Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/326131343a366634343a633066663a3a2f34382d3438203d3e203534363831.roa
File: 326131343a366634343a633066663a3a2f34382d3438203d3e203534363831.roa (raw, json)
Hash identifier: /yWZfagoJlrySMZHREX961tilL5M+CVEvfwwfIOvULs=
Subject key identifier: 65:EE:2D:A1:CC:CF:4D:2E:63:E6:5E:2E:86:D7:DA:9A:AC:D4:F5:23
Certificate issuer: /CN=3eeebb946a8d21d4083c93dc09cee557bb2ac32e
Certificate serial: 5F2C0FAB5E5674C85A437663B9D0CDDB4531C7A5
Authority key identifier: 3E:EE:BB:94:6A:8D:21:D4:08:3C:93:DC:09:CE:E5:57:BB:2A:C3:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/326131343a366634343a633066663a3a2f34382d3438203d3e203534363831.roa
Signing time: Sun 28 Jul 2024 10:47:04 +0000
ROA not before: Sun 28 Jul 2024 10:42:04 +0000
ROA not after: Sun 27 Jul 2025 10:47:04 +0000
asID: 54681
IP address blocks: 2a14:6f44:c0ff::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.crl
rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.mft
rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Sep 2024 11:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:2c:0f:ab:5e:56:74:c8:5a:43:76:63:b9:d0:cd:db:45:31:c7:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3eeebb946a8d21d4083c93dc09cee557bb2ac32e
Validity
Not Before: Jul 28 10:42:04 2024 GMT
Not After : Jul 27 10:47:04 2025 GMT
Subject: CN=65EE2DA1CCCF4D2E63E65E2E86D7DA9AACD4F523
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:1b:cb:da:ec:76:c5:11:eb:b5:58:d5:9b:5b:
82:d9:0a:02:7d:28:55:5e:43:c1:ab:1d:fa:f7:42:
a5:b4:c3:30:51:47:fd:be:68:57:13:8a:80:11:21:
db:0f:fa:23:e6:8b:4c:b8:ac:02:21:f1:fb:09:39:
ef:67:9c:45:a3:83:02:55:97:d6:7a:c8:1c:c6:1d:
dc:43:83:2d:ff:3c:b8:69:86:d4:89:95:ec:80:7b:
18:c1:61:6e:31:68:95:72:0b:ed:71:77:3a:68:e3:
73:23:bb:d3:82:39:97:02:aa:30:5e:19:e1:01:0c:
ed:14:5a:ac:d0:32:15:69:41:37:7b:df:72:c0:46:
9d:60:03:31:5c:98:2d:ff:1d:fd:88:6c:f0:98:36:
e6:5a:1f:14:18:1b:d4:76:9b:b3:3f:f6:7a:2a:29:
cd:dd:a3:21:1d:6a:14:67:89:d3:dc:92:1e:4a:11:
eb:47:27:70:64:96:70:53:98:8e:44:29:4d:57:72:
c3:11:80:9c:a0:3d:dc:6b:2a:fa:77:08:bf:8f:37:
28:a6:5f:72:9b:17:cf:49:7e:c9:64:7b:ae:52:3d:
3c:67:54:83:2d:ce:72:22:11:f4:06:c2:7f:38:61:
4c:d6:c7:e7:60:24:ad:78:a4:f9:84:c4:ce:43:5f:
0e:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:EE:2D:A1:CC:CF:4D:2E:63:E6:5E:2E:86:D7:DA:9A:AC:D4:F5:23
X509v3 Authority Key Identifier:
keyid:3E:EE:BB:94:6A:8D:21:D4:08:3C:93:DC:09:CE:E5:57:BB:2A:C3:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/326131343a366634343a633066663a3a2f34382d3438203d3e203534363831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:6f44:c0ff::/48
Signature Algorithm: sha256WithRSAEncryption
83:3b:44:9e:da:f6:58:eb:98:97:82:36:db:b5:ea:f3:7d:4f:
67:ee:f1:1c:b2:93:cd:8f:2e:cf:23:f3:c7:30:f4:8b:83:75:
13:f4:b3:58:d0:f1:93:63:04:80:d6:32:0f:47:6f:4b:41:bf:
8e:1b:a4:02:fc:15:0f:0e:60:3a:db:ab:f9:11:14:7c:10:51:
66:67:1b:f8:a6:07:e6:0b:1e:ee:0e:7d:ba:4c:f6:10:e5:79:
45:d9:7d:c2:0a:d4:4e:37:1a:87:f6:96:71:dc:13:8f:aa:e1:
2e:f6:93:2c:d3:fa:9a:7e:dc:e7:ee:dc:82:16:9c:cc:61:ca:
ee:52:6d:dd:24:d9:1d:7a:1e:2e:aa:0c:21:81:7f:b1:ae:95:
8d:67:fe:a7:dd:38:79:28:0e:40:d1:62:3c:ad:ac:ba:55:55:
65:fe:da:5a:ab:cd:c7:95:02:32:5a:6f:a5:e1:be:19:29:e5:
14:03:ea:c3:f2:aa:75:10:7b:b8:cc:5c:d3:7c:54:a8:1f:fc:
7d:24:f8:c9:30:e8:4e:34:76:b9:3e:34:76:34:75:05:3f:ca:
6c:a4:16:9e:23:5c:7d:dc:90:06:d3:65:5d:47:06:d1:7b:69:
81:09:5f:62:82:6e:f5:ff:cc:c0:9a:f2:99:11:9c:9f:dd:b2:
ec:ad:6f:db
-----BEGIN CERTIFICATE-----
MIIFPjCCBCagAwIBAgIUXywPq15WdMhaQ3ZjudDN20Uxx6UwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoM2VlZWJiOTQ2YThkMjFkNDA4M2M5M2RjMDljZWU1NTdi
YjJhYzMyZTAeFw0yNDA3MjgxMDQyMDRaFw0yNTA3MjcxMDQ3MDRaMDMxMTAvBgNV
BAMTKDY1RUUyREExQ0NDRjREMkU2M0U2NUUyRTg2RDdEQTlBQUNENEY1MjMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClG8va7HbFEeu1WNWbW4LZCgJ9
KFVeQ8GrHfr3QqW0wzBRR/2+aFcTioARIdsP+iPmi0y4rAIh8fsJOe9nnEWjgwJV
l9Z6yBzGHdxDgy3/PLhphtSJleyAexjBYW4xaJVyC+1xdzpo43Mju9OCOZcCqjBe
GeEBDO0UWqzQMhVpQTd733LARp1gAzFcmC3/Hf2IbPCYNuZaHxQYG9R2m7M/9noq
Kc3doyEdahRnidPckh5KEetHJ3BklnBTmI5EKU1XcsMRgJygPdxrKvp3CL+PNyim
X3KbF89Jfslke65SPTxnVIMtznIiEfQGwn84YUzWx+dgJK14pPmExM5DXw4LAgMB
AAGjggJIMIICRDAdBgNVHQ4EFgQUZe4toczPTS5j5l4uhtfamqzU9SMwHwYDVR0j
BBgwFoAUPu67lGqNIdQIPJPcCc7lV7sqwy4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNmZmN2E5ODktZWNkZi00M2Q2LTg2ZTEtZjZjMzkzNWI5
YjNkLzQvM0VFRUJCOTQ2QThEMjFENDA4M0M5M0RDMDlDRUU1NTdCQjJBQzMyRS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1B1NjdsR3FOSWRRSVBKUGNDYzdsVjdz
cXd5NC5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNmZmN2E5ODkt
ZWNkZi00M2Q2LTg2ZTEtZjZjMzkzNWI5YjNkLzQvMzI2MTMxMzQzYTM2NjYzNDM0
M2E2MzMwNjY2NjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzQzNjM4MzEucm9h
MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8E
AgACMAkDBwAqFG9EwP8wDQYJKoZIhvcNAQELBQADggEBAIM7RJ7a9ljrmJeCNtu1
6vN9T2fu8Ryyk82PLs8j88cw9IuDdRP0s1jQ8ZNjBIDWMg9Hb0tBv44bpAL8FQ8O
YDrbq/kRFHwQUWZnG/imB+YLHu4OfbpM9hDleUXZfcIK1E43Gof2lnHcE4+q4S72
kyzT+pp+3Ofu3IIWnMxhyu5Sbd0k2R16Hi6qDCGBf7GulY1n/qfdOHkoDkDRYjyt
rLpVVWX+2lqrzceVAjJab6Xhvhkp5RQD6sPyqnUQe7jMXNN8VKgf/H0k+Mkw6E40
drk+NHY0dQU/ymykFp4jXH3ckAbTZV1HBtF7aYEJX2KCbvX/zMCa8pkRnJ/dsuyt
b9s=
-----END CERTIFICATE-----
Generated at Wed Sep 18 15:59:02 2024 by rpki-client on console-fra.rpki-client.org