Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/326131343a316563373a666666643a3a2f34382d3438203d3e20323038343533.roa
File: 326131343a316563373a666666643a3a2f34382d3438203d3e20323038343533.roa (raw, json)
Hash identifier: aZlNOob/Y0zwV57voUteUdesCgZumSOWj2XcTD1whTA=
Subject key identifier: E3:3A:DC:FD:44:B4:1A:3B:C5:2F:7C:27:5C:52:AE:28:71:2A:A4:38
Certificate issuer: /CN=3134ee987e08d8b5583feef621a03150c4f35434
Certificate serial: 22BF9EA970C6E272F09C243205332B8303663EED
Authority key identifier: 31:34:EE:98:7E:08:D8:B5:58:3F:EE:F6:21:A0:31:50:C4:F3:54:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/326131343a316563373a666666643a3a2f34382d3438203d3e20323038343533.roa
Signing time: Fri 22 Mar 2024 20:26:22 +0000
ROA not before: Fri 22 Mar 2024 20:21:22 +0000
ROA not after: Fri 21 Mar 2025 20:26:22 +0000
asID: 208453
IP address blocks: 2a14:1ec7:fffd::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl
rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.mft
rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 14:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:bf:9e:a9:70:c6:e2:72:f0:9c:24:32:05:33:2b:83:03:66:3e:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3134ee987e08d8b5583feef621a03150c4f35434
Validity
Not Before: Mar 22 20:21:22 2024 GMT
Not After : Mar 21 20:26:22 2025 GMT
Subject: CN=E33ADCFD44B41A3BC52F7C275C52AE28712AA438
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:cb:73:b8:06:2b:96:70:51:2d:f4:c3:a5:98:
6a:56:ce:0e:29:97:a9:36:f6:3e:f2:33:89:4d:02:
16:35:04:0d:5c:96:e8:83:e0:1d:09:25:9d:64:30:
03:71:55:0a:bb:2b:8f:1d:20:5b:ef:f9:f5:ab:bc:
11:2f:8f:c4:ca:cd:d9:5b:cb:0b:8b:93:86:92:9b:
46:a9:9f:51:74:b2:54:20:32:52:88:92:3e:43:f4:
0b:eb:c1:5e:cb:8f:d9:81:08:aa:24:2c:64:e7:ce:
3f:bb:43:b3:95:80:10:24:9e:c8:f8:13:67:1e:8f:
9e:8a:b0:61:27:1d:88:a6:20:46:2a:b2:1a:e3:66:
6b:be:9c:9d:1f:8b:6b:46:10:4c:dd:47:7a:91:68:
00:82:49:f7:30:aa:da:5c:e3:1a:26:51:b8:17:72:
40:e2:01:b7:24:1b:da:b7:1a:a8:9f:30:f2:1b:20:
e1:cb:0e:38:df:70:b2:42:9e:b8:ec:a2:09:95:f0:
92:19:25:ad:02:07:c6:47:cd:5d:31:24:89:ce:10:
3e:bf:2a:af:7a:6d:55:98:25:0c:83:c0:b2:90:25:
01:cc:09:be:0c:92:dc:48:f0:9c:a3:4d:49:00:89:
52:2a:73:84:ea:b9:97:1d:a5:e7:38:1b:ff:3b:ca:
5e:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:3A:DC:FD:44:B4:1A:3B:C5:2F:7C:27:5C:52:AE:28:71:2A:A4:38
X509v3 Authority Key Identifier:
keyid:31:34:EE:98:7E:08:D8:B5:58:3F:EE:F6:21:A0:31:50:C4:F3:54:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/326131343a316563373a666666643a3a2f34382d3438203d3e20323038343533.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:1ec7:fffd::/48
Signature Algorithm: sha256WithRSAEncryption
78:4e:59:84:58:f7:88:0c:3a:c9:8d:8a:e0:ef:64:91:ac:a6:
6c:5a:1a:a1:85:f0:d1:a5:db:c9:0b:24:63:94:3a:f4:1c:3f:
f5:f2:33:87:ab:22:4b:bd:af:44:66:9b:f9:23:37:1e:9d:5b:
3c:b3:73:b4:c2:84:64:b3:33:71:af:31:6d:37:9d:da:b1:c2:
32:88:8a:fe:65:7c:76:e5:07:b8:98:ba:44:f1:f5:fd:c0:e7:
92:cb:97:da:f6:fa:e1:b8:dd:9d:0c:19:d4:24:7b:d6:5a:6d:
b3:90:85:5c:ed:d5:4c:2c:f8:7d:07:ae:eb:61:27:44:87:55:
c9:19:60:a6:39:46:db:e8:4e:6c:54:5a:41:c6:ac:02:50:cf:
3d:9a:72:23:5a:1e:2f:6b:17:b7:8f:44:52:6f:28:c5:fc:f7:
8a:0f:66:ce:9a:1a:39:68:4d:d5:65:05:5a:33:f0:9b:3b:9c:
50:6c:78:7f:51:e0:17:8d:e6:a9:54:8c:c5:b3:a5:90:95:e2:
d9:74:08:58:7b:cb:ef:60:d8:53:e9:85:59:f5:6b:7c:56:6f:
37:2b:8d:d9:93:96:2f:52:64:0d:78:b1:a5:40:50:a4:52:a7:
0e:e7:a5:fe:4c:33:b9:a0:72:2e:a7:84:88:35:37:d1:b7:a9:
50:fe:2d:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 20:01:26 2024 by rpki-client on console-fra.rpki-client.org