Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/326131343a366634343a656465383a3a2f34382d3438203d3e20323035373839.roa
File: 326131343a366634343a656465383a3a2f34382d3438203d3e20323035373839.roa (raw, json)
Hash identifier: K1pgngmKcNIjyWdBpbyb8yrU4+AFj1FA0WE8csGiSxU=
Subject key identifier: 5A:72:85:F1:7A:87:69:E4:98:57:0B:6B:85:D6:05:B6:EB:CC:69:8C
Certificate issuer: /CN=3eeebb946a8d21d4083c93dc09cee557bb2ac32e
Certificate serial: 3B1394B6CF10EEBA0B9E2EC0CB6ED39875053286
Authority key identifier: 3E:EE:BB:94:6A:8D:21:D4:08:3C:93:DC:09:CE:E5:57:BB:2A:C3:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/326131343a366634343a656465383a3a2f34382d3438203d3e20323035373839.roa
Signing time: Mon 28 Oct 2024 12:45:24 +0000
ROA not before: Mon 28 Oct 2024 12:40:24 +0000
ROA not after: Mon 27 Oct 2025 12:45:24 +0000
asID: 205789
IP address blocks: 2a14:6f44:ede8::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.crl
rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.mft
rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 21 Nov 2024 18:58:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:13:94:b6:cf:10:ee:ba:0b:9e:2e:c0:cb:6e:d3:98:75:05:32:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3eeebb946a8d21d4083c93dc09cee557bb2ac32e
Validity
Not Before: Oct 28 12:40:24 2024 GMT
Not After : Oct 27 12:45:24 2025 GMT
Subject: CN=5A7285F17A8769E498570B6B85D605B6EBCC698C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:6a:20:10:1e:38:54:2c:a7:65:31:8b:09:ba:
f6:56:b6:b6:83:d5:bd:c5:a4:ec:14:2f:56:17:63:
86:2d:24:9e:b8:5e:ff:d7:29:d4:33:28:ee:39:2c:
3e:87:68:8f:e4:2b:2f:a9:8d:b5:65:a4:90:13:b1:
71:bd:43:2f:bd:4b:ae:38:8d:80:96:4d:86:06:5f:
14:df:41:57:b8:99:ae:e4:31:0c:d4:48:cc:09:4d:
71:de:bc:13:5a:af:ed:7f:32:ae:8c:c3:d7:d8:e4:
14:82:90:17:f6:29:14:62:6b:98:56:eb:d3:89:87:
88:56:9e:45:8a:f6:4d:d9:42:9b:57:eb:fe:9a:c5:
0b:da:95:18:50:8e:3c:9a:04:a3:6c:ac:c8:fd:15:
b0:e3:52:8f:65:a3:8b:e5:4e:0f:28:ab:64:24:fa:
7b:1a:de:26:0b:36:19:fb:8d:9a:d6:fd:cb:6a:d5:
24:80:c0:8f:38:fd:4e:4f:33:94:fb:5f:89:e7:3c:
47:82:11:9e:8e:3f:9e:5f:bd:e4:cc:b8:ab:27:f1:
4b:10:96:b0:8b:e0:48:2b:9a:57:6f:c2:96:f1:ab:
c4:d9:12:d6:f6:b7:e7:c3:86:a8:5e:e5:c6:a7:eb:
c0:02:fc:64:20:e8:de:75:1a:ff:0f:71:08:2e:dc:
92:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:72:85:F1:7A:87:69:E4:98:57:0B:6B:85:D6:05:B6:EB:CC:69:8C
X509v3 Authority Key Identifier:
keyid:3E:EE:BB:94:6A:8D:21:D4:08:3C:93:DC:09:CE:E5:57:BB:2A:C3:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/326131343a366634343a656465383a3a2f34382d3438203d3e20323035373839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:6f44:ede8::/48
Signature Algorithm: sha256WithRSAEncryption
19:9b:79:fc:eb:e3:b6:53:f6:2f:c0:c3:ce:00:fa:c4:6b:68:
59:fa:7b:06:a1:25:10:d9:18:06:be:e5:de:7e:fc:53:2d:cb:
43:46:22:f4:ff:f5:02:66:15:9c:8c:08:25:35:18:41:7d:b0:
5e:2b:85:9e:ee:21:1b:3d:fc:2c:8e:d5:1a:27:bd:7a:db:c9:
85:95:28:d1:5d:57:e7:b9:55:13:6a:e9:52:6e:8f:92:67:e0:
96:1d:da:e2:a2:14:47:9e:3c:cf:4a:90:bd:67:d4:e6:2d:87:
72:d7:b6:4c:1f:fc:d3:90:53:bd:33:f5:a6:89:a5:d7:e0:44:
d9:93:2c:e4:e2:7c:34:8e:6d:55:b7:a8:ef:b5:63:aa:01:01:
59:32:9d:fc:63:63:91:15:26:1a:31:c1:65:8a:41:e5:ab:93:
e4:e6:aa:c4:57:b8:2a:c1:d3:a5:ff:82:ee:02:30:93:08:a9:
fb:54:62:0c:e1:ab:84:ed:ec:ee:57:f7:ef:c8:ba:24:22:5f:
be:4b:b9:3b:6d:d3:f3:01:6e:93:d7:6b:9a:99:9a:a8:50:d3:
b2:03:53:7b:e3:41:f6:6b:87:9a:f5:99:d4:ae:ba:14:38:aa:
07:6c:fc:64:f8:fb:c5:ab:9d:aa:d7:27:74:a1:94:05:5e:0c:
87:ae:59:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 01:58:32 2024 by rpki-client on console-ams.rpki-client.org