Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a323030303a3a2f33362d3438203d3e20323134343534.roa
File: 326131343a373538303a323030303a3a2f33362d3438203d3e20323134343534.roa (raw, json)
Hash identifier: DsJ9l2/FGnWp4ciDXj1zsc86VzSQ88UUEXo0q2jOjiE=
Subject key identifier: 7B:D3:4C:BB:5F:DE:98:83:A3:83:D8:81:AA:B3:0E:18:35:9E:60:0B
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 017AF55C112CC8A39FD15DDDBA7827A50BE762BF
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a323030303a3a2f33362d3438203d3e20323134343534.roa
Signing time: Tue 30 Jul 2024 15:21:42 +0000
ROA not before: Tue 30 Jul 2024 15:16:42 +0000
ROA not after: Tue 29 Jul 2025 15:21:42 +0000
asID: 214454
IP address blocks: 2a14:7580:2000::/36 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:7a:f5:5c:11:2c:c8:a3:9f:d1:5d:dd:ba:78:27:a5:0b:e7:62:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Jul 30 15:16:42 2024 GMT
Not After : Jul 29 15:21:42 2025 GMT
Subject: CN=7BD34CBB5FDE9883A383D881AAB30E18359E600B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b1:39:ca:29:f3:26:00:37:6f:75:93:07:62:
91:38:cb:0a:c1:72:f8:fb:92:1d:2d:a7:3a:59:0e:
65:20:2b:f1:c5:af:49:4e:02:e2:7d:5e:11:6f:a8:
a9:28:f2:83:e9:7f:9d:a8:08:21:70:57:63:c9:b2:
de:9c:b6:72:ad:18:c6:37:c5:e4:66:51:69:5e:72:
1e:91:08:93:25:83:06:65:da:34:c2:3d:bf:d1:a2:
ac:1a:e2:db:9a:8c:d5:e9:72:20:c1:37:25:a2:7d:
7d:66:1c:7c:f8:20:52:26:8e:8c:7b:5c:0d:f3:f8:
c8:c4:a9:44:bc:f3:fb:50:4c:34:5c:8a:3f:f4:37:
dd:2e:b6:b3:fe:46:80:b5:c7:21:bf:1d:3f:11:99:
de:97:1a:05:e9:15:2e:82:90:76:31:34:73:8e:a6:
b9:d3:ae:52:47:17:74:4e:4f:88:73:10:f7:ed:23:
5d:68:fd:61:ea:1f:4a:0d:f9:76:a1:48:e0:52:e4:
70:7b:e1:7f:25:db:82:19:0f:35:7f:09:dc:46:a4:
81:20:d3:a5:78:e2:12:c1:b9:02:22:2e:e3:de:61:
4a:5c:ac:02:56:37:9c:26:8f:bf:07:e1:2d:ea:ff:
9c:69:23:ea:99:84:14:4b:c8:ac:a0:99:65:0e:7a:
70:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:D3:4C:BB:5F:DE:98:83:A3:83:D8:81:AA:B3:0E:18:35:9E:60:0B
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a323030303a3a2f33362d3438203d3e20323134343534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7580:2000::/36
Signature Algorithm: sha256WithRSAEncryption
89:ef:73:8a:e4:26:6f:a4:98:13:93:e9:ec:3a:65:5e:81:54:
5b:eb:d6:9a:94:78:76:22:20:08:57:58:b3:74:8c:fd:79:3f:
c9:48:2b:42:b3:3e:e2:93:8b:9c:33:ac:cf:b4:68:fd:f4:31:
be:8c:ea:86:57:fd:d8:cd:e5:e0:4b:5b:85:1b:b4:ae:88:40:
17:70:02:be:5d:b7:b8:f2:6b:70:47:33:bf:f9:ff:dd:a5:1e:
d1:0e:5d:fc:cf:17:cd:b5:31:03:c5:19:22:97:0d:26:f9:3c:
fc:08:33:1e:a5:18:8a:d6:9b:6a:9f:42:ad:e1:e8:99:aa:5d:
83:b6:f6:6e:bd:0c:9e:3a:65:49:83:cd:9f:1d:d6:49:ea:a0:
0e:7e:02:4f:db:34:29:3f:b0:53:fe:98:c5:f2:7b:74:87:5e:
93:e5:a7:bb:fe:db:67:a7:29:25:25:fb:21:bb:f7:da:17:54:
a4:4a:7f:ee:b6:99:ce:82:c7:4e:94:f8:f2:68:97:33:2d:59:
9f:13:17:45:91:9e:af:cd:ac:90:c8:5a:ec:9d:ae:a1:e7:62:
1b:db:39:64:ad:6e:2a:d3:56:8b:74:b6:33:66:e3:0c:d9:4c:
20:3a:33:db:b3:d6:aa:f4:57:84:c1:c6:50:c8:fe:e3:3e:4b:
dc:8e:d0:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:35:20 2024 by rpki-client on console-ams.rpki-client.org