Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a313030303a3a2f33362d3438203d3e203633313530.roa
File: 326131343a373538303a313030303a3a2f33362d3438203d3e203633313530.roa (raw, json)
Hash identifier: rQz32Gagqa0dVzLlRpOM3iCxkgV5FQHfNH0LW3BAmCs=
Subject key identifier: 37:3E:2A:4A:51:34:0C:67:FA:67:4C:06:7C:42:8D:30:BB:8D:01:1B
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 77349D5B534C19449EC0BEE337F47C83267167EA
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a313030303a3a2f33362d3438203d3e203633313530.roa
Signing time: Sun 21 Jul 2024 14:38:51 +0000
ROA not before: Sun 21 Jul 2024 14:33:51 +0000
ROA not after: Sun 20 Jul 2025 14:38:51 +0000
asID: 63150
IP address blocks: 2a14:7580:1000::/36 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:34:9d:5b:53:4c:19:44:9e:c0:be:e3:37:f4:7c:83:26:71:67:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Jul 21 14:33:51 2024 GMT
Not After : Jul 20 14:38:51 2025 GMT
Subject: CN=373E2A4A51340C67FA674C067C428D30BB8D011B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:12:99:5f:ec:1c:94:9d:93:19:3c:1b:8b:8e:
6e:c4:87:9a:2c:68:a6:d7:d2:1d:3f:9e:72:6b:7d:
0b:61:b1:22:a0:42:ab:b8:cb:07:52:ea:73:ab:41:
c4:18:2f:54:e6:8e:ee:5e:68:c0:a9:61:07:e3:85:
c1:55:3e:a3:77:a8:17:e0:2d:c8:4e:37:22:d2:c4:
20:d3:0b:e0:b8:62:8e:ed:65:4a:d9:b6:a0:f5:b1:
c3:0b:39:07:9c:9c:0d:7c:46:89:21:51:e7:18:84:
9d:2c:18:d1:07:3b:24:67:77:6f:e5:05:8d:47:9e:
b0:2b:8e:fe:6d:0c:95:cb:c1:9c:08:51:6c:53:c9:
01:6a:31:08:05:7b:a7:16:a7:3d:1c:61:7a:6b:70:
bf:a9:31:3f:c8:e4:64:02:f5:78:a4:d9:58:5e:53:
cc:88:88:5c:69:1a:4e:5a:3c:d9:c0:28:29:2c:b9:
16:29:17:a5:5f:55:6c:34:21:d1:86:8d:5e:94:e8:
15:a7:18:e4:0b:5f:b6:e3:a8:5f:67:b6:90:78:c1:
ae:d5:62:4f:89:45:7e:d9:c6:84:06:55:65:ac:3c:
84:c6:ab:5a:f7:c6:68:42:5d:42:64:8f:4c:7d:f5:
78:d1:24:12:2c:c5:df:4e:15:c7:0f:48:a2:66:66:
5e:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:3E:2A:4A:51:34:0C:67:FA:67:4C:06:7C:42:8D:30:BB:8D:01:1B
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a313030303a3a2f33362d3438203d3e203633313530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7580:1000::/36
Signature Algorithm: sha256WithRSAEncryption
55:b7:50:21:ff:cc:ae:7c:f5:c0:76:fb:07:e6:81:7f:7a:65:
4c:44:76:ca:c0:a5:d5:3d:81:29:dd:dc:fd:a7:05:26:99:4b:
66:f9:d3:d3:23:8b:a5:ac:81:0b:7e:a3:46:0d:53:56:a5:b5:
21:33:f4:f3:83:fe:49:03:7e:00:5b:9a:3b:ed:c4:7a:1d:b7:
ba:75:6b:42:d1:7d:23:e1:ac:ef:45:10:6b:dc:ca:c6:6c:5f:
5e:ab:6b:e4:0a:b1:10:3a:01:08:54:01:33:c4:b1:48:cd:38:
33:0d:cf:27:f2:5a:05:4a:74:08:88:b3:fb:b4:f9:f9:7c:68:
17:3b:ec:e8:1e:06:72:8c:68:64:96:b3:a2:22:6c:df:76:ba:
4f:87:1e:68:60:39:18:56:e1:79:64:43:3e:ce:b5:97:2a:a3:
08:dd:7f:01:41:0a:8d:1e:0a:c5:bd:1f:88:7f:52:f0:1f:0d:
be:08:eb:3f:fd:8c:0a:03:f9:20:15:ce:10:d2:28:f2:bf:a8:
50:e6:8e:5c:69:39:13:ff:04:59:a3:73:9d:5a:3b:3d:93:a7:
4d:59:c4:34:7f:8b:ad:1f:5b:ce:93:8c:62:37:5a:f1:72:af:
4a:a0:d8:78:81:08:f2:70:28:c0:49:d4:24:82:90:1b:f4:58:
88:45:62:e0
-----BEGIN CERTIFICATE-----
MIIFPTCCBCWgAwIBAgIUdzSdW1NMGUSewL7jN/R8gyZxZ+owDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYTgzZDQ4NjUyZjNiMmRmNzRmNmJmOWJhYThhOWMxNzRj
Y2ZkMzc3MjAeFw0yNDA3MjExNDMzNTFaFw0yNTA3MjAxNDM4NTFaMDMxMTAvBgNV
BAMTKDM3M0UyQTRBNTEzNDBDNjdGQTY3NEMwNjdDNDI4RDMwQkI4RDAxMUIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwEplf7ByUnZMZPBuLjm7Eh5os
aKbX0h0/nnJrfQthsSKgQqu4ywdS6nOrQcQYL1Tmju5eaMCpYQfjhcFVPqN3qBfg
LchONyLSxCDTC+C4Yo7tZUrZtqD1scMLOQecnA18RokhUecYhJ0sGNEHOyRnd2/l
BY1HnrArjv5tDJXLwZwIUWxTyQFqMQgFe6cWpz0cYXprcL+pMT/I5GQC9Xik2Vhe
U8yIiFxpGk5aPNnAKCksuRYpF6VfVWw0IdGGjV6U6BWnGOQLX7bjqF9ntpB4wa7V
Yk+JRX7ZxoQGVWWsPITGq1r3xmhCXUJkj0x99XjRJBIsxd9OFccPSKJmZl71AgMB
AAGjggJHMIICQzAdBgNVHQ4EFgQUNz4qSlE0DGf6Z0wGfEKNMLuNARswHwYDVR0j
BBgwFoAUqD1IZS87LfdPa/m6qKnBdMz9N3IwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvODkyNzBmNmMtYTNmZS00Mjk5LWIwNzktMzA5ZWQ5N2Yz
ODI0LzAvQTgzRDQ4NjUyRjNCMkRGNzRGNkJGOUJBQThBOUMxNzRDQ0ZEMzc3Mi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3FEMUlaUzg3TGZkUGFfbTZxS25CZE16
OU4zSS5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvODkyNzBmNmMt
YTNmZS00Mjk5LWIwNzktMzA5ZWQ5N2YzODI0LzAvMzI2MTMxMzQzYTM3MzUzODMw
M2EzMTMwMzAzMDNhM2EyZjMzMzYyZDM0MzgyMDNkM2UyMDM2MzMzMTM1MzAucm9h
MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4E
AgACMAgDBgQqFHWAEDANBgkqhkiG9w0BAQsFAAOCAQEAVbdQIf/Mrnz1wHb7B+aB
f3plTER2ysCl1T2BKd3c/acFJplLZvnT0yOLpayBC36jRg1TVqW1ITP084P+SQN+
AFuaO+3Eeh23unVrQtF9I+Gs70UQa9zKxmxfXqtr5AqxEDoBCFQBM8SxSM04Mw3P
J/JaBUp0CIiz+7T5+XxoFzvs6B4GcoxoZJazoiJs33a6T4ceaGA5GFbheWRDPs61
lyqjCN1/AUEKjR4Kxb0fiH9S8B8NvgjrP/2MCgP5IBXOENIo8r+oUOaOXGk5E/8E
WaNznVo7PZOnTVnENH+LrR9bzpOMYjda8XKvSqDYeIEI8nAowEnUJIKQG/RYiEVi
4A==
-----END CERTIFICATE-----
Generated at Thu Nov 21 19:35:20 2024 by rpki-client on console-ams.rpki-client.org