Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963363a623030623a3a2f34382d3438203d3e20323132313439.roa
File: 326131313a323963363a623030623a3a2f34382d3438203d3e20323132313439.roa (raw, json)
Hash identifier: dFak6NbVxf+c7c0K77AGB5kzXDf2f1QSDe3Zz89IUro=
Subject key identifier: 44:07:14:1F:17:3B:53:5F:2E:17:12:48:49:15:31:30:AD:95:8A:B4
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 2A924C00A596B3907C9F308F13E7D1798DFB991B
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963363a623030623a3a2f34382d3438203d3e20323132313439.roa
Signing time: Wed 19 Jul 2023 13:30:49 +0000
ROA not before: Wed 19 Jul 2023 13:25:49 +0000
ROA not after: Wed 17 Jul 2024 13:30:49 +0000
asID: 212149
IP address blocks: 2a11:29c6:b00b::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 May 2024 23:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:92:4c:00:a5:96:b3:90:7c:9f:30:8f:13:e7:d1:79:8d:fb:99:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Jul 19 13:25:49 2023 GMT
Not After : Jul 17 13:30:49 2024 GMT
Subject: CN=4407141F173B535F2E17124849153130AD958AB4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:d9:f7:82:c9:d8:c8:ee:52:46:8b:0b:84:b7:
2a:be:c5:73:f1:92:be:cd:b8:f8:79:5c:e0:b8:84:
0d:d6:95:6f:2b:48:67:72:a9:78:c8:02:d7:af:7e:
13:43:b0:da:d0:49:d5:8c:9b:5f:00:53:8a:eb:44:
78:c9:56:4d:52:a1:cc:34:0d:45:e7:01:4e:53:46:
5e:49:fc:f5:0f:9e:e9:80:93:15:5c:28:c1:5a:eb:
24:64:e0:79:93:e2:99:6a:7c:59:00:a7:c2:06:29:
d8:d0:53:dd:64:16:b6:87:c8:07:88:d9:d7:b1:7d:
c5:bc:43:58:fb:e5:6e:8d:31:ba:63:de:0a:53:c9:
8b:bb:6a:ae:f8:ce:c8:ea:a0:23:1f:9e:ad:df:06:
27:92:b8:fb:7b:a3:a5:31:7e:b3:e4:6c:3b:a8:a9:
f1:a5:32:30:ad:70:8b:87:e1:c5:11:a3:ca:79:df:
fa:de:b1:4f:ff:20:01:ea:35:31:ce:60:9e:e2:83:
26:a0:be:25:fc:7b:06:ae:63:33:c5:59:8f:6f:bc:
ce:4c:d9:e2:3c:1f:2d:d5:6e:5b:d3:15:3e:bb:5a:
dc:b5:28:ad:2a:38:a2:3e:7c:bb:b0:83:c9:79:c4:
5e:1c:4b:c6:36:46:ca:2a:5d:2a:e6:33:79:59:f2:
e3:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:07:14:1F:17:3B:53:5F:2E:17:12:48:49:15:31:30:AD:95:8A:B4
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/326131313a323963363a623030623a3a2f34382d3438203d3e20323132313439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c6:b00b::/48
Signature Algorithm: sha256WithRSAEncryption
3a:0c:6d:d6:b8:f0:00:ad:d9:1d:eb:01:d0:34:08:5f:ec:46:
93:b3:bf:95:91:4c:20:94:3d:49:c2:f5:3a:94:b2:40:54:36:
96:3e:4f:4e:bc:3e:71:1f:ee:89:30:34:08:18:69:c6:a0:bd:
fc:65:86:73:9b:28:b8:7b:52:8e:68:cf:8b:34:f7:cd:25:f2:
f5:fb:9b:cf:83:8c:4c:de:b8:a4:cc:49:87:0c:f2:e4:be:7c:
b7:8a:35:02:2e:14:84:39:0c:92:70:e8:26:27:41:3e:ee:bf:
02:6c:c5:3a:8f:6b:47:77:a2:18:91:e8:7c:1d:0d:2e:2c:7f:
5a:cb:81:bf:40:43:45:c9:6f:17:5b:92:a5:b1:30:e1:5c:63:
bd:ba:06:d4:22:5d:47:b2:92:0d:9a:68:fa:0b:67:94:d3:cf:
79:c2:8b:29:4f:b6:76:ac:16:83:fc:cc:e1:16:9f:bc:c6:3b:
e9:3c:52:b7:5c:18:35:3f:b6:cc:a9:34:7e:21:7f:d1:de:4d:
f2:25:f9:05:48:32:59:e1:68:1c:16:36:f8:c2:39:cc:8d:e6:
99:a8:92:14:5a:29:0a:f5:e6:1d:42:f1:3b:68:b4:df:f1:c4:
73:5e:71:63:d1:78:47:e0:04:fd:94:60:b5:91:d4:bc:1a:8d:
3c:5e:8d:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 09:34:36 2024 by rpki-client on console-fra.rpki-client.org