Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/326131343a316563373a666666633a3a2f34382d3438203d3e20323136333339.roa
File: 326131343a316563373a666666633a3a2f34382d3438203d3e20323136333339.roa (raw, json)
Hash identifier: TM2mQArU4he2RQeCWSLrgB89g/fo4aAYa1WM+OL50n0=
Subject key identifier: 0D:E4:28:B7:69:1C:5B:0E:3A:1B:63:0D:CB:30:18:1E:31:F6:98:F5
Certificate issuer: /CN=3134ee987e08d8b5583feef621a03150c4f35434
Certificate serial: 6A5EC08FE5BC9E09D7F41243616DB0B8E6158609
Authority key identifier: 31:34:EE:98:7E:08:D8:B5:58:3F:EE:F6:21:A0:31:50:C4:F3:54:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/326131343a316563373a666666633a3a2f34382d3438203d3e20323136333339.roa
Signing time: Sun 31 Mar 2024 16:03:06 +0000
ROA not before: Sun 31 Mar 2024 15:58:06 +0000
ROA not after: Sun 30 Mar 2025 16:03:06 +0000
asID: 216339
IP address blocks: 2a14:1ec7:fffc::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl
rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.mft
rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:5e:c0:8f:e5:bc:9e:09:d7:f4:12:43:61:6d:b0:b8:e6:15:86:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3134ee987e08d8b5583feef621a03150c4f35434
Validity
Not Before: Mar 31 15:58:06 2024 GMT
Not After : Mar 30 16:03:06 2025 GMT
Subject: CN=0DE428B7691C5B0E3A1B630DCB30181E31F698F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:7e:87:32:0c:c3:8c:02:de:b2:98:9a:2f:db:
55:8e:a0:8c:39:fc:70:ca:c1:a0:6d:fc:ca:25:07:
c9:ae:e5:36:b1:e4:0e:2d:75:70:0e:77:30:cf:94:
45:3c:14:71:4d:7c:30:0d:68:30:5f:aa:ae:2d:c1:
03:b3:58:71:12:ae:53:fd:15:1c:33:43:9e:7e:d8:
67:56:f8:5f:8d:5e:ff:29:46:12:00:bf:b1:6b:d4:
e8:7b:6c:ca:cb:9c:84:db:0b:3a:ec:ca:4d:e8:7b:
08:df:1d:3a:21:6e:2d:11:0b:fc:03:3a:98:72:0f:
f9:6e:0d:ac:a7:84:39:dc:d3:0d:30:3e:9b:17:4e:
16:f7:9a:9a:1e:94:81:37:c9:d4:4f:1e:6e:c4:43:
8a:54:92:68:c6:35:8a:25:ec:70:b3:0d:70:c7:92:
81:96:b3:d8:b8:29:0d:09:c4:97:c1:8b:d6:59:71:
fb:11:4b:ca:cd:6d:2f:1a:82:3a:97:6a:72:4f:3e:
e3:9f:5a:64:0b:1e:3a:64:fd:b3:c1:6d:e8:75:c7:
40:8d:05:7d:94:de:0d:c7:e7:77:58:30:29:52:bb:
0b:ec:5a:3f:ea:a5:8e:b4:67:d4:ea:ac:5c:08:6e:
f6:e7:ff:f2:7b:1d:52:be:d6:ae:65:3f:13:81:e5:
71:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:E4:28:B7:69:1C:5B:0E:3A:1B:63:0D:CB:30:18:1E:31:F6:98:F5
X509v3 Authority Key Identifier:
keyid:31:34:EE:98:7E:08:D8:B5:58:3F:EE:F6:21:A0:31:50:C4:F3:54:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/326131343a316563373a666666633a3a2f34382d3438203d3e20323136333339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:1ec7:fffc::/48
Signature Algorithm: sha256WithRSAEncryption
12:c5:a7:89:df:e7:f2:c0:0f:de:cb:07:6c:a3:f1:dd:96:c9:
db:a8:25:2c:d5:7d:ad:f5:19:40:ab:c0:54:43:56:11:94:31:
e9:9b:aa:33:3b:5d:6c:63:e1:cf:76:ab:55:2d:e3:09:89:63:
64:90:7c:6d:f3:54:8e:73:0d:f3:0e:97:ec:be:54:62:96:db:
6b:d4:22:29:0f:0d:d9:5a:d4:d8:8d:65:00:16:e7:f2:b0:bf:
8e:d2:9d:d7:04:2d:ba:31:a8:cc:e2:44:3b:f0:18:81:90:a0:
1a:af:73:f9:3d:d2:02:62:d3:15:92:b2:b6:8c:14:c6:57:71:
b3:f1:b7:d6:31:c2:01:3a:48:58:ee:42:88:84:6d:b6:7b:7a:
ce:59:e7:7f:50:25:86:f7:bf:c9:dc:f7:94:ef:90:30:62:21:
c9:32:7e:e0:20:12:18:2d:32:32:96:9b:4c:69:1d:e5:e5:91:
1c:cb:53:e5:b7:e0:3a:a9:fb:96:10:20:29:f5:94:2c:aa:12:
2a:07:67:1b:74:4e:c0:cb:d3:c9:0f:e6:a6:5e:b2:2d:88:64:
3d:3e:91:05:71:cd:e8:da:8b:5b:e9:7d:32:f2:77:7c:42:a2:
d1:c8:c9:68:c0:8e:8f:16:47:b5:a8:f9:14:ff:ce:d5:22:90:
e9:a5:7f:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 23:14:42 2024 by rpki-client on console-fra.rpki-client.org