Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a6130303a3a2f34302d3438203d3e20323135303834.roa
File: 326131343a373538313a6130303a3a2f34302d3438203d3e20323135303834.roa (raw, json)
Hash identifier: IiMIIlms0Vi7s1565jTm5ag3VZ7AmFgaLufQz/xH28U=
Subject key identifier: C1:A6:A6:9E:75:4E:55:49:F1:18:8A:BC:17:DE:3E:E5:A8:3B:F8:BF
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 63A8106C650A175708CEB8058AC89276B8949EE2
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a6130303a3a2f34302d3438203d3e20323135303834.roa
Signing time: Wed 29 May 2024 16:39:32 +0000
ROA not before: Wed 29 May 2024 16:34:32 +0000
ROA not after: Wed 28 May 2025 16:39:32 +0000
asID: 215084
IP address blocks: 2a14:7581:a00::/40 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 01 Jul 2024 14:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:a8:10:6c:65:0a:17:57:08:ce:b8:05:8a:c8:92:76:b8:94:9e:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: May 29 16:34:32 2024 GMT
Not After : May 28 16:39:32 2025 GMT
Subject: CN=C1A6A69E754E5549F1188ABC17DE3EE5A83BF8BF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:cd:2d:3d:e1:fd:c4:27:3f:6a:cd:08:38:0a:
55:af:56:6a:52:d3:84:64:6e:ce:e3:53:b4:04:1b:
39:cb:47:a5:bd:e2:cb:a3:b8:e0:de:db:bd:60:6b:
69:3d:0f:99:b9:ed:d5:4b:22:50:30:37:7b:ce:24:
80:6e:55:8d:d5:84:6f:22:fd:e4:24:4d:f6:be:83:
6f:30:6a:a2:1c:33:ec:da:67:af:14:03:93:c6:66:
de:d8:6c:15:6f:55:0c:6c:4c:f1:7e:4a:a9:76:3e:
19:9e:a4:63:ee:ab:c5:29:74:fa:f8:29:1b:90:e1:
e0:2c:e4:24:e9:b4:0d:46:99:40:67:4c:71:56:f6:
55:ad:39:44:40:12:42:d4:e5:b3:8d:ac:53:e7:8f:
6d:5b:39:09:da:ca:80:40:fe:ca:75:29:0a:08:99:
8e:01:91:3f:b9:0d:de:48:c3:7a:e0:44:8c:ac:3a:
cc:99:8a:37:42:68:19:b6:4a:ab:68:5a:f1:10:43:
52:7f:f7:53:80:14:66:60:1c:a3:a4:58:1d:b7:e4:
9a:6e:b2:10:91:7e:8a:12:92:10:8a:0e:eb:f0:5a:
25:ee:dd:a6:98:ca:bf:69:1b:08:12:f1:36:b0:c7:
7d:cd:61:53:fc:54:dc:11:96:ef:26:5f:dd:ac:66:
5f:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:A6:A6:9E:75:4E:55:49:F1:18:8A:BC:17:DE:3E:E5:A8:3B:F8:BF
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a6130303a3a2f34302d3438203d3e20323135303834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:a00::/40
Signature Algorithm: sha256WithRSAEncryption
11:96:b4:98:a7:d3:c9:a7:fe:91:24:96:64:33:ae:61:9f:59:
e7:f4:09:86:46:56:c9:b9:4d:76:23:d6:74:d1:c6:a6:1e:87:
9f:16:de:7e:a2:d4:21:41:24:21:54:62:b6:a6:48:8f:aa:73:
a9:e3:65:17:b6:ab:77:4d:8e:6f:63:3d:3e:6d:1d:80:26:5e:
60:ea:13:49:0f:e2:39:5b:b8:38:68:1f:df:f7:1a:b9:a6:f6:
5c:da:35:f3:39:af:0a:31:45:fc:fa:5e:ca:f9:9c:67:4b:df:
6f:86:e8:53:41:e2:89:5c:87:83:c5:70:6d:60:24:2f:ac:9e:
55:6b:a8:0c:7e:f4:ce:67:8f:6e:a1:1f:d8:50:51:49:1e:38:
76:4d:b6:cf:9e:4e:40:8c:5a:0f:9a:3c:ae:35:22:6e:81:3e:
72:20:13:c5:8d:d9:a3:e0:e4:0d:bc:ab:92:5d:08:64:6c:4d:
a7:43:e2:0e:40:d3:73:99:03:c6:6d:54:6a:a6:68:84:1d:1a:
4d:bc:a0:2f:da:f1:ae:92:ba:79:70:36:1c:cf:d6:9a:01:9f:
cf:6f:92:de:4b:0d:40:f9:3e:bb:36:f0:ae:04:43:a1:7d:63:
6d:df:70:0e:44:82:da:7c:49:3e:25:d6:bd:b2:04:b8:05:6a:
c2:ca:a8:89
-----BEGIN CERTIFICATE-----
MIIFPTCCBCWgAwIBAgIUY6gQbGUKF1cIzrgFisiSdriUnuIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYTgzZDQ4NjUyZjNiMmRmNzRmNmJmOWJhYThhOWMxNzRj
Y2ZkMzc3MjAeFw0yNDA1MjkxNjM0MzJaFw0yNTA1MjgxNjM5MzJaMDMxMTAvBgNV
BAMTKEMxQTZBNjlFNzU0RTU1NDlGMTE4OEFCQzE3REUzRUU1QTgzQkY4QkYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYzS094f3EJz9qzQg4ClWvVmpS
04Rkbs7jU7QEGznLR6W94sujuODe271ga2k9D5m57dVLIlAwN3vOJIBuVY3VhG8i
/eQkTfa+g28waqIcM+zaZ68UA5PGZt7YbBVvVQxsTPF+Sql2PhmepGPuq8UpdPr4
KRuQ4eAs5CTptA1GmUBnTHFW9lWtOURAEkLU5bONrFPnj21bOQnayoBA/sp1KQoI
mY4BkT+5Dd5Iw3rgRIysOsyZijdCaBm2SqtoWvEQQ1J/91OAFGZgHKOkWB235Jpu
shCRfooSkhCKDuvwWiXu3aaYyr9pGwgS8Tawx33NYVP8VNwRlu8mX92sZl8hAgMB
AAGjggJHMIICQzAdBgNVHQ4EFgQUwaamnnVOVUnxGIq8F94+5ag7+L8wHwYDVR0j
BBgwFoAUqD1IZS87LfdPa/m6qKnBdMz9N3IwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvODkyNzBmNmMtYTNmZS00Mjk5LWIwNzktMzA5ZWQ5N2Yz
ODI0LzAvQTgzRDQ4NjUyRjNCMkRGNzRGNkJGOUJBQThBOUMxNzRDQ0ZEMzc3Mi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3FEMUlaUzg3TGZkUGFfbTZxS25CZE16
OU4zSS5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvODkyNzBmNmMt
YTNmZS00Mjk5LWIwNzktMzA5ZWQ5N2YzODI0LzAvMzI2MTMxMzQzYTM3MzUzODMx
M2E2MTMwMzAzYTNhMmYzNDMwMmQzNDM4MjAzZDNlMjAzMjMxMzUzMDM4MzQucm9h
MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4E
AgACMAgDBgAqFHWBCjANBgkqhkiG9w0BAQsFAAOCAQEAEZa0mKfTyaf+kSSWZDOu
YZ9Z5/QJhkZWyblNdiPWdNHGph6HnxbefqLUIUEkIVRitqZIj6pzqeNlF7ard02O
b2M9Pm0dgCZeYOoTSQ/iOVu4OGgf3/cauab2XNo18zmvCjFF/PpeyvmcZ0vfb4bo
U0HiiVyHg8VwbWAkL6yeVWuoDH70zmePbqEf2FBRSR44dk22z55OQIxaD5o8rjUi
boE+ciATxY3Zo+DkDbyrkl0IZGxNp0PiDkDTc5kDxm1UaqZohB0aTbygL9rxrpK6
eXA2HM/WmgGfz2+S3ksNQPk+uzbwrgRDoX1jbd9wDkSC2nxJPiXWvbIEuAVqwsqo
iQ==
-----END CERTIFICATE-----
Generated at Sun Jun 30 21:59:51 2024 by rpki-client on console-ams.rpki-client.org