Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/326131313a663263303a3a2f34382d3438203d3e20323037393630.roa
File: 326131313a663263303a3a2f34382d3438203d3e20323037393630.roa (raw, json)
Hash identifier: HkvoGji/bJJMnGm9GWMIxzauYqijhkJlxUEztFZSBp8=
Subject key identifier: 34:E9:15:98:CF:0A:BE:8C:56:F6:20:45:52:84:E0:6A:73:CD:CB:C0
Certificate issuer: /CN=0839a93dab544c296ffa143456844a8b2818b1d0
Certificate serial: 754E9B060FC69D4861B01EAA039D8F3B975FFE91
Authority key identifier: 08:39:A9:3D:AB:54:4C:29:6F:FA:14:34:56:84:4A:8B:28:18:B1:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/326131313a663263303a3a2f34382d3438203d3e20323037393630.roa
Signing time: Sun 30 Jun 2024 12:15:22 +0000
ROA not before: Sun 30 Jun 2024 12:10:22 +0000
ROA not after: Sun 29 Jun 2025 12:15:22 +0000
asID: 207960
IP address blocks: 2a11:f2c0::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl
rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:4e:9b:06:0f:c6:9d:48:61:b0:1e:aa:03:9d:8f:3b:97:5f:fe:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0839a93dab544c296ffa143456844a8b2818b1d0
Validity
Not Before: Jun 30 12:10:22 2024 GMT
Not After : Jun 29 12:15:22 2025 GMT
Subject: CN=34E91598CF0ABE8C56F620455284E06A73CDCBC0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:f0:1b:21:81:8b:98:90:19:c9:0e:53:59:05:
79:b3:9a:2e:2f:91:c6:c5:51:a5:0b:ca:e5:38:b8:
d7:16:6e:54:92:52:8a:76:6d:7b:f4:05:63:fc:07:
e7:ac:36:25:9b:f1:e0:87:c3:4d:dc:62:8e:85:71:
e1:08:d9:9d:6c:6e:d4:ec:b8:1b:e1:9e:0a:d7:3d:
9a:75:a0:ec:38:0b:b6:c6:11:58:78:fa:88:57:ca:
f5:03:2e:57:81:bb:79:1a:e0:4b:37:99:b2:41:d6:
a7:b6:25:ee:3e:30:78:4d:b4:79:92:00:4e:56:32:
af:bb:35:c8:8c:af:1c:be:0d:82:cf:aa:89:0f:b6:
f7:7d:3a:cf:7d:14:51:14:28:13:ee:33:25:fc:95:
32:73:5b:48:8e:93:63:0a:e2:f6:8c:f0:03:c0:8a:
5c:bb:63:e4:e7:3c:e1:40:64:d8:d4:01:07:16:04:
cb:b2:5b:dc:e5:a7:f5:5d:f6:dc:54:07:5f:73:72:
e3:22:53:cf:1e:38:9e:b5:a2:f3:11:66:bc:d1:80:
7a:8c:ea:b6:a1:0e:8b:58:d6:cf:2f:3a:93:5a:7d:
fa:5d:0b:02:57:06:c9:3f:2c:06:86:a1:63:05:60:
3a:ca:98:58:f0:6d:8a:87:6f:ec:48:f8:6d:e5:61:
be:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:E9:15:98:CF:0A:BE:8C:56:F6:20:45:52:84:E0:6A:73:CD:CB:C0
X509v3 Authority Key Identifier:
keyid:08:39:A9:3D:AB:54:4C:29:6F:FA:14:34:56:84:4A:8B:28:18:B1:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/326131313a663263303a3a2f34382d3438203d3e20323037393630.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:f2c0::/48
Signature Algorithm: sha256WithRSAEncryption
b4:03:03:3a:f6:00:de:97:7a:e4:98:95:33:8b:31:b2:da:9e:
96:5a:7d:ca:ad:1f:57:48:4e:32:9e:dd:33:ea:0a:69:c8:b0:
19:cf:b8:70:6d:6f:1d:76:cf:6b:71:9a:ac:96:f4:7c:c1:06:
04:70:fd:66:76:78:59:68:49:04:bd:c0:ef:d2:33:dc:b4:ba:
95:91:ee:9d:e0:2e:9f:e1:7b:8c:80:13:1b:31:f3:3a:7a:6a:
78:b8:42:4a:a0:b6:3e:12:55:7d:3a:ee:18:96:b9:68:7f:6c:
0e:98:0e:73:f3:10:6f:76:e1:cd:c1:61:29:a6:ec:35:bb:cc:
a5:75:27:b3:7c:6d:f7:fd:05:28:d3:ac:22:d1:e5:f3:6c:92:
52:96:19:1f:48:7c:91:ee:0b:fb:eb:3a:39:04:3d:79:fd:fa:
0d:cc:3c:a0:33:c2:75:6f:8f:3e:4f:af:26:b1:41:b4:47:13:
08:1a:2b:df:88:da:ed:a4:1d:0d:d4:dd:d1:65:e7:39:ed:c4:
16:1c:31:2a:8b:a7:be:58:fe:da:c6:b7:b5:4a:db:a8:b9:4a:
98:07:27:9c:0c:af:90:16:df:fb:37:68:0a:ed:41:3d:30:19:
c0:70:1b:d9:d6:9c:f5:96:9e:ad:fc:60:18:8b:0e:8f:a0:43:
b7:8a:ec:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 06:13:28 2024 by rpki-client on console-ams.rpki-client.org