Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fb30d3de-e574-4a23-a1bd-5f1fa05c53be/0/326130623a346530343a623030623a3a2f34382d3438203d3e20323135373531.roa
File: 326130623a346530343a623030623a3a2f34382d3438203d3e20323135373531.roa (raw, json)
Hash identifier: zAq8ds8BdjJQ5LxGQtB7S9WAls6KvLtSnOlbPiSZNhA=
Subject key identifier: 8D:82:2C:13:EE:EB:7F:80:7E:23:D0:B8:4E:71:7E:59:8E:4B:97:1A
Certificate issuer: /CN=fc59950e49df88985ab0727278320c684d2074be
Certificate serial: 43EA5099FF11274743D4FD8E2DA047FAEBC1CB0E
Authority key identifier: FC:59:95:0E:49:DF:88:98:5A:B0:72:72:78:32:0C:68:4D:20:74:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_FmVDknfiJhasHJyeDIMaE0gdL4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fb30d3de-e574-4a23-a1bd-5f1fa05c53be/0/326130623a346530343a623030623a3a2f34382d3438203d3e20323135373531.roa
Signing time: Sat 27 Apr 2024 15:41:51 +0000
ROA not before: Sat 27 Apr 2024 15:36:51 +0000
ROA not after: Sat 26 Apr 2025 15:41:51 +0000
asID: 215751
IP address blocks: 2a0b:4e04:b00b::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fb30d3de-e574-4a23-a1bd-5f1fa05c53be/0/FC59950E49DF88985AB0727278320C684D2074BE.crl
rsync://rsync.paas.rpki.ripe.net/repository/fb30d3de-e574-4a23-a1bd-5f1fa05c53be/0/FC59950E49DF88985AB0727278320C684D2074BE.mft
rsync://rpki.ripe.net/repository/DEFAULT/_FmVDknfiJhasHJyeDIMaE0gdL4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 23:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:ea:50:99:ff:11:27:47:43:d4:fd:8e:2d:a0:47:fa:eb:c1:cb:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc59950e49df88985ab0727278320c684d2074be
Validity
Not Before: Apr 27 15:36:51 2024 GMT
Not After : Apr 26 15:41:51 2025 GMT
Subject: CN=8D822C13EEEB7F807E23D0B84E717E598E4B971A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ee:7f:06:32:49:46:17:18:11:b8:7b:4e:a1:
e3:be:08:4a:2e:93:33:68:aa:d9:3c:a2:2b:e2:6a:
92:98:e8:13:97:23:9c:32:81:91:24:ad:99:d2:2f:
26:42:e2:36:24:a0:bd:f8:3f:7c:52:04:60:f5:be:
1a:f5:80:59:f0:af:31:f8:27:33:7d:e9:90:a9:65:
71:e7:d6:c9:1e:06:a9:c5:d6:17:87:04:b6:b0:8d:
5e:4f:e6:58:88:f7:4e:8c:d7:71:ec:d5:b2:26:6d:
5f:f7:f0:c2:13:67:87:9c:0d:11:4a:8a:17:a1:ae:
1c:01:22:ea:8a:43:5d:ea:70:d0:4f:45:09:08:c1:
a6:86:81:8f:b6:46:72:f0:19:d2:ee:3f:b9:dd:1a:
71:12:3f:e1:7f:4e:fe:f9:da:77:e1:0d:4b:57:93:
18:38:bc:83:2f:74:68:aa:87:f7:d3:84:be:52:6b:
5a:ec:97:26:e0:d2:22:b0:ca:73:99:28:3b:55:cc:
4b:9a:68:4e:06:23:76:df:12:64:77:07:d5:be:7a:
3b:a2:80:75:d3:26:69:03:aa:c0:0d:e7:92:f7:6a:
11:cb:2e:a6:01:b7:3b:85:95:8d:17:22:6c:66:0e:
ea:5b:19:51:7f:de:43:15:f4:f2:6b:ce:02:29:92:
f6:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:82:2C:13:EE:EB:7F:80:7E:23:D0:B8:4E:71:7E:59:8E:4B:97:1A
X509v3 Authority Key Identifier:
keyid:FC:59:95:0E:49:DF:88:98:5A:B0:72:72:78:32:0C:68:4D:20:74:BE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fb30d3de-e574-4a23-a1bd-5f1fa05c53be/0/FC59950E49DF88985AB0727278320C684D2074BE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_FmVDknfiJhasHJyeDIMaE0gdL4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fb30d3de-e574-4a23-a1bd-5f1fa05c53be/0/326130623a346530343a623030623a3a2f34382d3438203d3e20323135373531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:4e04:b00b::/48
Signature Algorithm: sha256WithRSAEncryption
2d:96:29:b1:25:8b:0f:ba:66:ea:26:1c:83:58:c6:3f:da:e4:
ce:03:13:d8:f2:1f:26:ec:fb:e9:9e:c5:98:db:a1:b9:fe:10:
be:e9:2b:eb:89:91:00:e0:61:4b:7b:08:0d:10:90:6d:8f:de:
e3:60:77:34:ac:de:ae:b1:59:d5:86:15:ca:ae:9c:34:50:6f:
ba:76:a5:79:89:5c:69:cc:2f:dc:24:37:32:e6:70:89:bf:5c:
82:11:39:c7:1d:07:05:0f:73:0a:e1:cf:c5:78:52:a1:b4:f8:
ae:0b:bd:aa:81:ba:0b:9b:ea:20:6e:e2:86:3d:c1:42:d6:80:
c2:e8:30:1b:e0:94:f5:9c:db:5b:8b:e1:c0:69:9b:7e:c5:27:
be:79:c0:1e:9b:85:90:c8:77:c8:d7:eb:9f:54:61:55:d0:92:
32:42:57:16:12:6a:46:48:cf:cd:af:02:f6:0c:32:e7:8f:07:
d0:bb:54:21:6b:9f:82:db:b8:cc:d9:92:80:b5:1b:d7:9e:00:
41:2d:55:55:bc:50:8a:10:96:9c:ac:18:28:62:18:11:38:7a:
01:6a:4a:63:7c:b2:bf:1b:0f:e5:ee:1e:96:fc:d8:63:66:b3:
4c:fc:1c:82:85:eb:1b:9d:f6:0e:6d:4a:f3:57:19:fc:d8:b0:
45:3e:32:35
-----BEGIN CERTIFICATE-----
MIIFQDCCBCigAwIBAgIUQ+pQmf8RJ0dD1P2OLaBH+uvByw4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZmM1OTk1MGU0OWRmODg5ODVhYjA3MjcyNzgzMjBjNjg0
ZDIwNzRiZTAeFw0yNDA0MjcxNTM2NTFaFw0yNTA0MjYxNTQxNTFaMDMxMTAvBgNV
BAMTKDhEODIyQzEzRUVFQjdGODA3RTIzRDBCODRFNzE3RTU5OEU0Qjk3MUEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCk7n8GMklGFxgRuHtOoeO+CEou
kzNoqtk8oiviapKY6BOXI5wygZEkrZnSLyZC4jYkoL34P3xSBGD1vhr1gFnwrzH4
JzN96ZCpZXHn1skeBqnF1heHBLawjV5P5liI906M13Hs1bImbV/38MITZ4ecDRFK
ihehrhwBIuqKQ13qcNBPRQkIwaaGgY+2RnLwGdLuP7ndGnESP+F/Tv752nfhDUtX
kxg4vIMvdGiqh/fThL5Sa1rslybg0iKwynOZKDtVzEuaaE4GI3bfEmR3B9W+ejui
gHXTJmkDqsAN55L3ahHLLqYBtzuFlY0XImxmDupbGVF/3kMV9PJrzgIpkvaVAgMB
AAGjggJKMIICRjAdBgNVHQ4EFgQUjYIsE+7rf4B+I9C4TnF+WY5LlxowHwYDVR0j
BBgwFoAU/FmVDknfiJhasHJyeDIMaE0gdL4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmIzMGQzZGUtZTU3NC00YTIzLWExYmQtNWYxZmEwNWM1
M2JlLzAvRkM1OTk1MEU0OURGODg5ODVBQjA3MjcyNzgzMjBDNjg0RDIwNzRCRS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL19GbVZEa25maUpoYXNISnllRElNYUUw
Z2RMNC5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmIzMGQzZGUt
ZTU3NC00YTIzLWExYmQtNWYxZmEwNWM1M2JlLzAvMzI2MTMwNjIzYTM0NjUzMDM0
M2E2MjMwMzA2MjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNTM3MzUzMS5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw
DwQCAAIwCQMHACoLTgSwCzANBgkqhkiG9w0BAQsFAAOCAQEALZYpsSWLD7pm6iYc
g1jGP9rkzgMT2PIfJuz76Z7FmNuhuf4Qvukr64mRAOBhS3sIDRCQbY/e42B3NKze
rrFZ1YYVyq6cNFBvunaleYlcacwv3CQ3MuZwib9cghE5xx0HBQ9zCuHPxXhSobT4
rgu9qoG6C5vqIG7ihj3BQtaAwugwG+CU9ZzbW4vhwGmbfsUnvnnAHpuFkMh3yNfr
n1RhVdCSMkJXFhJqRkjPza8C9gwy548H0LtUIWufgtu4zNmSgLUb154AQS1VVbxQ
ihCWnKwYKGIYETh6AWpKY3yyvxsP5e4elvzYY2azTPwcgoXrG532Dm1K81cZ/Niw
RT4yNQ==
-----END CERTIFICATE-----
Generated at Sat Jun 8 06:22:32 2024 by rpki-client on console-fra.rpki-client.org