Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/326131343a366634343a633030303a3a2f33362d3438203d3e20313938333432.roa
File: 326131343a366634343a633030303a3a2f33362d3438203d3e20313938333432.roa (raw, json)
Hash identifier: rUeTx7XUpZpHsjcVgH5QY0KIemFkDQPvwh8onflexmg=
Subject key identifier: FA:A6:57:24:23:CE:38:CB:BF:89:2E:17:EF:16:E9:1C:B5:8C:2A:18
Certificate issuer: /CN=3eeebb946a8d21d4083c93dc09cee557bb2ac32e
Certificate serial: 64B9497AC4998250AB0D5A17530885525E0D28F5
Authority key identifier: 3E:EE:BB:94:6A:8D:21:D4:08:3C:93:DC:09:CE:E5:57:BB:2A:C3:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/326131343a366634343a633030303a3a2f33362d3438203d3e20313938333432.roa
Signing time: Wed 30 Oct 2024 01:25:31 +0000
ROA not before: Wed 30 Oct 2024 01:20:31 +0000
ROA not after: Wed 29 Oct 2025 01:25:31 +0000
asID: 198342
IP address blocks: 2a14:6f44:c000::/36 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.crl
rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.mft
rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 21 Nov 2024 18:58:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:b9:49:7a:c4:99:82:50:ab:0d:5a:17:53:08:85:52:5e:0d:28:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3eeebb946a8d21d4083c93dc09cee557bb2ac32e
Validity
Not Before: Oct 30 01:20:31 2024 GMT
Not After : Oct 29 01:25:31 2025 GMT
Subject: CN=FAA6572423CE38CBBF892E17EF16E91CB58C2A18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:bc:cf:f5:07:21:64:ed:9e:b8:d2:25:c4:05:
23:4b:e1:04:07:94:df:53:8f:10:c4:c5:2c:4d:35:
c4:a9:c7:7d:d1:1d:b0:09:40:29:48:44:30:2a:09:
6d:ab:83:d7:14:48:aa:e2:a6:d0:59:09:85:b3:bc:
ab:f5:ba:93:51:dc:ac:53:66:8e:7c:26:7f:fa:d9:
5e:c3:9f:ae:de:11:46:bb:34:63:e5:e8:ff:01:bb:
1c:ea:30:ee:c7:4b:32:c4:49:fb:ab:49:f4:08:f0:
20:0a:31:62:35:cb:34:17:93:6a:c3:db:e7:04:c8:
06:5b:69:78:eb:62:f0:b0:9d:4b:52:46:18:4e:10:
e7:33:72:26:df:4e:f8:08:ed:0f:2c:d4:91:38:cd:
80:33:3f:36:7a:53:86:a7:69:13:b9:0b:b7:fc:84:
75:06:55:d9:51:7a:f0:87:3f:b2:1b:32:92:f5:12:
ec:f9:be:98:68:3b:dd:de:a0:1d:2b:77:5a:4e:9d:
bd:9b:18:7b:c2:93:cb:ff:93:67:92:09:6d:50:fa:
df:99:9d:da:df:c0:5a:9d:64:0e:b9:ea:a7:42:fe:
c6:ab:81:59:90:60:a8:ae:b7:07:b6:99:6f:be:2e:
9e:69:1c:e5:39:cc:2a:06:43:ea:5d:e4:55:34:5f:
0b:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:A6:57:24:23:CE:38:CB:BF:89:2E:17:EF:16:E9:1C:B5:8C:2A:18
X509v3 Authority Key Identifier:
keyid:3E:EE:BB:94:6A:8D:21:D4:08:3C:93:DC:09:CE:E5:57:BB:2A:C3:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/326131343a366634343a633030303a3a2f33362d3438203d3e20313938333432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:6f44:c000::/36
Signature Algorithm: sha256WithRSAEncryption
82:c3:dd:dc:a5:f7:d9:e2:f5:e7:3c:a9:ff:7c:11:76:ca:19:
9f:af:bf:7b:bc:8e:36:87:84:15:32:46:42:62:73:83:00:3f:
06:ff:6b:d5:86:6a:61:67:71:f1:2f:ca:49:83:9b:b0:6e:c0:
c5:4e:9d:87:5d:55:79:db:24:55:f2:cf:89:23:17:58:dc:db:
2a:a8:b3:c3:d1:11:be:24:93:4d:50:59:73:30:41:0f:c5:8f:
78:2c:0e:98:0c:30:6e:15:1b:22:15:b0:dd:69:b9:ce:fe:cc:
85:dd:20:22:b5:8a:92:d6:76:1c:43:51:3e:dc:78:9a:e1:e5:
60:46:6d:f8:b3:55:53:db:ff:22:ce:7c:46:eb:3b:2a:ec:a9:
e0:07:77:be:84:56:2b:0e:a8:54:0d:2f:ff:10:ef:52:89:05:
5c:f2:ea:1b:d8:bc:de:de:45:37:95:00:9c:0e:2c:db:59:71:
69:dd:6a:3a:1b:c9:22:51:45:f0:73:96:15:54:2b:45:77:65:
04:ac:a9:2d:47:23:bb:6a:3f:08:e4:38:56:f4:73:a7:63:89:
a5:12:03:f2:8d:87:87:ef:0c:a2:90:2c:cc:6b:ad:fd:09:35:
6e:82:69:34:d8:9d:6d:ea:76:21:a1:fe:3c:6e:92:da:c9:67:
c0:2f:76:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 02:01:30 2024 by rpki-client on console-fra.rpki-client.org