Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/326131343a366634343a633064653a3a2f34382d3438203d3e20313938333432.roa
File: 326131343a366634343a633064653a3a2f34382d3438203d3e20313938333432.roa (raw, json)
Hash identifier: JbFcx8NYIQrxy++ssCWok53ycSawtedKXeTKz2IS1/I=
Subject key identifier: 94:B7:18:00:32:DD:E8:A1:79:A5:1F:E4:C4:00:4E:59:19:F9:C4:61
Certificate issuer: /CN=3eeebb946a8d21d4083c93dc09cee557bb2ac32e
Certificate serial: 79B83ED78D7E4FA82567DB4DA70BFAC137C43D02
Authority key identifier: 3E:EE:BB:94:6A:8D:21:D4:08:3C:93:DC:09:CE:E5:57:BB:2A:C3:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/326131343a366634343a633064653a3a2f34382d3438203d3e20313938333432.roa
Signing time: Fri 20 Dec 2024 17:13:45 +0000
ROA not before: Fri 20 Dec 2024 17:08:45 +0000
ROA not after: Fri 19 Dec 2025 17:13:45 +0000
asID: 198342
IP address blocks: 2a14:6f44:c0de::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.crl
rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.mft
rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 04 Apr 2025 22:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:b8:3e:d7:8d:7e:4f:a8:25:67:db:4d:a7:0b:fa:c1:37:c4:3d:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3eeebb946a8d21d4083c93dc09cee557bb2ac32e
Validity
Not Before: Dec 20 17:08:45 2024 GMT
Not After : Dec 19 17:13:45 2025 GMT
Subject: CN=94B7180032DDE8A179A51FE4C4004E5919F9C461
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:6b:40:fe:c8:dc:d7:ac:81:a8:73:fe:b4:07:
80:ad:fc:f0:0a:96:9b:3f:56:39:9b:17:3c:73:6f:
31:59:35:c7:f5:32:aa:11:2d:13:8a:b7:6b:04:3f:
d7:86:dc:2e:c0:4f:ae:9b:10:48:2c:43:6a:b5:d3:
c6:81:ba:5e:c7:0d:86:86:f2:aa:61:21:8e:cd:fa:
bf:92:01:ca:75:f2:84:c8:61:88:e8:59:6a:a0:46:
53:a4:aa:e6:d9:55:b6:30:bc:4f:ff:35:df:81:26:
a4:90:a1:08:97:1a:7e:d7:f8:5d:d6:44:79:e9:57:
6a:ec:57:8e:c4:55:2a:ea:03:c4:bc:a2:fd:9f:ef:
c4:24:98:58:fa:ae:17:05:65:2b:14:82:f4:c7:21:
28:54:1b:3a:0d:50:44:ee:a7:60:d5:7a:51:6e:aa:
e6:d7:69:34:e9:b1:9d:88:55:c2:e0:ff:f5:4b:26:
88:ee:95:eb:da:0a:c7:56:db:bc:9b:ef:2e:02:0e:
7b:5b:f4:c7:7b:20:cf:89:9a:ef:d6:ee:60:1e:b0:
14:4d:e3:ce:bc:dd:5f:12:7e:d2:a8:1c:57:9e:66:
95:25:60:5e:a3:1f:2a:07:97:cc:35:64:5a:5f:6b:
95:4e:ec:20:02:54:28:e9:96:f2:df:c9:3b:39:8c:
a3:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:B7:18:00:32:DD:E8:A1:79:A5:1F:E4:C4:00:4E:59:19:F9:C4:61
X509v3 Authority Key Identifier:
keyid:3E:EE:BB:94:6A:8D:21:D4:08:3C:93:DC:09:CE:E5:57:BB:2A:C3:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/326131343a366634343a633064653a3a2f34382d3438203d3e20313938333432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:6f44:c0de::/48
Signature Algorithm: sha256WithRSAEncryption
59:22:ab:11:3e:ed:e8:c3:4e:73:9c:bb:32:e1:c1:8e:dd:60:
87:83:06:a4:3f:5a:ae:76:3d:1e:a5:56:95:9b:5a:c3:f2:73:
4e:6e:fe:43:11:6f:45:e3:f4:aa:f5:34:e7:72:fe:4c:a3:f0:
c1:e4:e1:b6:f1:a6:10:e8:e6:e1:fe:b3:a6:25:97:82:01:c8:
60:68:c1:e2:2b:96:62:46:d5:a1:db:71:26:84:6d:e7:03:f1:
12:85:92:11:4e:f1:75:20:8d:ce:6b:89:9a:ea:cf:22:f0:f9:
d1:7c:57:e2:f4:7b:07:1a:5a:9f:ac:c3:2e:4a:24:a3:7a:bd:
d1:8b:cf:f2:54:4d:ef:d4:aa:ab:05:0c:44:ac:b7:dc:d2:1c:
12:d1:73:af:a7:ce:7a:aa:79:e1:f3:70:70:a8:6b:3d:bb:53:
c2:e2:4a:18:ba:16:eb:5f:2f:5a:a1:af:20:1d:22:36:91:87:
72:3d:d9:67:5a:d4:0e:78:50:33:25:c9:31:88:24:5a:54:e2:
68:d4:a6:58:36:62:55:91:31:16:74:86:72:20:2a:f8:2b:10:
02:63:f6:a5:1a:12:6b:6a:9e:14:2e:4c:06:c6:8e:9d:15:d3:
cd:81:fc:42:af:6c:8a:c3:d5:54:af:83:83:b5:b5:14:7e:63:
96:b3:3c:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 05:27:34 2025 by rpki-client