Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a633030303a3a2f33362d3438203d3e20323134373331.roa
File: 326131343a373538313a633030303a3a2f33362d3438203d3e20323134373331.roa (raw, json)
Hash identifier: Fsr2xKxxWtk8yQv+24vl7c5vliHolRtQ6NUPm620Pjs=
Subject key identifier: 71:F0:D5:35:36:47:6A:B1:E5:9B:79:EC:89:DE:6B:58:92:06:3F:26
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 6A162DE26A746970A0E340C1AFCEFA89A94A5FA5
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a633030303a3a2f33362d3438203d3e20323134373331.roa
Signing time: Sun 16 Jun 2024 02:31:07 +0000
ROA not before: Sun 16 Jun 2024 02:26:07 +0000
ROA not after: Sun 15 Jun 2025 02:31:07 +0000
asID: 214731
IP address blocks: 2a14:7581:c000::/36 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jul 2024 23:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:16:2d:e2:6a:74:69:70:a0:e3:40:c1:af:ce:fa:89:a9:4a:5f:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Jun 16 02:26:07 2024 GMT
Not After : Jun 15 02:31:07 2025 GMT
Subject: CN=71F0D53536476AB1E59B79EC89DE6B5892063F26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f6:23:40:30:46:94:03:e1:19:24:23:f4:f9:
5f:c7:44:2e:79:2b:83:1b:5f:c3:66:2d:6d:b8:cd:
0e:fd:8e:81:f6:0a:42:aa:f3:4d:f5:f0:ef:5f:73:
c0:7e:99:ab:10:09:04:e6:a1:ef:f0:46:a4:0b:81:
16:77:7a:77:51:92:7d:30:bf:49:fc:bd:c8:0b:28:
6e:c4:ba:d1:fc:54:23:eb:fe:15:66:e4:42:ad:15:
43:37:3f:b9:7c:4a:b6:11:73:2b:a1:dd:67:72:55:
ff:8b:55:45:c1:f7:b9:71:05:0e:f1:31:91:8e:5e:
87:63:b7:49:71:ce:83:d0:35:b1:e0:dc:c6:3b:e5:
a3:21:d1:1c:90:88:80:5b:28:29:4e:05:a6:86:f7:
f8:73:3a:ff:43:9d:28:f4:0f:11:0d:73:cd:98:5d:
f9:c5:ec:63:a1:6c:df:1b:38:9f:84:83:d4:ae:99:
c6:dd:84:74:d9:a2:64:6a:10:cf:c6:51:e9:96:2a:
89:91:33:60:56:b1:9f:f3:b7:3b:73:5c:1d:9f:aa:
be:d4:bf:30:b9:10:8c:4b:7f:05:eb:c2:39:84:71:
ae:42:20:e4:b7:7d:d4:08:c4:b4:75:34:e3:2b:60:
32:55:ab:e9:57:85:32:5c:f7:f3:0c:3c:3c:d5:77:
77:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:F0:D5:35:36:47:6A:B1:E5:9B:79:EC:89:DE:6B:58:92:06:3F:26
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a633030303a3a2f33362d3438203d3e20323134373331.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:c000::/36
Signature Algorithm: sha256WithRSAEncryption
8f:b9:48:f6:ee:91:60:98:26:f5:63:15:04:eb:76:cb:03:09:
fc:47:35:20:f6:80:c9:5e:4d:b8:95:0e:c7:a6:79:f7:82:74:
7c:c5:68:8e:98:1b:3d:97:2d:32:35:6f:02:c9:4f:23:0f:73:
5a:78:e5:91:19:bd:04:d4:6d:8c:89:df:e1:03:f5:ad:6c:86:
60:1b:e7:d9:01:96:0e:ff:3c:44:fa:6b:d3:e0:c5:be:7c:4d:
46:5c:9d:7e:76:6d:f5:98:59:3e:33:cf:76:71:9d:2e:22:45:
eb:65:73:1b:f5:9b:2d:23:3e:e0:28:7d:46:9e:e4:53:82:b0:
47:13:ef:61:8f:d0:15:92:e2:30:ee:20:06:bc:de:c2:b6:f9:
44:62:39:56:19:9e:6d:e1:a6:d5:37:e2:52:22:e9:2c:a0:1c:
14:30:a6:64:9f:99:89:3b:c8:fb:a4:a2:29:a9:e8:64:2a:4f:
13:36:c1:db:d0:f8:06:e0:42:a6:98:da:37:2c:ee:1c:7c:6c:
fb:e0:94:4b:8d:6b:a4:0e:8a:1a:4d:f2:cf:e0:82:fb:59:9a:
f9:9e:2d:ed:d2:c2:49:34:e0:1b:bd:86:be:42:ff:61:36:dc:
5b:c5:a6:78:08:9c:66:8d:c4:01:7b:f9:c2:db:59:e8:32:91:
2a:84:65:b1
-----BEGIN CERTIFICATE-----
MIIFPzCCBCegAwIBAgIUahYt4mp0aXCg40DBr876ialKX6UwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYTgzZDQ4NjUyZjNiMmRmNzRmNmJmOWJhYThhOWMxNzRj
Y2ZkMzc3MjAeFw0yNDA2MTYwMjI2MDdaFw0yNTA2MTUwMjMxMDdaMDMxMTAvBgNV
BAMTKDcxRjBENTM1MzY0NzZBQjFFNTlCNzlFQzg5REU2QjU4OTIwNjNGMjYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC19iNAMEaUA+EZJCP0+V/HRC55
K4MbX8NmLW24zQ79joH2CkKq80318O9fc8B+masQCQTmoe/wRqQLgRZ3endRkn0w
v0n8vcgLKG7EutH8VCPr/hVm5EKtFUM3P7l8SrYRcyuh3WdyVf+LVUXB97lxBQ7x
MZGOXodjt0lxzoPQNbHg3MY75aMh0RyQiIBbKClOBaaG9/hzOv9DnSj0DxENc82Y
XfnF7GOhbN8bOJ+Eg9SumcbdhHTZomRqEM/GUemWKomRM2BWsZ/ztztzXB2fqr7U
vzC5EIxLfwXrwjmEca5CIOS3fdQIxLR1NOMrYDJVq+lXhTJc9/MMPDzVd3fRAgMB
AAGjggJJMIICRTAdBgNVHQ4EFgQUcfDVNTZHarHlm3nsid5rWJIGPyYwHwYDVR0j
BBgwFoAUqD1IZS87LfdPa/m6qKnBdMz9N3IwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvODkyNzBmNmMtYTNmZS00Mjk5LWIwNzktMzA5ZWQ5N2Yz
ODI0LzAvQTgzRDQ4NjUyRjNCMkRGNzRGNkJGOUJBQThBOUMxNzRDQ0ZEMzc3Mi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3FEMUlaUzg3TGZkUGFfbTZxS25CZE16
OU4zSS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvODkyNzBmNmMt
YTNmZS00Mjk5LWIwNzktMzA5ZWQ5N2YzODI0LzAvMzI2MTMxMzQzYTM3MzUzODMx
M2E2MzMwMzAzMDNhM2EyZjMzMzYyZDM0MzgyMDNkM2UyMDMyMzEzNDM3MzMzMS5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw
DgQCAAIwCAMGBCoUdYHAMA0GCSqGSIb3DQEBCwUAA4IBAQCPuUj27pFgmCb1YxUE
63bLAwn8RzUg9oDJXk24lQ7Hpnn3gnR8xWiOmBs9ly0yNW8CyU8jD3NaeOWRGb0E
1G2Mid/hA/WtbIZgG+fZAZYO/zxE+mvT4MW+fE1GXJ1+dm31mFk+M892cZ0uIkXr
ZXMb9ZstIz7gKH1GnuRTgrBHE+9hj9AVkuIw7iAGvN7CtvlEYjlWGZ5t4abVN+JS
IuksoBwUMKZkn5mJO8j7pKIpqehkKk8TNsHb0PgG4EKmmNo3LO4cfGz74JRLjWuk
DooaTfLP4IL7WZr5ni3t0sJJNOAbvYa+Qv9hNtxbxaZ4CJxmjcQBe/nC21noMpEq
hGWx
-----END CERTIFICATE-----
Generated at Sun Jul 7 07:34:11 2024 by rpki-client on console-fra.rpki-client.org