Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fb30d3de-e574-4a23-a1bd-5f1fa05c53be/0/326130623a346530343a663030643a3a2f34382d3438203d3e20323135373531.roa
File: 326130623a346530343a663030643a3a2f34382d3438203d3e20323135373531.roa (raw, json)
Hash identifier: FB80Vp+AvselVO2O7ciKthn7b69HsJaE/OrxatwU9uI=
Subject key identifier: 29:7E:AD:EC:5E:88:4C:EF:DF:DC:B9:A0:02:88:97:EF:9A:5B:5C:73
Certificate issuer: /CN=fc59950e49df88985ab0727278320c684d2074be
Certificate serial: 050A1EF8EDB744876CFFD18EE6C3B0AD89474B64
Authority key identifier: FC:59:95:0E:49:DF:88:98:5A:B0:72:72:78:32:0C:68:4D:20:74:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_FmVDknfiJhasHJyeDIMaE0gdL4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fb30d3de-e574-4a23-a1bd-5f1fa05c53be/0/326130623a346530343a663030643a3a2f34382d3438203d3e20323135373531.roa
Signing time: Sat 27 Apr 2024 15:41:51 +0000
ROA not before: Sat 27 Apr 2024 15:36:51 +0000
ROA not after: Sat 26 Apr 2025 15:41:51 +0000
asID: 215751
IP address blocks: 2a0b:4e04:f00d::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fb30d3de-e574-4a23-a1bd-5f1fa05c53be/0/FC59950E49DF88985AB0727278320C684D2074BE.crl
rsync://rsync.paas.rpki.ripe.net/repository/fb30d3de-e574-4a23-a1bd-5f1fa05c53be/0/FC59950E49DF88985AB0727278320C684D2074BE.mft
rsync://rpki.ripe.net/repository/DEFAULT/_FmVDknfiJhasHJyeDIMaE0gdL4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 23:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:0a:1e:f8:ed:b7:44:87:6c:ff:d1:8e:e6:c3:b0:ad:89:47:4b:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc59950e49df88985ab0727278320c684d2074be
Validity
Not Before: Apr 27 15:36:51 2024 GMT
Not After : Apr 26 15:41:51 2025 GMT
Subject: CN=297EADEC5E884CEFDFDCB9A0028897EF9A5B5C73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:d9:62:b9:dd:77:4d:12:7f:e9:98:d7:c6:8d:
5c:83:42:13:79:2d:24:f2:9d:af:2e:8a:8c:3f:ca:
ab:c5:dc:db:f8:46:3a:61:83:d5:69:f6:ac:5c:a6:
aa:0f:ff:26:01:8d:d6:13:c8:f0:31:9c:a6:fb:8f:
63:1a:8b:85:63:23:72:a6:7d:0c:af:18:76:cf:da:
ea:6c:e1:36:c7:8e:77:c9:70:a6:14:e8:87:e2:2d:
83:19:d1:6c:bb:9f:32:4e:73:9c:94:41:56:d6:fd:
9c:d9:2a:d6:f5:1a:d0:f7:35:51:55:ef:f4:87:f2:
96:d6:bf:c5:e8:6a:7e:6a:a6:dd:28:41:5a:ca:2a:
b9:3a:4e:a4:43:c2:d5:07:b0:a4:4f:eb:ac:38:7e:
1d:ec:e2:8f:4e:da:4b:85:b4:0b:d5:4f:5f:36:de:
23:c1:f7:f1:48:6f:3c:ef:df:eb:1a:47:31:2c:ca:
2c:35:e3:fc:87:72:1c:31:df:f2:02:e6:47:e8:d1:
75:ad:c1:64:9d:07:50:32:9c:ca:7d:9d:1e:78:e3:
28:2b:ce:ed:92:b3:58:c3:09:8e:14:66:96:62:cd:
8a:31:06:51:68:5c:51:46:ed:9f:ea:85:aa:33:c2:
f3:f1:72:e8:19:f4:65:7f:81:3f:ec:56:c1:84:cf:
4d:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:7E:AD:EC:5E:88:4C:EF:DF:DC:B9:A0:02:88:97:EF:9A:5B:5C:73
X509v3 Authority Key Identifier:
keyid:FC:59:95:0E:49:DF:88:98:5A:B0:72:72:78:32:0C:68:4D:20:74:BE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fb30d3de-e574-4a23-a1bd-5f1fa05c53be/0/FC59950E49DF88985AB0727278320C684D2074BE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_FmVDknfiJhasHJyeDIMaE0gdL4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fb30d3de-e574-4a23-a1bd-5f1fa05c53be/0/326130623a346530343a663030643a3a2f34382d3438203d3e20323135373531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:4e04:f00d::/48
Signature Algorithm: sha256WithRSAEncryption
0f:06:d8:04:2b:b7:e7:58:47:6f:8d:55:86:4e:09:7c:36:5f:
13:a8:e9:7a:cf:15:f9:ec:b8:61:46:f2:88:80:78:63:c7:6a:
75:37:4c:b8:f7:20:4c:f4:cb:64:d9:46:10:64:eb:a6:d8:69:
77:04:b3:a0:3e:40:a9:f6:e9:66:f9:88:2f:68:d7:d8:7e:f8:
3c:98:d4:c6:91:93:93:22:4f:f3:21:d7:9d:8f:60:7d:d2:62:
b7:fd:cb:e0:91:28:d2:d6:83:fc:42:62:2d:67:f9:db:3a:f7:
64:e4:98:02:af:01:fd:d0:30:42:17:5d:4a:44:9a:69:6c:a9:
56:3d:a2:f0:f1:11:e8:32:8a:08:1b:6f:47:b3:6e:0d:f3:b8:
74:3e:51:aa:34:22:87:d9:1f:4a:51:9c:60:13:ad:03:3d:de:
7b:37:dc:bd:87:05:99:3e:60:ed:ff:80:96:ca:66:fd:59:22:
71:31:5f:3b:ca:cd:ee:69:a6:9b:3f:d2:ce:cd:e0:7b:3a:85:
c0:4f:6b:01:14:7b:d0:93:b3:4f:75:3d:2c:e6:fc:73:63:8b:
79:ac:42:fd:a1:17:ef:94:de:78:29:b6:22:4e:df:18:96:f0:
f9:a7:9e:75:62:64:5f:d5:fa:d6:2b:27:64:db:20:11:b8:d4:
61:50:56:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 8 06:22:32 2024 by rpki-client on console-fra.rpki-client.org