Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a363030303a3a2f33362d3438203d3e20323134323033.roa
File: 326131343a373538303a363030303a3a2f33362d3438203d3e20323134323033.roa (raw, json)
Hash identifier: eBADqZbOhaXrjPRX9pAlwq5hLPt0qn/I/CsxXeIwIOg=
Subject key identifier: 55:BA:F4:29:2A:38:33:75:0E:C7:D1:92:15:5F:AB:9A:E0:E9:C3:7A
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 7A4C7EF49252B13095BE69435E9CD6D862884F0A
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a363030303a3a2f33362d3438203d3e20323134323033.roa
Signing time: Wed 25 Sep 2024 09:38:28 +0000
ROA not before: Wed 25 Sep 2024 09:33:28 +0000
ROA not after: Wed 24 Sep 2025 09:38:28 +0000
asID: 214203
IP address blocks: 2a14:7580:6000::/36 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:4c:7e:f4:92:52:b1:30:95:be:69:43:5e:9c:d6:d8:62:88:4f:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Sep 25 09:33:28 2024 GMT
Not After : Sep 24 09:38:28 2025 GMT
Subject: CN=55BAF4292A3833750EC7D192155FAB9AE0E9C37A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:97:7e:81:85:53:ca:78:a4:01:23:44:01:49:
01:ce:55:26:23:a8:00:b1:a8:98:da:93:fe:d1:bf:
9f:8e:61:5c:88:c9:6d:b5:76:c9:78:33:2f:5f:69:
29:46:32:db:9f:1c:62:6d:ac:30:77:7b:43:7b:be:
4f:d7:e8:59:3d:f9:71:9a:ca:4d:ff:59:2c:9b:48:
4e:8b:67:41:b7:1a:09:96:3c:c6:fc:c7:a5:a5:3b:
84:fc:39:c6:a9:72:f9:ce:ea:ac:72:ac:4a:b2:6b:
ae:63:0e:90:04:f3:49:72:5c:5a:dc:63:90:af:f3:
32:a0:f6:cf:cb:a4:13:6c:ad:50:37:b1:53:28:db:
ee:d9:5a:eb:09:2b:a5:62:f3:fb:25:40:fb:f9:4a:
4c:5c:10:e0:4c:6e:35:5f:66:91:ff:76:5b:02:00:
0a:52:02:08:65:01:dc:8f:3c:d8:77:60:c2:cb:6e:
ee:1b:70:59:64:ef:78:67:3e:61:a3:9e:45:cc:87:
62:d4:78:bd:07:3e:19:d7:83:13:0a:e0:83:70:17:
f2:a5:b5:c2:b4:77:dd:bd:bd:95:f7:1e:63:97:78:
4b:10:76:01:b3:b3:4f:a2:17:49:0d:fe:a9:28:55:
6a:6b:53:9b:e6:b0:14:50:34:0f:75:8e:d6:29:3f:
4f:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:BA:F4:29:2A:38:33:75:0E:C7:D1:92:15:5F:AB:9A:E0:E9:C3:7A
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a363030303a3a2f33362d3438203d3e20323134323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7580:6000::/36
Signature Algorithm: sha256WithRSAEncryption
81:8f:b6:c1:2d:8a:8f:1c:18:15:cd:38:f1:b5:06:6c:9c:cc:
05:04:b1:0b:da:05:7c:7a:d7:0d:80:31:eb:ab:d7:5d:43:2a:
87:ad:d2:8a:ae:d2:0c:fa:c4:5f:db:27:9b:7c:80:d8:5a:b9:
f8:1e:71:2e:c9:f2:b6:ad:0f:ea:4f:1f:2d:97:b6:95:db:75:
03:20:60:80:c5:3c:0d:28:47:b5:39:02:66:77:d5:fd:c9:b7:
b6:d1:f9:1d:e9:74:b5:5f:81:46:59:5a:35:a2:0d:af:c6:67:
b5:94:ae:cb:c9:f7:58:54:ef:de:18:d9:3f:8d:d5:d7:22:1e:
da:3c:01:d3:0b:dc:79:55:bd:ec:9c:cd:56:08:09:83:32:1d:
84:21:2b:89:58:1b:3a:80:99:6e:e7:6c:43:83:f6:99:72:63:
a7:59:55:39:60:98:bf:19:3e:6a:d3:bf:17:5e:80:2b:e4:89:
a6:05:e9:c4:c3:50:a5:27:05:ac:07:77:c9:9e:c8:01:6f:7c:
78:47:4f:bf:48:7f:db:70:22:7b:75:b6:32:6f:26:a3:65:8e:
58:b9:d9:df:3f:1f:4a:aa:74:7f:e4:30:07:66:8f:d8:f4:fe:
18:5b:a0:30:24:50:ac:8b:89:e8:41:bc:b9:34:23:1d:db:9d:
d2:4c:a3:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:35:20 2024 by rpki-client on console-ams.rpki-client.org