Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a643030303a3a2f33362d3438203d3e20323134363630.roa
File: 326131343a373538303a643030303a3a2f33362d3438203d3e20323134363630.roa (raw, json)
Hash identifier: Ou9YHY+CFGTSRVcR/tgSRSOF3vG9lLEQEhew6pH+NlA=
Subject key identifier: 31:56:7D:33:35:66:A1:28:2E:46:A5:DE:C6:92:2E:17:17:20:7D:F7
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 75D55D62ABDE74571D65E6D693DE1F126E7064FB
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a643030303a3a2f33362d3438203d3e20323134363630.roa
Signing time: Fri 08 Nov 2024 16:24:22 +0000
ROA not before: Fri 08 Nov 2024 16:19:22 +0000
ROA not after: Fri 07 Nov 2025 16:24:22 +0000
asID: 214660
IP address blocks: 2a14:7580:d000::/36 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:d5:5d:62:ab:de:74:57:1d:65:e6:d6:93:de:1f:12:6e:70:64:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Nov 8 16:19:22 2024 GMT
Not After : Nov 7 16:24:22 2025 GMT
Subject: CN=31567D333566A1282E46A5DEC6922E1717207DF7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:2e:e7:a2:1f:ca:0a:63:52:a5:7c:69:fb:c2:
30:7a:90:c6:9a:96:8e:24:2f:4b:95:64:47:00:73:
7e:ec:27:38:ae:2d:f0:e4:eb:5a:1e:21:85:d4:95:
86:0c:c4:13:d2:1c:50:35:0b:96:b2:50:69:bb:7e:
68:d1:26:c8:70:86:5a:fe:72:2f:83:9f:65:c2:07:
36:76:05:29:2f:5f:9e:37:e6:93:c8:d5:37:02:4b:
71:00:50:2b:28:33:dc:95:d2:f4:04:35:52:73:27:
a3:6e:d6:31:af:21:8d:b8:9e:ba:34:71:99:96:ee:
f4:56:17:a5:ff:ca:9c:2a:6a:a3:e1:9d:c6:82:97:
15:44:57:4d:2e:21:0a:e9:76:a2:04:c1:b2:f3:c5:
53:8a:e7:88:b3:7c:ef:c9:53:b8:f8:90:c5:4b:44:
db:5a:88:29:56:18:d7:50:93:2f:11:95:09:26:4b:
aa:32:13:e1:21:7a:a5:a4:19:da:99:29:89:a2:94:
5e:c0:43:6e:6a:f8:47:5e:10:f9:26:51:b6:13:ae:
2b:58:4e:d6:7b:17:c3:ba:b7:dd:0e:32:3d:a0:d5:
91:97:78:c2:35:5f:9f:62:d2:55:6d:ab:a1:b1:8c:
98:ef:03:0b:6e:10:86:ad:d6:8c:6b:72:95:98:9a:
79:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:56:7D:33:35:66:A1:28:2E:46:A5:DE:C6:92:2E:17:17:20:7D:F7
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a643030303a3a2f33362d3438203d3e20323134363630.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7580:d000::/36
Signature Algorithm: sha256WithRSAEncryption
1f:77:11:f9:0b:01:98:d7:f9:30:ce:9a:5b:b3:40:28:b0:06:
ee:a2:63:47:5e:cb:7d:35:cf:66:af:88:13:25:b6:0d:51:76:
76:03:6a:e3:b9:a6:ba:6b:56:f1:2f:6d:65:f6:3d:9d:07:6a:
80:33:d6:85:7e:30:5a:a9:a5:89:32:68:82:6c:2c:15:62:7d:
5a:ae:b1:11:2c:5d:c9:d4:72:32:85:4d:4f:ff:04:62:0b:26:
38:31:b2:4f:a6:1b:03:e7:7d:d0:32:4f:b7:28:70:dc:0e:d8:
c2:98:a4:0a:fd:e5:96:40:b8:17:be:b5:b4:52:a2:c0:a0:b0:
5c:84:e8:20:2d:ce:35:a1:fb:cb:b7:ed:ed:34:97:8e:c7:9d:
bb:fe:f1:a2:ff:05:3a:0e:df:b3:5f:a6:03:80:05:54:c9:1a:
2a:b0:64:2c:68:dc:cc:e2:df:7f:fe:75:42:b7:2b:dd:26:b9:
a6:7e:32:d3:2e:62:da:0a:99:d5:98:92:7f:3d:72:55:66:fb:
d5:2f:6d:7f:52:bf:c9:8d:d8:6c:98:3b:c2:ca:1d:8a:98:63:
ae:16:2d:43:ef:2a:ef:15:3f:3e:df:cf:af:87:9e:9b:70:52:
c4:4f:17:17:b3:5e:46:93:8c:ea:5c:d5:a1:ba:ca:14:3e:3f:
bb:41:20:66
-----BEGIN CERTIFICATE-----
MIIFPzCCBCegAwIBAgIUddVdYqvedFcdZebWk94fEm5wZPswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYTgzZDQ4NjUyZjNiMmRmNzRmNmJmOWJhYThhOWMxNzRj
Y2ZkMzc3MjAeFw0yNDExMDgxNjE5MjJaFw0yNTExMDcxNjI0MjJaMDMxMTAvBgNV
BAMTKDMxNTY3RDMzMzU2NkExMjgyRTQ2QTVERUM2OTIyRTE3MTcyMDdERjcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD2LueiH8oKY1KlfGn7wjB6kMaa
lo4kL0uVZEcAc37sJziuLfDk61oeIYXUlYYMxBPSHFA1C5ayUGm7fmjRJshwhlr+
ci+Dn2XCBzZ2BSkvX5435pPI1TcCS3EAUCsoM9yV0vQENVJzJ6Nu1jGvIY24nro0
cZmW7vRWF6X/ypwqaqPhncaClxVEV00uIQrpdqIEwbLzxVOK54izfO/JU7j4kMVL
RNtaiClWGNdQky8RlQkmS6oyE+EheqWkGdqZKYmilF7AQ25q+EdeEPkmUbYTritY
TtZ7F8O6t90OMj2g1ZGXeMI1X59i0lVtq6GxjJjvAwtuEIat1oxrcpWYmnm1AgMB
AAGjggJJMIICRTAdBgNVHQ4EFgQUMVZ9MzVmoSguRqXexpIuFxcgffcwHwYDVR0j
BBgwFoAUqD1IZS87LfdPa/m6qKnBdMz9N3IwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvODkyNzBmNmMtYTNmZS00Mjk5LWIwNzktMzA5ZWQ5N2Yz
ODI0LzAvQTgzRDQ4NjUyRjNCMkRGNzRGNkJGOUJBQThBOUMxNzRDQ0ZEMzc3Mi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3FEMUlaUzg3TGZkUGFfbTZxS25CZE16
OU4zSS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvODkyNzBmNmMt
YTNmZS00Mjk5LWIwNzktMzA5ZWQ5N2YzODI0LzAvMzI2MTMxMzQzYTM3MzUzODMw
M2E2NDMwMzAzMDNhM2EyZjMzMzYyZDM0MzgyMDNkM2UyMDMyMzEzNDM2MzYzMC5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw
DgQCAAIwCAMGBCoUdYDQMA0GCSqGSIb3DQEBCwUAA4IBAQAfdxH5CwGY1/kwzppb
s0AosAbuomNHXst9Nc9mr4gTJbYNUXZ2A2rjuaa6a1bxL21l9j2dB2qAM9aFfjBa
qaWJMmiCbCwVYn1arrERLF3J1HIyhU1P/wRiCyY4MbJPphsD533QMk+3KHDcDtjC
mKQK/eWWQLgXvrW0UqLAoLBchOggLc41ofvLt+3tNJeOx527/vGi/wU6Dt+zX6YD
gAVUyRoqsGQsaNzM4t9//nVCtyvdJrmmfjLTLmLaCpnVmJJ/PXJVZvvVL21/Ur/J
jdhsmDvCyh2KmGOuFi1D7yrvFT8+38+vh56bcFLETxcXs15Gk4zqXNWhusoUPj+7
QSBm
-----END CERTIFICATE-----
Generated at Sun Nov 24 11:56:51 2024 by rpki-client on console-ams.rpki-client.org