Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/326131343a366634343a636166653a3a2f34382d3438203d3e20323035373839.roa
File: 326131343a366634343a636166653a3a2f34382d3438203d3e20323035373839.roa (raw, json)
Hash identifier: jDOaIGvPgjhenzPsT0baoWOtCBD2JafI5qghnSCs9Dw=
Subject key identifier: 98:AA:CD:CF:42:0C:D3:CF:7B:B5:72:34:AC:EB:67:B0:5C:1C:9F:24
Certificate issuer: /CN=3eeebb946a8d21d4083c93dc09cee557bb2ac32e
Certificate serial: 20538E82096791B2F77B564AF1E39D867BC132FD
Authority key identifier: 3E:EE:BB:94:6A:8D:21:D4:08:3C:93:DC:09:CE:E5:57:BB:2A:C3:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/326131343a366634343a636166653a3a2f34382d3438203d3e20323035373839.roa
Signing time: Sun 28 Jul 2024 10:47:58 +0000
ROA not before: Sun 28 Jul 2024 10:42:58 +0000
ROA not after: Sun 27 Jul 2025 10:47:58 +0000
asID: 205789
IP address blocks: 2a14:6f44:cafe::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.crl
rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.mft
rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:53:8e:82:09:67:91:b2:f7:7b:56:4a:f1:e3:9d:86:7b:c1:32:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3eeebb946a8d21d4083c93dc09cee557bb2ac32e
Validity
Not Before: Jul 28 10:42:58 2024 GMT
Not After : Jul 27 10:47:58 2025 GMT
Subject: CN=98AACDCF420CD3CF7BB57234ACEB67B05C1C9F24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:3d:3b:15:89:fc:e7:87:59:5f:30:4f:a7:b1:
c7:f6:ca:25:18:ae:bb:65:f1:97:16:36:df:59:e7:
8c:f7:88:78:9d:9f:b9:92:92:aa:e3:ac:c1:0b:86:
37:a7:fc:32:f2:67:36:25:66:2e:14:87:24:81:43:
f7:a5:27:19:7d:66:50:be:e7:5e:18:78:f2:d3:9d:
a7:a2:3e:2e:26:0e:bf:21:c0:e1:18:1b:92:bf:56:
f7:38:67:00:17:63:62:e2:90:28:db:65:d2:e6:c1:
2e:8a:08:47:f5:8a:7e:80:ce:54:1d:49:c0:4d:0f:
67:12:4e:ab:ea:d4:10:a0:d6:b2:02:c0:30:5d:cd:
3a:cd:f6:02:e5:27:bc:03:cd:96:4f:99:f1:92:60:
fd:75:5a:21:ca:8d:75:56:2e:15:64:fa:4c:86:16:
86:98:21:9d:f3:c8:be:f0:56:2a:f1:9e:2b:3b:9a:
c1:e0:2a:07:32:7c:c4:d7:50:8c:b3:db:4c:01:00:
a7:b2:8d:f4:43:06:70:6d:a5:ef:98:7c:80:76:cf:
81:51:23:1b:ac:32:19:84:2b:4c:68:8b:3a:d5:9d:
fd:77:c4:ae:6d:4a:79:b0:8a:b0:06:cc:8d:bb:6e:
82:ab:8e:f6:20:47:dd:44:33:b7:95:81:86:d2:fc:
9a:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:AA:CD:CF:42:0C:D3:CF:7B:B5:72:34:AC:EB:67:B0:5C:1C:9F:24
X509v3 Authority Key Identifier:
keyid:3E:EE:BB:94:6A:8D:21:D4:08:3C:93:DC:09:CE:E5:57:BB:2A:C3:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/326131343a366634343a636166653a3a2f34382d3438203d3e20323035373839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:6f44:cafe::/48
Signature Algorithm: sha256WithRSAEncryption
8b:2a:94:e0:cd:7f:2e:d9:69:22:ed:10:4b:7c:a2:57:e3:65:
6e:67:ae:57:25:d3:05:fb:03:fa:d6:8b:71:95:7e:d5:1e:1a:
73:94:6b:32:b3:93:48:5e:b8:a7:ee:6e:eb:80:0e:f1:28:df:
05:66:33:74:1a:ca:34:51:ac:c7:fc:23:e5:cb:80:80:b6:32:
37:c9:7c:54:a3:01:d7:42:74:eb:56:d3:e6:2f:94:3c:6f:ff:
e3:4d:31:a1:c1:7b:f9:54:c3:d0:96:6f:56:37:6c:86:e1:12:
c9:eb:7c:9a:36:ed:79:d7:94:8d:77:50:14:ed:7c:01:4e:b9:
ae:2a:46:b0:e6:55:19:0d:25:da:cd:31:36:ff:ae:88:db:cd:
86:f6:02:dd:64:ab:e7:a6:96:4a:4e:ee:8d:a1:ae:16:49:3e:
43:6d:9a:8c:da:fc:59:a5:96:fb:20:c8:ce:d4:1d:85:59:3a:
c6:c9:cb:68:4e:bc:a9:4d:82:08:10:f2:b5:28:e7:68:9f:f4:
3b:a9:33:51:4c:f9:b8:c8:90:c4:14:b0:93:1c:bc:cf:28:75:
01:7b:25:69:2f:0e:9c:d4:08:85:c5:7e:53:b2:e5:87:b4:13:
87:ef:6d:0a:a3:ec:53:b5:6d:c4:ed:38:86:8c:83:46:2b:12:
c5:00:4d:81
-----BEGIN CERTIFICATE-----
MIIFQDCCBCigAwIBAgIUIFOOgglnkbL3e1ZK8eOdhnvBMv0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoM2VlZWJiOTQ2YThkMjFkNDA4M2M5M2RjMDljZWU1NTdi
YjJhYzMyZTAeFw0yNDA3MjgxMDQyNThaFw0yNTA3MjcxMDQ3NThaMDMxMTAvBgNV
BAMTKDk4QUFDRENGNDIwQ0QzQ0Y3QkI1NzIzNEFDRUI2N0IwNUMxQzlGMjQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqPTsVifznh1lfME+nscf2yiUY
rrtl8ZcWNt9Z54z3iHidn7mSkqrjrMELhjen/DLyZzYlZi4UhySBQ/elJxl9ZlC+
514YePLTnaeiPi4mDr8hwOEYG5K/Vvc4ZwAXY2LikCjbZdLmwS6KCEf1in6AzlQd
ScBND2cSTqvq1BCg1rICwDBdzTrN9gLlJ7wDzZZPmfGSYP11WiHKjXVWLhVk+kyG
FoaYIZ3zyL7wVirxnis7msHgKgcyfMTXUIyz20wBAKeyjfRDBnBtpe+YfIB2z4FR
IxusMhmEK0xoizrVnf13xK5tSnmwirAGzI27boKrjvYgR91EM7eVgYbS/JprAgMB
AAGjggJKMIICRjAdBgNVHQ4EFgQUmKrNz0IM0897tXI0rOtnsFwcnyQwHwYDVR0j
BBgwFoAUPu67lGqNIdQIPJPcCc7lV7sqwy4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNmZmN2E5ODktZWNkZi00M2Q2LTg2ZTEtZjZjMzkzNWI5
YjNkLzQvM0VFRUJCOTQ2QThEMjFENDA4M0M5M0RDMDlDRUU1NTdCQjJBQzMyRS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1B1NjdsR3FOSWRRSVBKUGNDYzdsVjdz
cXd5NC5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNmZmN2E5ODkt
ZWNkZi00M2Q2LTg2ZTEtZjZjMzkzNWI5YjNkLzQvMzI2MTMxMzQzYTM2NjYzNDM0
M2E2MzYxNjY2NTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzAzNTM3MzgzOS5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw
DwQCAAIwCQMHACoUb0TK/jANBgkqhkiG9w0BAQsFAAOCAQEAiyqU4M1/LtlpIu0Q
S3yiV+NlbmeuVyXTBfsD+taLcZV+1R4ac5RrMrOTSF64p+5u64AO8SjfBWYzdBrK
NFGsx/wj5cuAgLYyN8l8VKMB10J061bT5i+UPG//400xocF7+VTD0JZvVjdshuES
yet8mjbtedeUjXdQFO18AU65ripGsOZVGQ0l2s0xNv+uiNvNhvYC3WSr56aWSk7u
jaGuFkk+Q22ajNr8WaWW+yDIztQdhVk6xsnLaE68qU2CCBDytSjnaJ/0O6kzUUz5
uMiQxBSwkxy8zyh1AXslaS8OnNQIhcV+U7Llh7QTh+9tCqPsU7VtxO04hoyDRisS
xQBNgQ==
-----END CERTIFICATE-----
Generated at Fri Nov 22 16:40:24 2024 by rpki-client on console-fra.rpki-client.org