Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963353a623030623a3a2f34382d3438203d3e20323132313439.roa
File: 326131313a323963353a623030623a3a2f34382d3438203d3e20323132313439.roa (raw, json)
Hash identifier: joE2vb65IWaSzvw5TfG4kbdF4sjNXE/5ZVCEEc+hyMc=
Subject key identifier: 1B:2A:94:4B:F8:44:55:80:73:8A:A2:D1:37:C3:B7:62:0A:06:B1:42
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 2EE2BAC87F5B390C0951CD00ADF1130096523452
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963353a623030623a3a2f34382d3438203d3e20323132313439.roa
Signing time: Wed 19 Jul 2023 13:30:46 +0000
ROA not before: Wed 19 Jul 2023 13:25:46 +0000
ROA not after: Wed 17 Jul 2024 13:30:46 +0000
asID: 212149
IP address blocks: 2a11:29c5:b00b::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 May 2024 23:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:e2:ba:c8:7f:5b:39:0c:09:51:cd:00:ad:f1:13:00:96:52:34:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Jul 19 13:25:46 2023 GMT
Not After : Jul 17 13:30:46 2024 GMT
Subject: CN=1B2A944BF8445580738AA2D137C3B7620A06B142
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:73:67:53:a4:ed:cc:b6:e9:42:e1:97:98:35:
9d:1b:cd:67:28:6f:32:10:6d:75:3b:e4:9f:1d:6e:
bc:73:d7:2c:2c:00:6b:48:c3:37:56:56:50:8f:59:
71:bc:b6:90:1a:70:5f:1d:48:41:84:77:1e:30:71:
4d:64:f0:f9:d4:f5:f4:a3:d5:1d:12:23:b0:f6:97:
cb:8d:74:fc:96:85:1d:1c:df:6d:77:8c:02:ae:a5:
8e:eb:49:97:77:aa:35:ef:81:73:e4:1d:dc:24:43:
1f:9e:fd:86:81:46:26:eb:c9:60:35:08:81:5e:a3:
30:66:a5:0c:fe:f8:82:1a:7d:0b:75:19:e2:e8:ef:
82:e6:5d:0e:1a:29:4e:13:2e:cc:c5:0d:4e:82:4d:
49:c7:6e:a3:bc:64:4d:92:3b:49:9f:5f:ec:9c:b9:
86:dd:35:50:f3:ff:8e:91:44:82:cf:66:1f:87:b9:
11:51:55:ec:c4:84:ce:e5:ce:69:b3:44:20:a9:3a:
d2:1e:56:f9:a2:29:3f:c9:68:fa:e1:6e:dd:83:f9:
14:5e:82:20:db:17:27:a1:34:09:1e:b9:f0:2b:08:
74:dd:65:3a:4f:50:1f:f8:c9:d4:99:4c:e7:55:67:
3e:ce:60:c5:e4:63:34:c0:89:dd:71:15:b5:00:f5:
df:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:2A:94:4B:F8:44:55:80:73:8A:A2:D1:37:C3:B7:62:0A:06:B1:42
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963353a623030623a3a2f34382d3438203d3e20323132313439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c5:b00b::/48
Signature Algorithm: sha256WithRSAEncryption
86:51:97:39:a8:91:b1:e6:6e:61:8e:4e:3d:1e:d9:ca:d8:33:
23:0c:92:ad:f3:1f:82:4d:d8:43:17:e1:92:a2:7c:63:f4:56:
ef:db:38:34:09:ff:19:c1:83:d2:0d:50:e2:66:8e:7f:69:46:
34:67:35:3b:67:d0:71:2d:45:ad:90:2f:4d:a5:72:18:47:df:
27:0e:b8:fc:56:56:66:83:2d:2e:ce:fc:2c:4e:9a:e2:79:98:
51:3e:0f:5d:82:20:f0:92:be:e5:c0:66:f3:42:ad:85:63:49:
52:fd:9c:90:6b:9a:a9:a4:ad:a4:b6:88:8e:7d:d2:e4:92:f8:
c7:68:bd:7b:0f:de:dc:0c:15:c1:7d:92:8b:2a:42:f7:48:fc:
70:56:3d:7e:ac:0d:d3:f1:33:27:8c:08:0d:f5:1a:dd:08:97:
2a:30:63:06:56:f9:cc:26:95:26:a4:2a:a8:cd:26:2e:cc:4d:
78:20:1d:02:11:36:5e:3a:a8:5d:e5:3d:29:69:da:ba:65:05:
93:e6:01:c0:45:6f:25:83:02:7d:1c:79:58:65:f7:e0:48:1f:
9a:d9:a8:81:67:ea:33:a4:d1:4c:a7:33:6d:b4:a3:0d:90:b1:
ac:c4:f3:ca:b0:48:cf:d5:93:53:fb:5a:61:06:62:dd:9a:a3:
d2:a8:af:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 08:09:14 2024 by rpki-client on console-ams.rpki-client.org