Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fb30d3de-e574-4a23-a1bd-5f1fa05c53be/0/326130623a346530343a3a2f34382d3438203d3e20323135373531.roa
File: 326130623a346530343a3a2f34382d3438203d3e20323135373531.roa (raw, json)
Hash identifier: ewo3PZUnm/7XyINA7A8NOVvmlxnNkJ6jUXEdGoumThA=
Subject key identifier: 3E:20:10:E8:BB:2C:4F:2B:E5:B9:D1:08:58:A9:36:DE:DE:3D:4E:E5
Certificate issuer: /CN=fc59950e49df88985ab0727278320c684d2074be
Certificate serial: 5E17624807708B24A146F4471804DAE6FBB41704
Authority key identifier: FC:59:95:0E:49:DF:88:98:5A:B0:72:72:78:32:0C:68:4D:20:74:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_FmVDknfiJhasHJyeDIMaE0gdL4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fb30d3de-e574-4a23-a1bd-5f1fa05c53be/0/326130623a346530343a3a2f34382d3438203d3e20323135373531.roa
Signing time: Sat 27 Apr 2024 15:41:51 +0000
ROA not before: Sat 27 Apr 2024 15:36:51 +0000
ROA not after: Sat 26 Apr 2025 15:41:51 +0000
asID: 215751
IP address blocks: 2a0b:4e04::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fb30d3de-e574-4a23-a1bd-5f1fa05c53be/0/FC59950E49DF88985AB0727278320C684D2074BE.crl
rsync://rsync.paas.rpki.ripe.net/repository/fb30d3de-e574-4a23-a1bd-5f1fa05c53be/0/FC59950E49DF88985AB0727278320C684D2074BE.mft
rsync://rpki.ripe.net/repository/DEFAULT/_FmVDknfiJhasHJyeDIMaE0gdL4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 10:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:17:62:48:07:70:8b:24:a1:46:f4:47:18:04:da:e6:fb:b4:17:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc59950e49df88985ab0727278320c684d2074be
Validity
Not Before: Apr 27 15:36:51 2024 GMT
Not After : Apr 26 15:41:51 2025 GMT
Subject: CN=3E2010E8BB2C4F2BE5B9D10858A936DEDE3D4EE5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:a5:4f:15:c7:4a:f7:16:7d:b5:69:d9:93:96:
ec:3a:71:4f:20:32:64:4e:7d:68:e8:a2:9d:52:00:
15:79:1b:ea:2a:c1:8e:ad:67:36:15:8e:06:3a:de:
ee:09:66:06:89:44:86:a0:7d:20:a6:60:97:21:33:
99:80:ca:fa:ec:66:4e:c5:44:28:1b:58:18:e1:6e:
cd:6f:9b:7a:1b:b0:d6:f1:0b:08:7b:d7:7b:e8:98:
9f:6e:5c:80:c2:01:5e:82:07:c8:16:9c:5a:b5:76:
dd:95:15:1d:1b:49:b6:20:7a:1f:33:56:15:4d:3d:
59:95:48:65:06:6a:a5:57:00:3f:1c:b3:75:a7:01:
d3:9c:de:27:23:e4:3f:50:c0:9f:e8:e9:ec:bf:65:
e4:c2:fd:c0:e5:f1:cf:3d:39:29:03:3d:e8:cc:99:
0e:da:a4:8e:dc:ca:dd:ea:6e:23:6c:2c:f9:5a:7f:
fa:04:3a:6a:73:99:ec:e5:e2:38:36:be:42:51:86:
25:64:f1:10:d2:a8:ea:93:12:af:b3:4e:02:e7:a4:
80:36:b8:5a:ab:52:99:ca:98:87:56:3c:f3:97:e0:
5c:0c:c5:b1:a3:15:c6:8e:fb:2d:03:89:a5:d2:44:
97:f4:40:28:d0:9c:17:8e:ad:93:ad:4b:25:39:e1:
d8:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:20:10:E8:BB:2C:4F:2B:E5:B9:D1:08:58:A9:36:DE:DE:3D:4E:E5
X509v3 Authority Key Identifier:
keyid:FC:59:95:0E:49:DF:88:98:5A:B0:72:72:78:32:0C:68:4D:20:74:BE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fb30d3de-e574-4a23-a1bd-5f1fa05c53be/0/FC59950E49DF88985AB0727278320C684D2074BE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_FmVDknfiJhasHJyeDIMaE0gdL4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fb30d3de-e574-4a23-a1bd-5f1fa05c53be/0/326130623a346530343a3a2f34382d3438203d3e20323135373531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:4e04::/48
Signature Algorithm: sha256WithRSAEncryption
54:64:39:fa:81:a9:1a:ed:77:10:27:9f:3e:24:0a:85:53:8c:
c0:6a:b4:18:65:62:9d:d9:cf:e3:35:3a:4a:98:a2:31:ab:a1:
07:01:99:10:ca:96:de:d2:04:c3:60:b8:f9:4b:9e:9b:05:89:
bb:29:2e:bf:f8:c3:c4:14:2f:fd:e7:19:35:39:c2:db:d3:55:
d3:79:58:7d:c8:b7:e4:f3:99:dd:bb:79:74:e2:c8:ed:23:0d:
7c:ac:c3:b2:d6:9f:f8:58:3c:9b:46:b9:79:6f:91:75:26:4b:
ee:31:e7:a5:2e:c8:63:32:2d:63:af:6e:cb:21:2a:ea:2b:ab:
44:5c:b1:e8:9a:34:31:52:9a:5b:54:f4:50:c6:1a:3c:1a:60:
ec:ce:3f:f6:ac:2c:18:00:6a:75:fc:39:fc:d0:68:14:a5:3a:
b9:05:14:ec:e3:01:85:54:4f:3f:a8:9a:7c:1d:49:61:c8:36:
2c:ba:d0:00:56:eb:b7:79:fa:15:fc:c7:62:a9:d2:bd:4d:97:
32:88:24:9e:1c:f2:be:d8:e2:50:a9:dc:44:8c:87:c8:ac:b4:
3b:96:41:47:6c:16:37:5b:c8:d4:8c:69:5f:cf:52:e6:6f:34:
8d:e4:10:cd:b9:0b:fc:74:57:1d:75:85:38:56:6d:55:d4:eb:
24:40:b7:3e
-----BEGIN CERTIFICATE-----
MIIFNjCCBB6gAwIBAgIUXhdiSAdwiyShRvRHGATa5vu0FwQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZmM1OTk1MGU0OWRmODg5ODVhYjA3MjcyNzgzMjBjNjg0
ZDIwNzRiZTAeFw0yNDA0MjcxNTM2NTFaFw0yNTA0MjYxNTQxNTFaMDMxMTAvBgNV
BAMTKDNFMjAxMEU4QkIyQzRGMkJFNUI5RDEwODU4QTkzNkRFREUzRDRFRTUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqpU8Vx0r3Fn21admTluw6cU8g
MmROfWjoop1SABV5G+oqwY6tZzYVjgY63u4JZgaJRIagfSCmYJchM5mAyvrsZk7F
RCgbWBjhbs1vm3obsNbxCwh713vomJ9uXIDCAV6CB8gWnFq1dt2VFR0bSbYgeh8z
VhVNPVmVSGUGaqVXAD8cs3WnAdOc3icj5D9QwJ/o6ey/ZeTC/cDl8c89OSkDPejM
mQ7apI7cyt3qbiNsLPlaf/oEOmpzmezl4jg2vkJRhiVk8RDSqOqTEq+zTgLnpIA2
uFqrUpnKmIdWPPOX4FwMxbGjFcaO+y0DiaXSRJf0QCjQnBeOrZOtSyU54djXAgMB
AAGjggJAMIICPDAdBgNVHQ4EFgQUPiAQ6LssTyvludEIWKk23t49TuUwHwYDVR0j
BBgwFoAU/FmVDknfiJhasHJyeDIMaE0gdL4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmIzMGQzZGUtZTU3NC00YTIzLWExYmQtNWYxZmEwNWM1
M2JlLzAvRkM1OTk1MEU0OURGODg5ODVBQjA3MjcyNzgzMjBDNjg0RDIwNzRCRS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL19GbVZEa25maUpoYXNISnllRElNYUUw
Z2RMNC5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmIzMGQzZGUt
ZTU3NC00YTIzLWExYmQtNWYxZmEwNWM1M2JlLzAvMzI2MTMwNjIzYTM0NjUzMDM0
M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIzMTM1MzczNTMxLnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcA
KgtOBAAAMA0GCSqGSIb3DQEBCwUAA4IBAQBUZDn6gaka7XcQJ58+JAqFU4zAarQY
ZWKd2c/jNTpKmKIxq6EHAZkQypbe0gTDYLj5S56bBYm7KS6/+MPEFC/95xk1OcLb
01XTeVh9yLfk85ndu3l04sjtIw18rMOy1p/4WDybRrl5b5F1JkvuMeelLshjMi1j
r27LISrqK6tEXLHomjQxUppbVPRQxho8GmDszj/2rCwYAGp1/Dn80GgUpTq5BRTs
4wGFVE8/qJp8HUlhyDYsutAAVuu3efoV/MdiqdK9TZcyiCSeHPK+2OJQqdxEjIfI
rLQ7lkFHbBY3W8jUjGlfz1LmbzSN5BDNuQv8dFcddYU4Vm1V1OskQLc+
-----END CERTIFICATE-----
Generated at Sat Jun 1 13:56:00 2024 by rpki-client on console-fra.rpki-client.org