Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a3a2f34382d3438203d3e203538323032.roa
File: 326131343a373538303a3a2f34382d3438203d3e203538323032.roa (raw, json)
Hash identifier: 6C9PzbV7DWUw463JepXqdC6GZ+ZZlSpdA02ArPB2+B8=
Subject key identifier: 83:9F:B6:A0:2A:80:3D:14:7D:37:0C:7D:15:C5:45:96:97:35:2C:D2
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 12A08EB2516943C3C50C5DDFD0DDFF5419211FBA
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a3a2f34382d3438203d3e203538323032.roa
Signing time: Tue 08 Oct 2024 02:58:32 +0000
ROA not before: Tue 08 Oct 2024 02:53:32 +0000
ROA not after: Tue 07 Oct 2025 02:58:32 +0000
asID: 58202
IP address blocks: 2a14:7580::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:a0:8e:b2:51:69:43:c3:c5:0c:5d:df:d0:dd:ff:54:19:21:1f:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Oct 8 02:53:32 2024 GMT
Not After : Oct 7 02:58:32 2025 GMT
Subject: CN=839FB6A02A803D147D370C7D15C5459697352CD2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:80:05:e6:3f:65:6b:fb:13:e5:6a:01:40:40:
2b:d3:96:d7:ac:48:2f:2a:d6:68:7a:8d:01:54:c9:
0f:02:be:8a:80:22:7c:fe:22:65:60:6e:17:1f:c7:
c2:a3:c8:57:ba:9d:6d:d3:67:ee:cb:81:fd:29:e7:
f4:3c:45:e1:54:99:81:b8:8c:d7:45:7a:b8:b6:4c:
1d:6c:7d:06:1d:b7:df:29:b0:7c:ad:79:cf:52:8b:
7c:e3:9e:81:05:49:4b:27:3a:65:18:9a:b2:7a:46:
31:5a:b1:f9:69:6d:fa:5e:d0:93:e8:72:1e:54:29:
bf:4b:db:c4:65:ff:25:a4:e3:20:e7:c9:65:65:5a:
e9:97:b7:7c:3c:68:08:b5:f8:b4:a6:7f:e7:b9:cf:
3b:9e:1f:42:b1:6d:80:6a:bf:7c:34:a7:d5:4b:99:
df:19:b0:44:db:07:ac:74:d0:2c:95:47:df:2b:30:
75:8b:70:a4:ec:e2:9d:f9:13:a1:d0:e8:8c:7a:78:
12:61:56:08:a3:c8:1a:fc:3c:78:3d:0f:18:ff:c3:
db:a9:aa:b1:6b:b4:54:af:e3:08:aa:62:6e:e7:d7:
7e:dc:e7:c1:1a:75:c8:62:3b:e4:ac:1a:5e:b0:1a:
df:6e:8d:8b:e5:cc:e7:14:c2:cc:5c:ca:9e:62:0b:
93:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:9F:B6:A0:2A:80:3D:14:7D:37:0C:7D:15:C5:45:96:97:35:2C:D2
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a3a2f34382d3438203d3e203538323032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7580::/48
Signature Algorithm: sha256WithRSAEncryption
29:a9:dc:01:c9:79:30:3c:73:db:46:ec:af:37:fd:aa:d6:5e:
03:60:57:93:3e:47:95:4b:c7:a6:8d:c0:2d:b1:8a:d7:18:36:
ed:f1:78:83:2d:b3:36:4e:72:77:c4:77:da:69:32:96:cd:85:
49:4e:4e:7c:a4:2c:55:2e:78:e3:2f:8e:b4:da:e6:90:d1:e2:
81:03:e2:a9:d0:55:54:87:a3:6a:6f:4f:12:30:67:13:bd:24:
47:b6:eb:a3:3d:4d:74:ce:8e:6c:7d:d1:6f:8c:52:7c:36:6a:
8e:11:d9:48:9a:b1:1f:0a:08:47:ae:72:2c:45:a7:b9:f0:f3:
13:3a:95:5e:d5:56:51:fb:86:5d:7e:88:76:80:46:8a:84:31:
09:16:9c:e9:61:a8:61:3b:38:fa:f0:09:29:89:75:df:0f:80:
4f:cc:f0:34:07:e4:65:d8:c7:5e:88:af:e8:60:66:d9:4b:79:
69:32:7b:65:38:43:62:90:58:14:cf:8e:19:c2:d3:6f:a7:a2:
2e:1a:d6:f1:3d:71:33:a8:04:42:77:dd:94:81:40:78:28:16:
64:b9:26:ec:db:1a:8b:86:19:f2:09:6c:15:e5:aa:2d:95:1e:
30:40:e1:19:cf:b0:86:fc:45:6b:21:6a:79:85:59:0e:50:55:
65:83:fb:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:35:20 2024 by rpki-client on console-ams.rpki-client.org