Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a613030303a3a2f33362d3438203d3e203633313530.roa
File: 326131343a373538303a613030303a3a2f33362d3438203d3e203633313530.roa (raw, json)
Hash identifier: 7ihWVbbdz0tHDnqDQee0H18rhEiu53C/avShS3xGW5M=
Subject key identifier: C8:02:B6:CF:A5:CB:25:CF:BD:5C:5F:DF:81:0E:DD:4F:12:1F:64:AB
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 0C23484B7485E5CF1238DFE22BC5F218EB2B4D86
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a613030303a3a2f33362d3438203d3e203633313530.roa
Signing time: Tue 22 Oct 2024 13:33:42 +0000
ROA not before: Tue 22 Oct 2024 13:28:42 +0000
ROA not after: Tue 21 Oct 2025 13:33:42 +0000
asID: 63150
IP address blocks: 2a14:7580:a000::/36 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:23:48:4b:74:85:e5:cf:12:38:df:e2:2b:c5:f2:18:eb:2b:4d:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Oct 22 13:28:42 2024 GMT
Not After : Oct 21 13:33:42 2025 GMT
Subject: CN=C802B6CFA5CB25CFBD5C5FDF810EDD4F121F64AB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ca:07:e8:0b:3f:86:39:e2:e7:7e:48:c4:1e:
57:e0:1c:97:53:94:a3:cf:a2:de:61:c4:18:b0:7c:
4e:61:3d:00:6b:ff:8d:28:c3:34:b9:c7:b6:55:c6:
05:5a:b8:44:8a:80:07:48:3d:9a:32:7c:b0:8d:ba:
c5:2e:58:6b:43:25:6d:07:f9:50:35:c2:5c:86:ab:
f8:a4:ed:22:a4:3c:af:d0:f2:d6:ec:e4:ed:af:68:
f1:e3:12:10:30:bb:5c:98:cb:bc:50:21:80:02:c0:
54:24:95:49:92:70:bf:a7:1f:db:c7:f8:27:fd:ef:
77:71:b2:17:43:ab:e9:ac:fc:1e:31:03:bc:85:94:
9c:56:89:8a:91:82:d1:a8:1e:13:e3:40:47:31:99:
fa:e8:dc:20:37:bc:dc:b6:f0:64:f8:c2:28:5e:6e:
c7:83:95:11:73:9d:b8:6e:a0:57:dd:3b:d1:d4:94:
11:b0:dc:88:30:48:76:a1:5a:eb:db:97:37:32:9c:
44:f0:91:b3:70:01:44:49:1d:2a:09:69:0b:49:1d:
c3:0a:24:3e:ab:22:21:42:05:e1:16:c1:34:bc:55:
e5:f2:fe:2f:53:a0:cc:35:29:c6:f5:19:1c:b5:20:
5e:2d:06:6e:d7:2f:8e:fe:d1:9c:2f:7a:5d:cd:f8:
06:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:02:B6:CF:A5:CB:25:CF:BD:5C:5F:DF:81:0E:DD:4F:12:1F:64:AB
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a613030303a3a2f33362d3438203d3e203633313530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7580:a000::/36
Signature Algorithm: sha256WithRSAEncryption
55:38:e9:1b:6b:f8:8c:f4:bb:29:3e:36:96:77:82:00:1b:43:
9f:3b:13:a7:b1:d7:41:54:e6:3c:54:02:c9:b1:f6:87:2b:a3:
77:43:5e:7b:27:1e:c2:c8:d1:67:26:08:11:a7:5e:68:8e:0f:
13:67:b1:58:15:9e:44:77:47:49:7b:c4:9f:13:ab:19:83:2e:
7c:98:2a:41:22:91:e3:ba:95:c9:93:dd:26:17:3f:66:62:d7:
c0:af:2d:ec:09:95:67:c8:b8:ce:ad:c5:3f:ee:45:ab:d0:77:
a7:be:bb:a8:3b:4b:5a:26:83:f9:40:5d:8b:8d:71:3d:c2:17:
11:1e:0d:a7:db:89:8f:a8:6e:47:14:60:ca:50:83:b7:0f:d9:
ee:52:d1:bb:42:8c:86:c3:f7:a6:5a:f6:36:37:78:82:4e:6c:
f0:fa:61:58:46:d2:cf:4e:26:1a:77:f0:f1:74:75:68:1c:57:
23:e8:6b:2f:ad:7a:4b:da:d1:eb:8f:a7:9c:75:6d:f5:44:5b:
48:47:58:28:59:6f:fa:9c:39:40:f9:29:fa:8f:b0:c1:82:76:
ca:38:44:4a:dd:f1:ae:7a:ae:bf:61:aa:e7:e2:4f:95:85:10:
19:af:b4:75:78:f9:42:2b:ea:93:eb:0a:6f:25:d1:c7:4a:58:
24:12:e0:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:50:40 2024 by rpki-client on console-fra.rpki-client.org