Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a353030303a3a2f33362d3438203d3e20323134333434.roa
File: 326131343a373538303a353030303a3a2f33362d3438203d3e20323134333434.roa (raw, json)
Hash identifier: jWRyXUFu1umSPzFy46vTMc0XdTD4VhcTWu6BnIOnDQs=
Subject key identifier: 99:C1:93:A2:BC:33:E7:5F:E2:06:CD:82:D2:8F:BE:6A:44:63:09:14
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 106A2DEE3EBA739C173CE29BCE7F99A9CDA9071E
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a353030303a3a2f33362d3438203d3e20323134333434.roa
Signing time: Thu 29 Aug 2024 01:30:05 +0000
ROA not before: Thu 29 Aug 2024 01:25:05 +0000
ROA not after: Thu 28 Aug 2025 01:30:05 +0000
asID: 214344
IP address blocks: 2a14:7580:5000::/36 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:6a:2d:ee:3e:ba:73:9c:17:3c:e2:9b:ce:7f:99:a9:cd:a9:07:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Aug 29 01:25:05 2024 GMT
Not After : Aug 28 01:30:05 2025 GMT
Subject: CN=99C193A2BC33E75FE206CD82D28FBE6A44630914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:ec:64:c1:b6:0c:81:6f:78:a3:98:b5:69:1e:
7d:aa:87:e7:46:c1:70:08:f4:09:2b:9c:d4:d1:fd:
53:e7:a7:79:da:d7:1e:08:1e:a5:ad:82:2a:5d:92:
af:79:95:74:1e:5e:9e:25:2f:22:23:d6:4c:12:d8:
ed:bd:7a:be:7e:b9:6b:6d:5e:14:87:78:95:d5:f2:
8f:f7:16:85:ac:d6:3b:61:12:4c:11:04:a2:03:49:
28:c5:c7:1e:5a:52:7b:8a:43:7c:d1:09:8a:1a:1d:
22:dc:ef:29:0f:87:4b:ba:17:b5:14:fa:02:9f:19:
1b:4c:5f:34:a6:c6:d1:8f:21:21:7f:86:6c:85:1a:
c7:a7:15:e5:61:c8:e9:75:0b:68:54:5a:dd:a4:7f:
b2:57:54:08:64:3c:08:72:cb:34:f1:11:a7:25:34:
8c:8e:35:bf:4d:c6:76:85:68:fb:94:85:4e:30:40:
d1:f5:44:ef:3f:09:d4:04:66:37:f0:f0:b8:cc:92:
3e:e8:93:2d:d6:22:27:15:2b:3c:9d:d1:39:d8:8a:
be:12:76:82:c7:66:99:8b:30:9a:87:1a:56:a1:c1:
6b:fa:97:3b:d3:3f:4a:fd:cb:68:7a:f7:71:37:98:
57:f2:45:4b:7e:5a:da:ad:be:bc:02:25:37:c7:00:
89:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:C1:93:A2:BC:33:E7:5F:E2:06:CD:82:D2:8F:BE:6A:44:63:09:14
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a353030303a3a2f33362d3438203d3e20323134333434.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7580:5000::/36
Signature Algorithm: sha256WithRSAEncryption
9b:c6:e9:7e:ed:aa:e0:96:7a:fa:d3:4e:a8:65:a3:51:7a:b4:
bf:65:43:63:5c:53:60:69:81:53:9d:4e:51:19:8d:55:35:be:
16:fa:9a:89:b5:e2:a7:4b:32:98:d3:24:3f:8d:cd:b8:fd:f2:
00:33:98:18:bf:fa:45:c5:46:c0:35:9e:78:17:30:26:42:83:
aa:11:66:7e:19:eb:a0:ac:77:61:dc:ae:7a:f7:7d:6e:d5:50:
36:f7:71:47:dc:df:64:18:06:e0:a2:b3:11:52:a1:65:ae:55:
a4:0c:44:fd:f6:5f:e9:29:45:e2:37:db:e2:00:35:0a:7b:21:
26:70:47:e4:7a:d7:c8:17:a6:db:9b:ab:01:20:f5:ca:e2:55:
5d:fb:ae:dc:27:33:16:43:7f:f1:fb:80:41:ad:9e:6e:a8:f3:
f4:3f:c7:66:03:c1:b3:b9:c4:26:53:e4:1e:d0:30:41:56:c7:
c6:83:e8:71:55:d5:aa:e0:a5:03:b0:ed:4b:65:3f:67:4d:b9:
d6:b4:36:49:64:2d:99:f8:f1:64:3f:88:a6:bf:51:e7:53:05:
72:db:ef:ea:54:0c:39:8a:53:a6:8d:07:c6:b2:cc:ab:80:cc:
2b:06:97:1d:7f:60:fa:fe:5e:72:28:78:eb:3d:f7:71:b9:dd:
b4:24:6c:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:50:40 2024 by rpki-client on console-fra.rpki-client.org