Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a663331303a3a2f34342d3438203d3e20323134303834.roa
File: 326131343a373538303a663331303a3a2f34342d3438203d3e20323134303834.roa (raw, json)
Hash identifier: m8SparBWydziRKZzsjArXtn3rvbn+5XzXlobsnYqv4E=
Subject key identifier: B0:D1:AD:A6:74:EE:56:55:E9:9C:F2:9F:07:30:72:CF:81:31:93:94
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 26896E74A3F491A97FFFE453F4B0A7CCAA9A6C44
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a663331303a3a2f34342d3438203d3e20323134303834.roa
Signing time: Mon 14 Oct 2024 01:35:35 +0000
ROA not before: Mon 14 Oct 2024 01:30:35 +0000
ROA not after: Mon 13 Oct 2025 01:35:35 +0000
asID: 214084
IP address blocks: 2a14:7580:f310::/44 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:89:6e:74:a3:f4:91:a9:7f:ff:e4:53:f4:b0:a7:cc:aa:9a:6c:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Oct 14 01:30:35 2024 GMT
Not After : Oct 13 01:35:35 2025 GMT
Subject: CN=B0D1ADA674EE5655E99CF29F073072CF81319394
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:69:31:fa:a2:7a:df:d9:5e:05:33:1d:ed:40:
8c:56:85:14:9c:76:1f:57:7f:c0:7c:75:0f:31:c8:
3d:42:5d:a5:a5:b4:b7:6c:70:1e:7c:e6:8c:a7:ce:
b4:8f:8e:46:e9:eb:63:ed:a2:61:ab:0c:48:a4:7d:
5c:3a:dd:1d:0a:f2:36:fc:63:e1:c0:14:0d:64:75:
e9:d6:d4:ef:83:d2:d8:c9:e9:d2:01:43:c6:08:0f:
34:36:af:06:30:7b:c9:b8:ab:21:d3:50:69:15:17:
7c:c5:b0:a8:36:46:9a:b7:9d:4e:27:7d:29:d0:42:
12:a8:71:52:43:b6:8b:01:3e:b1:70:1d:34:61:05:
74:08:3e:1e:b8:2a:35:ad:00:62:e2:fc:2e:c6:93:
2f:1b:81:d3:da:18:ec:e2:74:a2:7b:ab:ca:e1:08:
86:af:ce:0f:79:73:f1:81:10:ef:53:bc:1b:dd:e0:
fe:16:e6:49:c1:2e:db:94:21:d6:97:d7:3a:8b:7a:
14:73:d3:c5:88:e2:b3:e1:bc:82:bc:df:a9:c2:09:
72:5c:f5:4f:56:0c:35:c7:d0:b6:55:b6:fe:66:85:
f7:9d:52:75:49:5c:14:b0:a6:6b:36:20:a0:90:b4:
90:ab:e2:b9:5a:78:24:f2:fa:89:08:a0:4a:d2:d3:
e2:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:D1:AD:A6:74:EE:56:55:E9:9C:F2:9F:07:30:72:CF:81:31:93:94
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a663331303a3a2f34342d3438203d3e20323134303834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7580:f310::/44
Signature Algorithm: sha256WithRSAEncryption
89:12:8d:c0:6c:64:8f:7a:bb:bf:c4:99:a9:25:a2:94:1a:14:
0d:f6:10:2e:74:08:78:aa:14:5a:58:d0:1b:3a:cb:9e:39:00:
12:78:a5:80:da:a5:b8:a6:a5:c6:ca:ed:00:3c:23:60:7a:0b:
21:26:5e:aa:67:f7:a4:68:cc:b9:53:85:19:60:d2:7f:e9:05:
04:aa:15:08:45:a1:45:6b:cf:ff:93:f8:ba:ea:0e:25:ae:f2:
d4:cb:ae:08:68:4e:9c:1b:9a:70:d7:10:93:d9:d4:9c:58:90:
69:37:39:c3:a6:9c:d3:41:b1:9c:43:ec:fb:f8:9f:39:c3:78:
e5:d8:88:5b:5f:17:ff:b5:46:1e:14:f2:08:1d:57:97:2d:fd:
8f:c1:4f:57:a3:11:25:0a:46:2b:0b:89:24:03:4b:d2:4f:c3:
3f:25:99:8a:ad:12:1b:0b:e1:db:a7:70:1c:27:9f:99:58:72:
10:66:a1:52:5c:69:93:32:aa:f4:d1:24:f0:a7:98:d0:be:c5:
76:20:89:a8:41:ce:35:e4:8d:87:73:e5:65:2b:6c:1a:04:75:
ef:00:06:d5:cc:32:14:c5:db:df:86:35:d0:2e:33:9c:e8:37:
23:78:59:18:8f:0e:ab:c9:1a:bf:ce:6d:fb:31:68:86:a5:59:
e9:01:77:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:50:40 2024 by rpki-client on console-fra.rpki-client.org