Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a663030303a3a2f34302d3438203d3e203630363134.roa
File: 326131343a373538303a663030303a3a2f34302d3438203d3e203630363134.roa (raw, json)
Hash identifier: 2OMo+B3IAMq0jOb43BAjZ6yubJj8WDzAkbnwewxbTaM=
Subject key identifier: 0D:03:94:F0:57:2C:E3:4B:FD:AE:81:BC:CE:AB:98:DB:3D:56:46:D8
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 1D70281CDD8C573528F886BC7094EE80AC9FB19A
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a663030303a3a2f34302d3438203d3e203630363134.roa
Signing time: Tue 24 Sep 2024 08:40:30 +0000
ROA not before: Tue 24 Sep 2024 08:35:30 +0000
ROA not after: Tue 23 Sep 2025 08:40:30 +0000
asID: 60614
IP address blocks: 2a14:7580:f000::/40 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:70:28:1c:dd:8c:57:35:28:f8:86:bc:70:94:ee:80:ac:9f:b1:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Sep 24 08:35:30 2024 GMT
Not After : Sep 23 08:40:30 2025 GMT
Subject: CN=0D0394F0572CE34BFDAE81BCCEAB98DB3D5646D8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f5:a5:f4:18:36:ac:e0:9a:26:23:88:b3:22:
2d:ae:27:fe:51:d7:1c:6c:69:c5:57:2c:02:88:c9:
ae:77:16:4e:32:cc:af:bc:35:c3:15:4a:2b:f4:94:
e9:22:6c:cf:a4:a8:fe:38:0c:5e:af:45:82:e2:7f:
83:12:ee:a1:31:ef:c6:20:01:38:dd:d1:c4:6b:69:
5e:ed:fc:5f:7f:ea:4b:c5:53:3e:f9:97:aa:e6:b7:
aa:2d:bd:1d:d0:14:73:94:3e:1e:79:3d:55:ed:35:
96:9d:b5:34:29:03:21:62:2f:f6:4e:b9:86:78:05:
98:09:37:17:1d:36:00:17:8d:3b:d2:5c:6c:61:79:
de:df:35:db:5a:06:f3:68:4c:ed:52:6f:ba:a2:d0:
6c:ef:97:12:cc:12:c2:66:df:10:ce:e9:42:ac:e8:
9b:d0:e9:6f:ca:e2:3a:57:70:8d:06:e4:72:dd:50:
75:35:ae:70:5c:a2:3e:91:f2:85:43:06:0c:e2:da:
f5:e0:59:85:e9:c0:16:07:93:d7:1c:11:f7:27:e5:
88:c4:13:1e:b7:b1:10:59:7e:05:7b:aa:23:29:76:
78:e0:43:eb:d6:7f:bf:d6:08:03:53:db:cb:53:7e:
ab:c5:58:34:c1:36:f3:9a:b8:3a:f8:c9:09:4a:70:
8c:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:03:94:F0:57:2C:E3:4B:FD:AE:81:BC:CE:AB:98:DB:3D:56:46:D8
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a663030303a3a2f34302d3438203d3e203630363134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7580:f000::/40
Signature Algorithm: sha256WithRSAEncryption
63:f3:88:30:df:51:b2:3d:54:42:e4:71:4b:3c:ff:a5:e3:91:
1e:e7:c4:cd:09:17:ed:eb:06:2d:b0:78:1a:b2:49:40:4a:5f:
d2:af:c8:e4:ff:e8:46:d7:80:e9:c0:77:3a:d3:5b:7d:ee:6d:
c7:c2:eb:9c:86:e6:c8:35:39:11:b1:57:69:47:3c:e6:52:b5:
ba:10:6c:3f:b4:01:74:de:df:76:0d:07:62:3f:04:af:9a:e9:
2b:8d:97:48:77:82:cf:38:5c:c0:e3:33:12:6e:23:33:41:72:
a4:7b:4d:83:ff:41:da:5e:58:28:83:aa:f3:ea:f7:ea:27:41:
8a:64:9a:46:2a:20:ff:24:3d:ea:51:6d:3f:21:41:62:b4:21:
57:53:32:17:41:6f:03:d7:8d:02:c4:ae:37:13:8f:b4:db:d2:
27:5a:4a:30:89:0c:52:ff:71:8f:4f:91:ef:f5:f1:1f:57:de:
f9:b5:e1:9f:df:0e:73:fe:a4:57:08:c9:f4:dd:de:76:6f:b1:
2e:9a:f4:a9:cb:97:c1:60:34:65:f9:5d:c5:1f:48:0e:e6:84:
de:b5:c9:94:de:d8:f4:c8:a1:89:91:c1:6e:b9:eb:19:a0:69:
0d:18:c2:e2:7a:16:86:ab:2a:49:32:cf:d6:b5:eb:df:5b:cd:
91:0a:c4:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:50:40 2024 by rpki-client on console-fra.rpki-client.org