Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a623030303a3a2f33362d3438203d3e20323134343531.roa
File: 326131343a373538303a623030303a3a2f33362d3438203d3e20323134343531.roa (raw, json)
Hash identifier: GAOOBUnU9vUEbQ/iBPnOwzQUAkdaKdz0lT8i4p4lrsw=
Subject key identifier: F0:3B:9B:F6:EC:C2:F6:94:6B:CE:5A:F5:F7:A7:48:47:DD:94:D8:93
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 06645B355904B4BC50EE8CF256E8399B957B5F17
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a623030303a3a2f33362d3438203d3e20323134343531.roa
Signing time: Thu 24 Oct 2024 11:34:33 +0000
ROA not before: Thu 24 Oct 2024 11:29:33 +0000
ROA not after: Thu 23 Oct 2025 11:34:33 +0000
asID: 214451
IP address blocks: 2a14:7580:b000::/36 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:64:5b:35:59:04:b4:bc:50:ee:8c:f2:56:e8:39:9b:95:7b:5f:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Oct 24 11:29:33 2024 GMT
Not After : Oct 23 11:34:33 2025 GMT
Subject: CN=F03B9BF6ECC2F6946BCE5AF5F7A74847DD94D893
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:43:1a:75:bc:04:a1:f6:bc:6c:71:9f:2c:7c:
78:cc:00:4e:4f:18:e3:da:f5:48:cb:f2:99:4f:75:
3b:7e:b1:44:f4:bb:36:33:18:7d:ac:db:59:d2:c7:
0d:1b:c9:7e:c7:5d:24:f2:c7:48:ec:19:e5:47:61:
0e:f9:f3:c0:55:f3:71:8f:23:49:e7:3c:b7:e1:c2:
ba:37:7f:3f:99:b3:ac:c9:d9:9a:a3:81:62:2f:a7:
12:10:ae:fe:2f:bb:55:05:2f:cb:36:80:ea:4a:e7:
3b:5a:16:2e:22:5b:e1:e1:e4:74:de:ee:32:aa:09:
a8:3d:df:3d:1c:bf:dd:cc:a3:d6:54:d4:8b:61:25:
52:58:6a:db:0b:53:35:e4:43:0b:85:30:9f:e3:e1:
19:7f:e1:ed:a4:19:d4:92:5a:82:9c:8f:ea:16:99:
93:6b:e8:d5:d7:d3:ae:3b:dd:59:9a:09:75:81:60:
6f:16:4a:6d:98:44:32:84:d2:9e:f1:e0:f7:35:80:
53:26:98:5c:1f:66:9e:c0:48:0d:e2:18:cb:7a:49:
05:31:3e:8b:d0:02:be:7f:59:d2:f6:94:4f:ea:c0:
f6:7d:5a:5e:68:74:11:68:03:eb:91:60:06:a7:d5:
af:f7:23:17:b4:37:69:ea:c6:32:fb:d6:c8:8b:1c:
f7:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:3B:9B:F6:EC:C2:F6:94:6B:CE:5A:F5:F7:A7:48:47:DD:94:D8:93
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a623030303a3a2f33362d3438203d3e20323134343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7580:b000::/36
Signature Algorithm: sha256WithRSAEncryption
5c:2f:92:f7:cb:7d:69:bc:6d:a1:9b:ce:74:19:ff:4f:de:65:
ce:e1:9f:ea:3e:8d:bc:5b:c1:67:b5:79:29:60:51:b2:ee:f7:
0f:52:3b:66:12:ef:0b:56:ab:5d:0b:21:d1:ac:ad:21:35:3e:
e5:dd:73:53:f3:69:a1:6e:da:85:ff:97:0a:cb:0a:eb:8b:be:
70:34:ec:61:b8:a0:48:78:e6:d8:9c:42:f2:30:1b:06:e2:39:
f9:da:35:1d:9a:16:e9:c1:d0:01:61:2b:ea:d0:4f:2a:75:f8:
d9:61:40:a7:65:8b:ab:ed:8a:0b:f0:53:a2:43:8d:4c:18:82:
ae:5d:f3:2c:01:0c:53:f3:84:40:51:b9:35:99:f7:d3:cd:77:
85:ba:8f:2d:a4:93:d1:af:01:f6:dd:f1:cb:8a:94:a1:46:6f:
ee:60:e7:15:b5:a1:d5:11:a9:b1:10:9c:ff:83:98:09:1a:77:
76:47:37:ae:72:7d:8e:31:8d:82:e6:c8:49:3e:49:f1:a6:f6:
5e:81:0e:d9:0b:a6:6d:9f:19:96:74:7d:88:aa:b3:77:44:71:
c9:f2:ed:e5:1e:8e:4b:64:38:b9:4d:d3:7c:9f:de:85:24:15:
7e:e1:d3:65:3d:88:de:32:c0:04:e7:59:6b:44:5d:72:24:68:
d1:e3:50:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:50:40 2024 by rpki-client on console-fra.rpki-client.org