Route Origin Authorization
$ rpki-client -vvf rpki.pudu.be/repo/pudu/0/326130363a613334363a3a2f33312d3331203d3e20393435.roa
File: 326130363a613334363a3a2f33312d3331203d3e20393435.roa (raw, json)
Hash identifier: jSUi1IAzldPYuJwR7rc5pJDjWebkO8neLn3iRxiwlSY=
Subject key identifier: 9A:F3:E0:FD:98:50:7E:74:19:75:79:4C:9C:55:41:72:6D:8C:9E:88
Certificate issuer: /CN=73a83c810157e3e8511eebe39cfcad16fa329700
Certificate serial: 458CD02A1EFEF3D277C58A1619936CA353946A72
Authority key identifier: 73:A8:3C:81:01:57:E3:E8:51:1E:EB:E3:9C:FC:AD:16:FA:32:97:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c6g8gQFX4-hRHuvjnPytFvoylwA.cer
Subject info access: rsync://rpki.pudu.be/repo/pudu/0/326130363a613334363a3a2f33312d3331203d3e20393435.roa
Signing time: Sun 11 Feb 2024 06:23:08 +0000
ROA not before: Sun 11 Feb 2024 06:18:08 +0000
ROA not after: Sun 09 Feb 2025 06:23:08 +0000
asID: 945
IP address blocks: 2a06:a346::/31 maxlen: 31
Validation: OK
Signature path: rsync://rpki.pudu.be/repo/pudu/0/73A83C810157E3E8511EEBE39CFCAD16FA329700.crl
rsync://rpki.pudu.be/repo/pudu/0/73A83C810157E3E8511EEBE39CFCAD16FA329700.mft
rsync://rpki.ripe.net/repository/DEFAULT/c6g8gQFX4-hRHuvjnPytFvoylwA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:8c:d0:2a:1e:fe:f3:d2:77:c5:8a:16:19:93:6c:a3:53:94:6a:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73a83c810157e3e8511eebe39cfcad16fa329700
Validity
Not Before: Feb 11 06:18:08 2024 GMT
Not After : Feb 9 06:23:08 2025 GMT
Subject: CN=9AF3E0FD98507E741975794C9C5541726D8C9E88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:93:de:52:20:f8:a2:6e:9e:18:8c:bc:9e:60:
5b:0b:c1:7a:0f:57:79:53:97:e0:0c:3e:b6:b4:be:
57:8b:e5:4c:72:55:2a:28:dd:e4:17:f4:16:4d:85:
c6:54:ca:6f:36:35:99:3e:f6:06:5b:ad:ac:3b:b9:
79:02:e9:63:1b:3b:ff:f6:a3:13:a0:94:2c:03:c3:
e3:af:54:5e:b5:e8:1f:d1:54:ce:b6:45:64:44:11:
4a:be:ea:77:b9:64:1e:54:8a:6a:bc:fc:8a:f5:1d:
21:d5:c5:51:d6:ca:4c:7d:c2:9f:25:a5:90:ef:b8:
a1:ad:e8:4e:4c:28:ca:b3:7c:3c:2f:47:69:b1:b4:
48:f3:91:b2:56:9f:ce:ba:ae:ea:2c:e4:2e:66:82:
16:0b:3d:34:81:37:04:eb:02:a3:81:f5:d2:5b:2a:
3a:53:64:52:05:98:98:7f:e8:e3:dc:95:89:5c:97:
be:7c:0a:eb:ab:5d:fe:88:32:29:2d:55:ff:09:2d:
c2:1c:85:c6:57:e0:da:86:4b:06:8c:9e:6b:23:ed:
cf:c2:cc:7a:d9:c4:0b:a7:2c:4e:82:82:9d:7b:76:
c3:64:f7:43:0e:92:cc:ba:72:b6:1f:8a:a3:26:1a:
ff:5f:5e:c9:14:ec:ca:fb:12:dd:69:cc:a8:ba:07:
1a:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:F3:E0:FD:98:50:7E:74:19:75:79:4C:9C:55:41:72:6D:8C:9E:88
X509v3 Authority Key Identifier:
keyid:73:A8:3C:81:01:57:E3:E8:51:1E:EB:E3:9C:FC:AD:16:FA:32:97:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.pudu.be/repo/pudu/0/73A83C810157E3E8511EEBE39CFCAD16FA329700.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6g8gQFX4-hRHuvjnPytFvoylwA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.pudu.be/repo/pudu/0/326130363a613334363a3a2f33312d3331203d3e20393435.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a346::/31
Signature Algorithm: sha256WithRSAEncryption
96:a5:e9:da:b4:51:8a:32:59:19:25:49:55:ed:7f:2b:77:f3:
d7:27:6f:9b:e8:cd:2f:27:79:4b:e1:b4:fa:ea:b1:b5:f9:64:
55:ac:73:e1:a5:3b:8e:a1:32:60:94:33:e7:c0:4a:0d:59:29:
9c:ea:99:66:11:c8:c2:80:cf:ee:82:d5:1f:9b:ab:f8:c0:b5:
60:90:5d:86:14:44:8b:ff:ef:30:7a:82:f7:b4:da:09:c7:83:
65:2b:0c:01:8e:60:64:68:57:75:2d:29:bc:0a:22:dd:04:14:
56:4c:08:46:5b:ff:0b:b8:b0:e5:bb:07:88:b4:f0:1b:c4:95:
15:ee:1a:1c:4f:38:51:73:36:ee:f5:7b:80:ef:81:60:00:b8:
7d:ab:5d:22:aa:c3:2d:03:cc:7b:1b:12:65:6c:ad:4e:a7:08:
1e:95:fa:bc:9b:a3:18:12:f1:ef:fc:4d:6d:92:fc:3d:13:44:
16:cd:42:60:38:a6:0b:cb:25:e6:e9:ae:97:8c:be:35:e1:1c:
9e:a0:15:34:13:2f:a9:53:34:f4:1a:dd:08:25:e9:05:1e:35:
3a:67:df:ea:e0:af:44:f2:6a:f4:14:4b:c0:58:96:04:29:5a:
f1:da:97:0a:58:71:8e:64:ff:20:65:62:54:55:29:cd:fb:39:
ce:ff:68:4b
-----BEGIN CERTIFICATE-----
MIIEvzCCA6egAwIBAgIURYzQKh7+89J3xYoWGZNso1OUanIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzNhODNjODEwMTU3ZTNlODUxMWVlYmUzOWNmY2FkMTZm
YTMyOTcwMDAeFw0yNDAyMTEwNjE4MDhaFw0yNTAyMDkwNjIzMDhaMDMxMTAvBgNV
BAMTKDlBRjNFMEZEOTg1MDdFNzQxOTc1Nzk0QzlDNTU0MTcyNkQ4QzlFODgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyk95SIPiibp4YjLyeYFsLwXoP
V3lTl+AMPra0vleL5UxyVSoo3eQX9BZNhcZUym82NZk+9gZbraw7uXkC6WMbO//2
oxOglCwDw+OvVF616B/RVM62RWREEUq+6ne5ZB5Uimq8/Ir1HSHVxVHWykx9wp8l
pZDvuKGt6E5MKMqzfDwvR2mxtEjzkbJWn866ruos5C5mghYLPTSBNwTrAqOB9dJb
KjpTZFIFmJh/6OPclYlcl758CuurXf6IMiktVf8JLcIchcZX4NqGSwaMnmsj7c/C
zHrZxAunLE6Cgp17dsNk90MOksy6crYfiqMmGv9fXskU7Mr7Et1pzKi6Bxr5AgMB
AAGjggHJMIIBxTAdBgNVHQ4EFgQUmvPg/ZhQfnQZdXlMnFVBcm2MnogwHwYDVR0j
BBgwFoAUc6g8gQFX4+hRHuvjnPytFvoylwAwDgYDVR0PAQH/BAQDAgeAMF4GA1Ud
HwRXMFUwU6BRoE+GTXJzeW5jOi8vcnBraS5wdWR1LmJlL3JlcG8vcHVkdS8wLzcz
QTgzQzgxMDE1N0UzRTg1MTFFRUJFMzlDRkNBRDE2RkEzMjk3MDAuY3JsMGQGCCsG
AQUFBwEBBFgwVjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3Jl
cG9zaXRvcnkvREVGQVVMVC9jNmc4Z1FGWDQtaFJIdXZqblB5dEZ2b3lsd0EuY2Vy
MHEGCCsGAQUFBwELBGUwYzBhBggrBgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLnB1ZHUu
YmUvcmVwby9wdWR1LzAvMzI2MTMwMzYzYTYxMzMzNDM2M2EzYTJmMzMzMTJkMzMz
MTIwM2QzZTIwMzkzNDM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAG
CCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUBKgajRjANBgkqhkiG9w0BAQsFAAOC
AQEAlqXp2rRRijJZGSVJVe1/K3fz1ydvm+jNLyd5S+G0+uqxtflkVaxz4aU7jqEy
YJQz58BKDVkpnOqZZhHIwoDP7oLVH5ur+MC1YJBdhhREi//vMHqC97TaCceDZSsM
AY5gZGhXdS0pvAoi3QQUVkwIRlv/C7iw5bsHiLTwG8SVFe4aHE84UXM27vV7gO+B
YAC4fatdIqrDLQPMexsSZWytTqcIHpX6vJujGBLx7/xNbZL8PRNEFs1CYDimC8sl
5umul4y+NeEcnqAVNBMvqVM09BrdCCXpBR41Omff6uCvRPJq9BRLwFiWBCla8dqX
ClhxjmT/IGViVFUpzfs5zv9oSw==
-----END CERTIFICATE-----
Generated at Sun May 5 21:14:11 2024 by rpki-client on console-fra.rpki-client.org