Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963363a623030623a3a2f34382d3438203d3e20323132313439.roa
File: 326131313a323963363a623030623a3a2f34382d3438203d3e20323132313439.roa (raw, json)
Hash identifier: MmZdqz7VEzrWN3avlTVbi0Y1nLcJivkCmqqWVvtqzxQ=
Subject key identifier: CC:CA:05:AF:8D:BF:A2:95:F0:0D:22:3E:5E:36:FB:76:F2:85:53:C4
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 3DA69FE6B13B55EF86FCB8DA7FA750DD24C2EE37
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963363a623030623a3a2f34382d3438203d3e20323132313439.roa
Signing time: Wed 19 Jun 2024 14:01:19 +0000
ROA not before: Wed 19 Jun 2024 13:56:19 +0000
ROA not after: Wed 18 Jun 2025 14:01:19 +0000
asID: 212149
IP address blocks: 2a11:29c6:b00b::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:a6:9f:e6:b1:3b:55:ef:86:fc:b8:da:7f:a7:50:dd:24:c2:ee:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Jun 19 13:56:19 2024 GMT
Not After : Jun 18 14:01:19 2025 GMT
Subject: CN=CCCA05AF8DBFA295F00D223E5E36FB76F28553C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:5e:70:95:99:ca:34:b0:97:44:ef:4c:12:f6:
54:56:7f:1c:3d:c7:ac:64:91:9d:b8:cb:c4:28:28:
7c:d5:22:8e:fc:34:05:74:ee:0c:2a:45:00:e0:43:
14:99:eb:46:ec:f8:7d:c0:db:35:e5:87:14:51:94:
58:1f:d2:6d:46:a0:86:73:00:fe:8d:f5:c6:12:a0:
d8:79:42:fb:28:9b:be:ee:17:ea:20:56:db:30:11:
60:c9:26:24:28:76:18:06:31:d7:27:7d:71:c2:0f:
00:cf:c4:ad:02:ba:67:6c:e1:a3:9c:ea:bc:6d:ac:
6b:f0:8e:07:b5:3f:4e:c6:2a:27:38:6b:e1:43:57:
39:57:b7:da:01:98:82:d1:da:f6:af:9e:fa:fc:ad:
23:1c:9b:8b:82:19:ec:10:b9:bd:4e:c3:fa:13:f9:
69:ac:b0:7a:be:78:62:50:eb:1d:71:bb:8d:b0:0d:
30:40:b5:0b:6f:7c:f3:6a:9c:3b:a3:68:c8:6d:e1:
17:0c:c2:6c:0e:c4:fc:e2:ee:9e:7f:78:9e:27:b4:
7d:e3:4c:0b:7b:57:68:d9:d3:66:9c:bc:94:3c:88:
7d:42:81:f6:fa:c9:62:79:a1:0a:51:43:e0:56:f4:
8a:48:fe:3a:da:cf:ad:e2:c6:0a:2f:28:dc:b4:a7:
b9:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:CA:05:AF:8D:BF:A2:95:F0:0D:22:3E:5E:36:FB:76:F2:85:53:C4
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963363a623030623a3a2f34382d3438203d3e20323132313439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c6:b00b::/48
Signature Algorithm: sha256WithRSAEncryption
ac:3e:dd:fe:dc:51:60:de:23:e7:90:67:8a:61:54:49:b5:74:
5f:9a:af:a4:3b:5a:19:83:70:76:b6:fb:4a:65:bd:bd:03:9b:
e6:cd:71:60:8a:52:99:a5:33:3a:36:c5:74:d6:64:ef:9f:d1:
9b:e6:a1:90:de:87:bd:1c:f1:47:9e:58:bd:44:fa:dc:02:15:
d8:cd:c5:4b:a0:69:5e:0e:1a:d5:28:a7:ad:de:fa:2a:75:9b:
17:71:ba:14:9f:2e:15:b5:5d:be:bb:ff:81:70:b9:f7:0d:15:
38:dc:11:db:ad:60:0e:be:ff:82:90:79:00:5c:f5:7d:4a:ca:
d7:44:2a:3a:db:a6:c1:96:26:dd:e4:38:d3:82:04:dd:52:aa:
9a:02:43:b3:7c:e8:b3:f7:69:50:f7:1e:a5:68:b0:86:eb:3a:
24:62:f2:a3:51:88:b9:9b:16:fa:77:ab:7a:3a:19:32:37:4b:
54:da:e6:74:ac:ac:43:1b:58:fa:24:09:dc:67:61:09:cb:94:
0c:ed:83:5c:8b:d5:33:e0:b5:c0:b2:d5:5e:9d:55:3c:cf:09:
20:aa:f8:8a:d8:e7:ea:9c:39:e2:9a:97:60:59:db:ab:be:d9:
7f:76:29:d2:6b:4c:f8:da:67:a4:c7:c7:5e:32:85:2f:97:78:
a3:b3:0d:e9
-----BEGIN CERTIFICATE-----
MIIFQDCCBCigAwIBAgIUPaaf5rE7Ve+G/Ljaf6dQ3STC7jcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZTk2ZDg1OTk2ZTkzNTRkMTAwNWU0NGM3ODFkMzhhZGNm
MTA4Mjg3MzAeFw0yNDA2MTkxMzU2MTlaFw0yNTA2MTgxNDAxMTlaMDMxMTAvBgNV
BAMTKENDQ0EwNUFGOERCRkEyOTVGMDBEMjIzRTVFMzZGQjc2RjI4NTUzQzQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgXnCVmco0sJdE70wS9lRWfxw9
x6xkkZ24y8QoKHzVIo78NAV07gwqRQDgQxSZ60bs+H3A2zXlhxRRlFgf0m1GoIZz
AP6N9cYSoNh5Qvsom77uF+ogVtswEWDJJiQodhgGMdcnfXHCDwDPxK0Cumds4aOc
6rxtrGvwjge1P07GKic4a+FDVzlXt9oBmILR2vavnvr8rSMcm4uCGewQub1Ow/oT
+WmssHq+eGJQ6x1xu42wDTBAtQtvfPNqnDujaMht4RcMwmwOxPzi7p5/eJ4ntH3j
TAt7V2jZ02acvJQ8iH1Cgfb6yWJ5oQpRQ+BW9IpI/jraz63ixgovKNy0p7kbAgMB
AAGjggJKMIICRjAdBgNVHQ4EFgQUzMoFr42/opXwDSI+Xjb7dvKFU8QwHwYDVR0j
BBgwFoAU6W2FmW6TVNEAXkTHgdOK3PEIKHMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvODExMTViYzYtMTBmNi00YWYzLWJhMDktOGI2ODdhNTZm
YmY1LzAvRTk2RDg1OTk2RTkzNTREMTAwNUU0NEM3ODFEMzhBRENGMTA4Mjg3My5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzZXMkZtVzZUVk5FQVhrVEhnZE9LM1BF
SUtITS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvODExMTViYzYt
MTBmNi00YWYzLWJhMDktOGI2ODdhNTZmYmY1LzAvMzI2MTMxMzEzYTMyMzk2MzM2
M2E2MjMwMzA2MjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzMjMxMzQzOS5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw
DwQCAAIwCQMHACoRKcawCzANBgkqhkiG9w0BAQsFAAOCAQEArD7d/txRYN4j55Bn
imFUSbV0X5qvpDtaGYNwdrb7SmW9vQOb5s1xYIpSmaUzOjbFdNZk75/Rm+ahkN6H
vRzxR55YvUT63AIV2M3FS6BpXg4a1Sinrd76KnWbF3G6FJ8uFbVdvrv/gXC59w0V
ONwR261gDr7/gpB5AFz1fUrK10QqOtumwZYm3eQ404IE3VKqmgJDs3zos/dpUPce
pWiwhus6JGLyo1GIuZsW+nerejoZMjdLVNrmdKysQxtY+iQJ3GdhCcuUDO2DXIvV
M+C1wLLVXp1VPM8JIKr4itjn6pw54pqXYFnbq77Zf3Yp0mtM+NpnpMfHXjKFL5d4
o7MN6Q==
-----END CERTIFICATE-----
Generated at Thu Nov 21 19:35:20 2024 by rpki-client on console-ams.rpki-client.org