Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a323a3a2f34382d3438203d3e203538323032.roa
File: 326131343a373538303a323a3a2f34382d3438203d3e203538323032.roa (raw, json)
Hash identifier: IWb6+YHa7NH+FArKTUjsKW4X8tkhulo2cz89FODqFDE=
Subject key identifier: C4:63:F7:CB:84:6E:65:B6:FD:22:44:E6:9C:62:F0:47:DE:23:FF:09
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 28BE5C59F4918D546290CED0F712FAEAD80BB240
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a323a3a2f34382d3438203d3e203538323032.roa
Signing time: Tue 27 Aug 2024 01:04:32 +0000
ROA not before: Tue 27 Aug 2024 00:59:32 +0000
ROA not after: Tue 26 Aug 2025 01:04:32 +0000
asID: 58202
IP address blocks: 2a14:7580:2::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:be:5c:59:f4:91:8d:54:62:90:ce:d0:f7:12:fa:ea:d8:0b:b2:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Aug 27 00:59:32 2024 GMT
Not After : Aug 26 01:04:32 2025 GMT
Subject: CN=C463F7CB846E65B6FD2244E69C62F047DE23FF09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:d8:a7:a5:eb:e2:1e:f6:60:25:82:3f:52:01:
cb:d2:d9:2c:ca:f7:be:46:5e:97:b9:eb:88:90:8c:
b9:e7:3b:28:3b:80:37:47:f8:93:91:f7:e3:38:28:
7c:7d:69:6a:70:f2:07:ed:81:56:b9:5b:ee:cb:0a:
85:65:7b:3d:e6:76:0f:6f:56:65:c8:ab:db:4a:9a:
ca:49:1a:02:f3:1d:5d:63:18:5f:44:06:95:25:7e:
a2:3a:5f:c5:85:26:56:ec:94:a3:6c:f4:32:4f:d7:
40:79:b6:bc:62:b7:aa:b5:71:5b:14:5d:75:51:0b:
8f:e5:11:c2:14:ee:62:7e:c7:c7:9d:5d:8e:9e:f0:
3e:e6:fe:0c:d1:11:62:74:cb:68:bd:2a:d0:0e:d9:
7f:42:9d:1e:ee:cb:6c:f9:87:0c:9f:cd:e4:02:bc:
23:a0:aa:e9:47:15:12:72:51:dc:68:f0:be:0c:a5:
54:c3:96:f1:73:4c:da:c6:c7:6e:cc:00:9c:76:5a:
f8:bb:47:bc:d8:dc:14:6d:57:d0:e8:ab:86:0f:0e:
da:04:7b:85:f5:56:54:3c:2e:13:25:67:33:46:83:
06:cd:d9:ae:fa:7f:a2:9f:17:c6:a7:0c:1a:d0:52:
42:b5:0a:5a:d6:52:2b:75:79:e1:0f:ce:88:82:cf:
1c:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:63:F7:CB:84:6E:65:B6:FD:22:44:E6:9C:62:F0:47:DE:23:FF:09
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a323a3a2f34382d3438203d3e203538323032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7580:2::/48
Signature Algorithm: sha256WithRSAEncryption
27:34:36:1a:c9:26:12:ae:ba:ca:88:13:17:e0:ae:fe:4b:62:
bb:12:01:a1:5a:71:f2:fb:05:30:bd:3a:34:cd:74:e6:17:e6:
7e:1e:f0:40:aa:18:80:3b:c4:0e:c9:15:0a:c5:ba:f9:0e:54:
d1:01:05:4b:88:f2:49:a2:c0:74:14:5d:31:44:1e:a8:ec:33:
76:96:b1:be:46:f8:ac:2a:72:57:a2:89:c1:4e:37:6e:e1:fe:
9f:5a:40:2f:a0:e7:4f:e6:2e:7a:81:a2:ee:1e:22:56:86:8d:
5f:c6:18:1d:22:c3:c4:f5:15:c5:55:6a:7d:15:22:c2:93:ec:
d8:0d:60:4e:6d:58:a5:ea:5b:37:63:00:0a:96:4e:ad:0a:c5:
9c:4a:fc:ea:22:45:7c:17:42:d2:4f:f1:da:18:ad:dd:0d:3d:
7e:ad:51:31:bb:b3:22:70:6a:c9:08:4e:b5:3a:39:85:6b:73:
ae:dd:1a:3a:95:a2:41:b2:e0:c7:26:e8:19:ad:0b:24:ba:86:
c2:44:c0:e7:5a:8c:da:4d:53:f8:b3:71:d9:ad:d9:09:d9:40:
18:0e:c9:e5:4a:97:ba:ab:93:d3:21:e4:84:41:0f:1c:2c:e5:
d7:cb:b6:1b:aa:a4:bd:5f:0d:af:67:a0:a2:f8:7e:e5:51:ee:
d3:f0:50:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:50:40 2024 by rpki-client on console-fra.rpki-client.org