Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/1/326130363a613030333a313333373a3a2f34382d3438203d3e20323030363736.roa
File: 326130363a613030333a313333373a3a2f34382d3438203d3e20323030363736.roa (raw, json)
Hash identifier: vFXjegY0vnmzgiKwFkv4TNQvgCv0y7neNveGux2ZS+w=
Subject key identifier: 65:A9:6F:46:49:4B:EE:60:AA:AD:81:4B:6E:84:94:BF:A9:B8:99:EA
Certificate issuer: /CN=CE1B4F4367B6A55F34CA981A0D6CA7583F9551CD
Certificate serial: 59A281C772606F32FEEA68FE10A08AFAED864131
Authority key identifier: CE:1B:4F:43:67:B6:A5:5F:34:CA:98:1A:0D:6C:A7:58:3F:95:51:CD
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CE1B4F4367B6A55F34CA981A0D6CA7583F9551CD.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/1/326130363a613030333a313333373a3a2f34382d3438203d3e20323030363736.roa
Signing time: Tue 10 Sep 2024 19:15:21 +0000
ROA not before: Tue 10 Sep 2024 19:10:21 +0000
ROA not after: Tue 09 Sep 2025 19:15:21 +0000
asID: 200676
IP address blocks: 2a06:a003:1337::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/1/CE1B4F4367B6A55F34CA981A0D6CA7583F9551CD.crl
rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/1/CE1B4F4367B6A55F34CA981A0D6CA7583F9551CD.mft
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CE1B4F4367B6A55F34CA981A0D6CA7583F9551CD.cer
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 10 Apr 2025 02:46:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:a2:81:c7:72:60:6f:32:fe:ea:68:fe:10:a0:8a:fa:ed:86:41:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CE1B4F4367B6A55F34CA981A0D6CA7583F9551CD
Validity
Not Before: Sep 10 19:10:21 2024 GMT
Not After : Sep 9 19:15:21 2025 GMT
Subject: CN=65A96F46494BEE60AAAD814B6E8494BFA9B899EA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:48:50:23:09:0a:62:1d:f0:a6:72:a0:d0:6b:
72:25:63:3a:1f:bf:d7:5c:17:61:b8:57:65:6f:95:
16:06:65:c0:76:fc:ce:df:95:77:e4:09:e8:ab:09:
24:5c:3e:18:20:42:46:81:9d:be:f6:14:5f:72:b6:
3f:6a:63:04:4b:cd:59:6b:96:06:61:f6:ac:6f:3a:
50:cc:44:6a:21:55:11:1b:80:fa:36:63:a6:13:a6:
1c:ad:ab:08:fd:74:bb:89:2c:29:da:67:43:e6:f7:
e0:53:43:7e:f0:32:3c:1f:4c:81:f0:85:4f:b0:85:
b0:60:8c:87:58:7a:b1:f8:b7:0b:79:18:5e:e6:65:
4e:dc:c2:41:82:77:b0:5c:ea:4d:a1:11:d1:49:ae:
4f:3a:9f:e3:a8:9d:0c:aa:fa:ff:eb:75:4a:c0:2e:
31:f9:da:5b:a1:47:cd:48:5d:b6:68:f6:42:34:e4:
4c:fd:f0:7c:d2:3e:ac:75:c4:1f:d1:bb:0f:7b:7b:
91:6e:59:ab:d4:bd:2f:12:35:64:f1:49:c6:ec:9c:
0a:e0:be:3a:2b:5f:0a:cc:e0:62:a2:94:41:2e:ea:
2b:47:62:0b:48:f3:6a:6a:57:82:0e:8b:97:6a:f3:
f5:04:60:66:8d:b5:2f:c4:9a:c2:c8:e5:b2:79:a3:
06:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:A9:6F:46:49:4B:EE:60:AA:AD:81:4B:6E:84:94:BF:A9:B8:99:EA
X509v3 Authority Key Identifier:
keyid:CE:1B:4F:43:67:B6:A5:5F:34:CA:98:1A:0D:6C:A7:58:3F:95:51:CD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/1/CE1B4F4367B6A55F34CA981A0D6CA7583F9551CD.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CE1B4F4367B6A55F34CA981A0D6CA7583F9551CD.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/1/326130363a613030333a313333373a3a2f34382d3438203d3e20323030363736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a003:1337::/48
Signature Algorithm: sha256WithRSAEncryption
3a:4e:2b:d4:99:ba:57:54:3f:6f:b0:02:64:f8:33:3f:01:6d:
20:50:20:d1:95:b6:1d:11:62:cf:8e:7d:78:d1:00:7f:c5:45:
3a:f3:eb:22:f0:bf:c0:23:0c:39:23:6c:e4:1e:5f:f5:8b:e8:
1a:02:13:16:db:61:fc:3d:e1:5f:e2:18:fd:1e:5c:9d:58:80:
6d:0c:00:77:f0:d7:75:1f:18:9f:c4:65:50:13:36:31:82:c9:
17:1f:f5:80:70:e7:7e:4e:a0:45:77:8b:8b:d1:55:a5:5c:85:
39:3a:bc:bc:0d:22:eb:39:e1:ca:1f:88:7f:b2:dd:59:dc:61:
8a:fc:71:c9:7d:30:f3:bc:e7:02:c4:4b:41:59:eb:bc:51:6e:
81:6b:9d:5f:81:ea:28:9e:19:54:6d:5c:64:ef:92:ee:f3:64:
c3:19:09:29:7a:4b:87:4e:7b:e9:8f:85:2a:69:34:b0:d0:d1:
b3:f7:62:a8:52:4f:e4:d3:ec:e3:af:b6:29:69:f5:0d:da:ff:
44:28:ee:62:a7:71:89:6e:2a:70:ab:74:80:cd:3c:98:5d:c0:
94:07:70:a8:9f:f9:c5:0c:c5:44:11:d3:63:b7:07:ff:35:09:
b2:f3:ec:37:1c:3b:5e:ed:28:48:59:e2:fe:7f:4e:67:ff:66:
45:ad:01:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 14:31:53 2025 by rpki-client