Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/326131343a366634303a3a2f32392d3438203d3e20323030323432.roa
File: 326131343a366634303a3a2f32392d3438203d3e20323030323432.roa (raw, json)
Hash identifier: c5+sIF6SVWQEOk60+gid/kKFxdzO9Q59QB0rcaeUFAg=
Subject key identifier: 2A:28:72:51:2B:22:C4:0B:A6:3F:9A:50:60:9C:E4:DF:59:DA:D4:16
Certificate issuer: /CN=3eeebb946a8d21d4083c93dc09cee557bb2ac32e
Certificate serial: 2CCC1C5190505C19BCAD106EBFB469F9542B82C7
Authority key identifier: 3E:EE:BB:94:6A:8D:21:D4:08:3C:93:DC:09:CE:E5:57:BB:2A:C3:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/326131343a366634303a3a2f32392d3438203d3e20323030323432.roa
Signing time: Tue 30 Jul 2024 17:45:46 +0000
ROA not before: Tue 30 Jul 2024 17:40:46 +0000
ROA not after: Tue 29 Jul 2025 17:45:46 +0000
asID: 200242
IP address blocks: 2a14:6f40::/29 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.crl
rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.mft
rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 21 Nov 2024 18:58:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:cc:1c:51:90:50:5c:19:bc:ad:10:6e:bf:b4:69:f9:54:2b:82:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3eeebb946a8d21d4083c93dc09cee557bb2ac32e
Validity
Not Before: Jul 30 17:40:46 2024 GMT
Not After : Jul 29 17:45:46 2025 GMT
Subject: CN=2A2872512B22C40BA63F9A50609CE4DF59DAD416
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:5f:81:3d:57:38:34:9a:19:76:43:8b:ac:56:
d0:88:ef:76:95:ea:a0:1d:b5:17:7a:09:46:34:f7:
4e:89:dd:d9:cc:76:d9:14:74:be:ea:77:89:d7:2a:
9a:94:b9:60:70:a4:ef:c0:50:f5:70:08:f2:6f:40:
82:65:e8:97:66:9d:ae:90:22:04:0a:7e:3b:22:db:
40:4b:fb:06:65:e3:2c:8f:df:58:bb:26:f4:f1:d7:
30:9d:ab:fc:d6:52:7d:96:9b:c2:79:86:6c:9e:7f:
79:8c:f9:3a:69:c0:e7:3a:c1:3e:74:cb:06:02:8d:
c1:44:33:20:ab:f0:d6:11:d7:ff:b3:5e:03:fc:7b:
1e:4f:4a:26:6e:90:28:d4:e5:7f:bb:f4:0c:fc:09:
1e:c8:00:97:9e:d2:12:43:ce:cd:16:fd:40:6c:09:
6e:45:a7:51:62:c7:2e:89:ed:7f:7c:7b:db:a8:b0:
72:5f:fc:a9:c2:0b:cc:ac:05:d7:aa:ab:65:6e:12:
e2:67:b5:07:e9:17:df:33:3f:28:12:9c:79:69:0f:
b7:2b:ed:c3:cf:70:df:81:da:f4:50:f8:08:db:15:
69:4d:8c:ae:43:74:3e:aa:24:20:99:60:d1:9f:67:
8f:41:ef:04:05:ae:8e:cb:d7:c3:83:3a:e8:a5:0a:
ab:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:28:72:51:2B:22:C4:0B:A6:3F:9A:50:60:9C:E4:DF:59:DA:D4:16
X509v3 Authority Key Identifier:
keyid:3E:EE:BB:94:6A:8D:21:D4:08:3C:93:DC:09:CE:E5:57:BB:2A:C3:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/326131343a366634303a3a2f32392d3438203d3e20323030323432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:6f40::/29
Signature Algorithm: sha256WithRSAEncryption
18:6b:f4:7d:e8:45:0c:e8:ca:94:5a:ac:6e:db:6c:11:cf:32:
cc:69:36:dd:2b:83:bd:32:0a:3c:ef:b1:33:73:99:04:b6:f7:
0a:73:a9:b2:e3:79:20:83:60:23:ff:73:23:da:39:e9:ff:bf:
09:0c:8b:74:30:4e:93:65:f0:8e:e1:54:89:d1:b8:7a:9e:71:
b0:b1:9f:ab:8b:fb:45:39:be:f2:51:6c:97:51:c1:13:a0:2b:
4b:e2:48:94:dc:54:6e:90:ce:3e:92:39:e7:da:a8:17:73:76:
17:1e:90:9e:e8:99:81:53:be:0f:50:1d:16:70:5d:52:4a:06:
06:e8:30:a0:0d:34:dd:9d:2d:2a:f0:eb:11:24:cf:81:43:2b:
79:92:fa:41:5c:10:7f:be:9c:62:e6:60:59:92:98:7c:44:7d:
14:98:f8:1f:9e:df:5d:fa:76:31:4a:d3:f2:dc:05:75:d0:94:
3b:f7:23:4b:53:2f:c5:7f:fd:92:bc:1a:ee:1f:e0:4f:b7:6e:
1d:f9:46:ce:8d:02:11:8d:c3:3b:c2:fe:31:05:2f:83:69:2e:
07:b2:11:c9:92:59:94:85:c0:0a:90:ce:c3:a3:de:04:3f:46:
12:3c:30:5d:3c:f2:37:fc:52:ba:51:5c:00:4b:79:1b:0b:71:
20:30:e7:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 02:01:30 2024 by rpki-client on console-fra.rpki-client.org