ROA not before: Wed 19 Jun 2024 13:56:17 +0000
ROA not after: Wed 18 Jun 2025 14:01:17 +0000
asID: 212149
IP address blocks: 2a11:29c5:b00b::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:5e:8e:db:01:2f:82:c8:14:e9:39:25:7f:ec:77:ff:e4:31:3c:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Jun 19 13:56:17 2024 GMT
Not After : Jun 18 14:01:17 2025 GMT
Subject: CN=B3A813A767537686313D5E8E0E945B123D155A51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:d3:93:f6:8b:73:89:21:fa:15:2d:19:07:c5:
15:04:b6:98:2b:d2:3b:58:16:7e:e8:eb:61:56:2c:
2b:5e:57:e3:d3:5c:85:bd:13:6d:7f:d0:43:82:21:
ca:18:7d:ac:39:04:7e:09:d5:86:ce:31:09:fb:5b:
cb:7c:3b:0f:07:2d:49:eb:47:ba:7e:18:a1:e1:23:
e8:e4:17:ab:55:6c:79:fa:35:ac:2f:7b:c5:80:48:
a1:3f:34:c0:02:e2:c8:da:67:f3:30:02:df:56:b4:
e5:34:36:cd:6f:2d:a5:cc:53:30:7b:39:eb:a5:eb:
a1:d8:19:c6:d4:da:8d:cc:b1:88:31:01:c9:bf:f2:
48:af:b3:e1:0d:ee:13:31:ba:40:10:80:60:72:84:
f1:0c:7a:00:b8:fd:11:16:53:72:44:04:8a:81:bb:
95:2f:aa:ab:11:27:06:ac:9a:1d:01:38:c9:1c:4b:
6d:68:49:91:56:b6:d2:75:04:aa:fd:ef:4e:d1:04:
73:fb:7a:b2:06:c0:85:3a:a9:c4:59:eb:2f:ab:91:
f2:a4:2d:b5:55:b1:f6:d3:b2:5a:6a:10:46:df:1d:
ea:fb:91:6b:a8:3d:fb:6f:01:55:b3:17:f0:f2:8d:
91:bd:af:5b:85:58:68:ec:e1:d2:ad:e1:56:c7:ea:
92:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:A8:13:A7:67:53:76:86:31:3D:5E:8E:0E:94:5B:12:3D:15:5A:51
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963353a623030623a3a2f34382d3438203d3e20323132313439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c5:b00b::/48
Signature Algorithm: sha256WithRSAEncryption
2a:bd:bb:ae:99:ea:8f:b2:ba:91:62:b7:15:83:77:c7:85:ff:
bd:ce:e7:e1:27:c5:13:c0:55:71:9f:e8:e3:67:d9:f1:36:ed:
ec:e7:40:4e:24:02:8a:d0:43:7d:57:12:92:12:46:85:93:dc:
a5:31:e4:e0:a6:c5:68:43:c5:25:4a:ee:f5:8d:79:6e:fe:e7:
34:b9:90:b5:89:57:f6:8d:7d:11:53:f9:ad:eb:1e:8b:bc:9a:
df:db:41:fa:ca:62:94:86:31:d1:cb:aa:fd:93:03:3c:22:af:
3a:d3:17:0f:c0:c8:2f:03:f8:5a:78:2b:07:83:7a:e3:e1:1c:
e4:f5:62:8b:48:1a:b0:9a:07:e6:69:42:e5:59:4f:20:a7:c2:
9a:6b:f6:16:c4:dd:fd:dc:fc:7e:b9:79:b5:7a:40:81:cb:1e:
e2:65:63:a7:fc:23:5d:ec:f2:fc:3b:17:4a:96:3e:13:ec:d5:
07:67:22:1d:eb:8c:65:4e:81:f5:27:7e:03:b7:23:35:76:d6:
da:1e:73:c3:46:6b:bf:fc:be:a6:04:18:fa:29:11:5e:ca:9a:
53:4b:fa:03:cb:da:ca:97:eb:78:46:99:78:66:e8:da:aa:a6:
71:e0:0c:48:42:2e:31:51:fd:61:86:74:1c:07:77:2f:dd:5b:
ed:e4:1f:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:35:20 2024 by rpki-client on console-ams.rpki-client.org