Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/326131343a366634343a633064653a3a2f34382d3438203d3e203438343336.roa
File: 326131343a366634343a633064653a3a2f34382d3438203d3e203438343336.roa (raw, json)
Hash identifier: bY9e62A4gu/86iUTHSumKPvi2hGZoe5ZTShnEctU4SM=
Subject key identifier: 78:33:60:52:F5:30:6D:CF:07:2A:F5:59:6D:7D:FA:ED:7D:AD:E9:39
Certificate issuer: /CN=3eeebb946a8d21d4083c93dc09cee557bb2ac32e
Certificate serial: 4BDEB9156B5ACD3247400E02D1E93349ABB1F084
Authority key identifier: 3E:EE:BB:94:6A:8D:21:D4:08:3C:93:DC:09:CE:E5:57:BB:2A:C3:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/326131343a366634343a633064653a3a2f34382d3438203d3e203438343336.roa
Signing time: Fri 20 Dec 2024 17:14:47 +0000
ROA not before: Fri 20 Dec 2024 17:09:47 +0000
ROA not after: Fri 19 Dec 2025 17:14:47 +0000
asID: 48436
IP address blocks: 2a14:6f44:c0de::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.crl
rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.mft
rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 04 Apr 2025 22:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:de:b9:15:6b:5a:cd:32:47:40:0e:02:d1:e9:33:49:ab:b1:f0:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3eeebb946a8d21d4083c93dc09cee557bb2ac32e
Validity
Not Before: Dec 20 17:09:47 2024 GMT
Not After : Dec 19 17:14:47 2025 GMT
Subject: CN=78336052F5306DCF072AF5596D7DFAED7DADE939
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:44:87:56:3c:a4:5b:70:90:8d:c4:e7:ef:24:
42:72:15:02:a0:a4:e2:c0:02:a5:29:0a:06:6b:a9:
f3:0b:fc:a9:37:23:e1:bd:96:f2:cc:87:89:cb:fd:
21:a9:c4:0a:d6:19:ce:25:78:41:cc:2c:67:d0:22:
6a:cc:1b:fe:64:84:25:6f:f9:5d:65:50:b5:fe:b3:
26:f2:f5:d9:31:67:3f:33:bb:4f:b4:cd:26:c4:57:
c1:12:7c:32:87:c9:89:c4:50:ae:21:2d:bd:4a:8d:
bd:ab:05:4d:f5:25:8d:96:f2:7c:a4:c9:07:fb:10:
e5:0f:fa:cb:f3:21:4e:79:19:58:11:94:3b:5c:c6:
2f:21:1d:97:1a:8a:63:a2:3d:61:e8:fc:da:59:da:
1b:4d:5a:1c:b1:23:f8:9d:24:f0:ec:d5:b7:86:03:
a3:52:19:f5:86:e1:c7:cc:06:d1:60:00:46:3f:5a:
df:bf:72:c7:33:bb:ee:54:58:f6:ea:b5:56:c7:b9:
76:eb:90:08:99:9b:a7:74:53:29:d1:c2:f9:68:96:
e7:92:0c:4d:52:69:91:07:b2:6d:09:67:61:b7:c7:
2e:23:6d:64:f8:37:b1:2e:f7:a4:96:0e:15:92:85:
29:0c:46:b2:63:6b:24:53:74:19:06:f7:0b:31:42:
7c:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:33:60:52:F5:30:6D:CF:07:2A:F5:59:6D:7D:FA:ED:7D:AD:E9:39
X509v3 Authority Key Identifier:
keyid:3E:EE:BB:94:6A:8D:21:D4:08:3C:93:DC:09:CE:E5:57:BB:2A:C3:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/326131343a366634343a633064653a3a2f34382d3438203d3e203438343336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:6f44:c0de::/48
Signature Algorithm: sha256WithRSAEncryption
4d:c5:a6:14:78:db:b2:6f:ef:57:88:b4:31:02:64:b2:77:c5:
b1:a9:ff:b8:36:12:20:cd:91:00:72:2f:b6:0c:37:70:ec:3e:
f6:f1:a1:c6:4e:ad:f2:cd:aa:ba:63:78:9c:06:21:9e:d6:33:
6a:c2:6d:64:10:83:9c:4d:b9:af:47:4b:3e:34:a3:03:31:74:
46:1e:d6:6b:14:d5:e8:46:a5:90:e9:88:a0:b7:6b:67:3a:a1:
65:bd:db:c5:44:1b:11:a6:04:94:a0:b2:c3:84:09:06:ca:61:
5a:e4:ca:75:19:3b:33:c8:11:99:76:78:98:ee:0f:b8:cd:4f:
c0:59:99:1b:97:f2:99:1e:d5:33:30:0b:29:d3:6c:80:f1:75:
c7:82:93:80:7c:af:73:3c:c1:68:2d:55:bf:1b:72:45:38:0a:
2b:c1:77:59:3b:e0:21:43:5b:39:ae:1c:6c:87:09:83:7b:11:
1d:13:0e:b8:29:41:d5:8b:32:e5:e5:e9:06:6e:fd:ab:26:e3:
5e:b8:c8:4e:a0:49:ab:24:fc:0b:a7:af:bc:34:95:e4:40:40:
42:12:82:56:94:a0:20:96:73:f3:b6:e4:3a:93:92:11:14:7e:
b9:ad:55:8a:e5:e4:16:61:5c:b7:58:95:d3:75:b4:58:90:86:
2c:de:a3:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 05:23:41 2025 by rpki-client