Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/326131343a366634343a633030303a3a2f33362d3438203d3e203438343336.roa
File: 326131343a366634343a633030303a3a2f33362d3438203d3e203438343336.roa (raw, json)
Hash identifier: BdiUFweGigwrt1qmB+4GHc7up/GDatg2FV8XcDO+0Ts=
Subject key identifier: D2:ED:E0:CB:10:CD:86:39:89:DE:DA:09:62:BD:D1:47:76:1C:1E:C1
Certificate issuer: /CN=3eeebb946a8d21d4083c93dc09cee557bb2ac32e
Certificate serial: 61238FEF2D04731EB25CB294B0876BCBED99B58E
Authority key identifier: 3E:EE:BB:94:6A:8D:21:D4:08:3C:93:DC:09:CE:E5:57:BB:2A:C3:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/326131343a366634343a633030303a3a2f33362d3438203d3e203438343336.roa
Signing time: Wed 30 Oct 2024 01:26:13 +0000
ROA not before: Wed 30 Oct 2024 01:21:13 +0000
ROA not after: Wed 29 Oct 2025 01:26:13 +0000
asID: 48436
IP address blocks: 2a14:6f44:c000::/36 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.crl
rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.mft
rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 21 Nov 2024 18:58:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:23:8f:ef:2d:04:73:1e:b2:5c:b2:94:b0:87:6b:cb:ed:99:b5:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3eeebb946a8d21d4083c93dc09cee557bb2ac32e
Validity
Not Before: Oct 30 01:21:13 2024 GMT
Not After : Oct 29 01:26:13 2025 GMT
Subject: CN=D2EDE0CB10CD863989DEDA0962BDD147761C1EC1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:ca:c8:ec:4d:1b:67:65:aa:aa:28:bf:4a:8b:
b6:ae:56:de:19:ec:04:0b:e7:71:56:cc:49:fb:9d:
01:f1:91:ff:6e:dc:03:6c:da:36:58:d0:a2:20:41:
ff:0f:96:fa:9d:ba:6c:de:88:0e:c8:7c:d8:b1:e4:
6a:43:2f:71:3b:25:bb:bf:2b:dc:51:e7:c2:27:1a:
18:7c:36:3e:40:05:94:47:12:58:a6:68:d8:0b:b2:
45:aa:4f:bc:32:a9:3d:80:92:fc:15:3e:57:b2:6a:
ae:6a:46:d6:10:73:2a:ab:f1:a0:22:7b:25:78:1e:
b1:3b:3c:c1:41:25:60:f1:eb:54:a4:52:83:05:24:
a4:68:45:ee:d8:eb:70:d1:5b:7b:ce:26:67:2f:94:
bb:f1:35:f2:9c:c6:1c:e7:fa:73:c5:45:0f:d5:6d:
b4:2b:c6:de:33:d7:07:c9:55:fa:2e:39:8f:17:c4:
a7:f8:62:f3:e6:6c:b3:1e:12:11:e6:61:3a:bd:f2:
02:69:51:a6:66:95:34:87:63:f2:2e:f2:3a:91:cc:
67:bd:72:0d:f7:7b:00:bd:2f:18:21:22:a7:29:62:
5a:7c:f2:fc:cc:e3:11:57:5a:8c:8a:7f:54:a7:a4:
2e:07:6a:ca:5d:73:d8:48:b5:10:e3:65:ee:4f:9c:
ed:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:ED:E0:CB:10:CD:86:39:89:DE:DA:09:62:BD:D1:47:76:1C:1E:C1
X509v3 Authority Key Identifier:
keyid:3E:EE:BB:94:6A:8D:21:D4:08:3C:93:DC:09:CE:E5:57:BB:2A:C3:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/326131343a366634343a633030303a3a2f33362d3438203d3e203438343336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:6f44:c000::/36
Signature Algorithm: sha256WithRSAEncryption
36:b4:18:5b:48:b6:70:b0:19:3f:12:44:64:28:15:5f:92:8e:
41:4e:95:f7:5e:57:39:cd:08:83:a6:e9:eb:1f:66:74:de:e5:
34:f8:39:ce:e7:74:85:a5:56:dd:f1:08:9e:46:2c:44:be:12:
1b:26:68:98:d0:81:78:f6:d3:19:f7:56:ef:43:fc:ef:29:ef:
f8:c0:09:7e:2f:fa:2b:03:e2:56:d5:4a:7c:1a:9e:19:d4:0e:
7f:99:1d:69:aa:5b:8a:7d:f7:67:5c:4b:38:1e:8c:fb:8b:ca:
6e:db:d6:20:69:af:eb:3e:57:3c:53:5d:b9:69:fc:44:6c:f1:
2c:e5:e8:2b:bc:37:a8:0e:1c:8a:48:84:a8:c7:8e:d3:2b:dc:
10:f5:a3:6c:70:7a:89:9d:5c:a3:f7:31:65:3c:ec:3d:1b:2c:
db:05:6c:49:93:bd:a9:a7:f3:b3:60:62:0e:c9:04:b8:a2:62:
ad:8a:bf:5e:fa:69:8c:4b:c9:55:a1:10:15:74:52:ef:e6:36:
07:5d:4f:58:c1:9b:89:bf:76:63:4f:55:29:61:d7:87:77:9c:
4b:4c:d6:17:95:02:e1:2e:c7:0d:ab:73:89:a5:4c:f9:f2:3a:
3e:40:82:45:f7:5f:3b:e1:a8:0a:6f:c7:4a:40:e9:5a:a9:1f:
89:1e:15:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 01:58:32 2024 by rpki-client on console-ams.rpki-client.org