Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/323030313a316236303a3a2f32392d3239203d3e203331313033.roa
File: 323030313a316236303a3a2f32392d3239203d3e203331313033.roa (raw, json)
Hash identifier: shSDVh8r+fPqJx0b0TDURGPFBAhnUJHjFUW7sVETEGw=
Subject key identifier: A6:B5:5F:EE:09:53:83:ED:36:B3:77:CF:64:C3:A4:9F:2B:41:CB:C6
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 6D746FF0EAA217EAB838315D8C8F6EEBD5B04841
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/323030313a316236303a3a2f32392d3239203d3e203331313033.roa
Signing time: Fri 31 May 2024 09:35:29 +0000
ROA not before: Fri 31 May 2024 09:30:29 +0000
ROA not after: Fri 30 May 2025 09:35:29 +0000
asID: 31103
IP address blocks: 2001:1b60::/29 maxlen: 29
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:74:6f:f0:ea:a2:17:ea:b8:38:31:5d:8c:8f:6e:eb:d5:b0:48:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: May 31 09:30:29 2024 GMT
Not After : May 30 09:35:29 2025 GMT
Subject: CN=A6B55FEE095383ED36B377CF64C3A49F2B41CBC6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:4f:f7:0f:17:6e:87:8a:96:7d:2b:24:bb:e6:
5d:fa:2b:90:a6:6d:9b:71:ad:b0:f1:e4:e9:e7:d3:
b8:a1:be:c0:99:ae:63:ef:f8:4f:1a:a2:28:9d:a6:
44:78:1b:7a:97:32:ef:45:a9:74:f2:6d:32:dd:c4:
45:06:19:18:28:97:e1:df:46:8c:09:5a:70:5f:78:
37:22:1c:a1:5e:70:75:1d:e5:bd:0b:ea:fb:02:b5:
6a:b8:12:5f:43:c3:80:f0:62:93:9e:4e:e3:0c:71:
63:6b:0d:6e:8a:76:ee:67:c9:f5:04:f0:85:a5:63:
0a:af:76:56:ce:ea:52:cc:84:a3:d5:e9:ca:ac:b9:
26:3e:7d:86:07:72:b4:af:bd:db:87:cb:89:32:61:
a2:56:83:1c:b9:90:0d:50:1a:cd:22:e7:8c:79:5e:
f1:e9:db:e5:16:85:9c:fa:e8:be:e0:f1:1e:1c:2b:
09:cc:df:94:4f:15:80:71:ad:1b:98:c4:ab:28:ff:
f7:c1:a3:58:a9:66:16:05:29:bc:4a:2b:6e:1b:38:
2b:d6:57:a1:8a:7e:47:d1:4e:7a:e9:6c:1c:4d:6b:
34:d5:5c:1b:48:cd:f2:4b:dd:4a:53:3e:09:8d:35:
2e:33:a3:56:ed:70:fb:9e:13:4f:1d:82:1d:bd:cc:
85:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:B5:5F:EE:09:53:83:ED:36:B3:77:CF:64:C3:A4:9F:2B:41:CB:C6
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/323030313a316236303a3a2f32392d3239203d3e203331313033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:1b60::/29
Signature Algorithm: sha256WithRSAEncryption
02:16:a8:a9:08:f3:09:dc:da:7b:56:93:15:79:55:28:c1:be:
2d:71:d9:13:1a:10:cd:5a:28:c1:8b:c0:48:e0:fb:dc:af:6a:
9d:bb:59:a7:f2:fa:9c:d7:0d:45:66:cf:80:ee:86:37:af:6c:
73:63:83:eb:76:3b:85:f5:1e:5c:74:14:dd:a5:b5:4c:26:0d:
27:ef:28:0b:90:7e:df:14:28:63:26:fb:cc:cf:0f:f9:5e:9b:
b5:c0:d2:2b:15:0d:74:a9:7c:2b:51:6d:c4:c0:6b:61:c2:c6:
69:4a:08:f3:e0:ac:fc:cd:a4:84:14:c0:e4:c9:d3:a3:87:83:
b1:68:f5:fe:fc:5e:39:08:c2:a1:9b:8b:1a:fc:16:3e:b9:ed:
1b:ae:42:25:11:70:d1:e8:2a:43:a4:7a:41:93:b0:0f:3e:51:
16:c3:4b:97:24:5e:dc:12:7f:a6:9f:17:de:cc:b0:90:53:07:
41:83:d0:ef:b4:a7:84:7c:8b:bc:4e:bc:b1:20:a4:ef:d2:52:
76:bc:23:34:53:3a:2f:2f:b5:b0:8c:b4:12:3b:c8:7b:e4:e9:
1a:c2:0a:d3:1e:42:cb:3b:08:3c:01:a1:1e:25:89:fa:96:db:
e3:2e:f5:3e:ab:6c:4b:12:e6:3e:dc:02:c1:b5:11:06:02:f4:
39:35:a0:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 11:54:14 2024 by rpki-client on console-fra.rpki-client.org