Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a663430303a3a2f34302d3438203d3e20323135303530.roa
File: 326131343a373538303a663430303a3a2f34302d3438203d3e20323135303530.roa (raw, json)
Hash identifier: 0F3sHlpa1yb2MWZiuctfvTeYtJGu46ToRtLh6+TWFQI=
Subject key identifier: 51:DE:95:59:69:70:6F:5E:37:C4:2F:B2:B7:96:C3:BA:A4:18:96:BA
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 542D9C39A988CEFDBAF26ED2A7D4A269E6EA3D92
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a663430303a3a2f34302d3438203d3e20323135303530.roa
Signing time: Tue 15 Oct 2024 17:18:07 +0000
ROA not before: Tue 15 Oct 2024 17:13:07 +0000
ROA not after: Tue 14 Oct 2025 17:18:07 +0000
asID: 215050
IP address blocks: 2a14:7580:f400::/40 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:2d:9c:39:a9:88:ce:fd:ba:f2:6e:d2:a7:d4:a2:69:e6:ea:3d:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Oct 15 17:13:07 2024 GMT
Not After : Oct 14 17:18:07 2025 GMT
Subject: CN=51DE955969706F5E37C42FB2B796C3BAA41896BA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:18:31:55:5c:7a:63:9c:e9:7e:2d:eb:51:59:
fb:96:b7:6f:b1:51:6b:d0:c8:96:92:f2:82:3b:86:
a8:c9:e1:d8:0e:31:c4:21:4f:af:1d:4b:0f:4c:df:
b6:5f:dd:50:84:de:d1:61:62:d2:37:c0:62:35:94:
5e:be:47:3d:fd:3d:5d:15:87:e4:17:e9:1c:3e:d4:
2a:6a:fa:c6:98:34:85:26:c4:d7:03:81:35:e2:49:
dd:0d:d5:47:16:d4:cb:4b:48:47:c1:8a:aa:6d:31:
0e:4e:c4:5a:c4:3e:94:47:34:fe:54:f0:f3:69:51:
c2:d9:4e:77:c4:e7:ab:91:a2:41:0f:5d:80:28:c8:
d3:bb:32:36:3f:7a:4f:82:67:aa:3e:84:eb:67:ed:
0e:33:ee:3b:2d:67:7d:5e:2e:b6:a7:b1:b6:e5:42:
95:e3:67:8d:6c:a1:a3:2d:60:b2:ee:01:c3:b1:67:
02:78:e2:92:3b:79:5f:e8:a4:06:c0:0b:89:85:b7:
c5:df:bc:4c:95:0e:e9:e8:e9:f0:e4:87:02:8b:8e:
19:07:25:bb:29:c7:55:ba:ab:76:7a:3d:84:dc:26:
38:66:51:da:04:7e:39:3b:f6:41:81:c1:fa:44:a2:
aa:a7:67:2f:5e:3e:2b:b6:76:bb:12:f5:36:ce:37:
60:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:DE:95:59:69:70:6F:5E:37:C4:2F:B2:B7:96:C3:BA:A4:18:96:BA
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a663430303a3a2f34302d3438203d3e20323135303530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7580:f400::/40
Signature Algorithm: sha256WithRSAEncryption
23:1b:85:ef:a5:59:49:32:21:30:8e:8a:2e:1b:22:2b:9a:87:
16:e7:50:7e:71:81:d0:be:9d:86:ee:c4:31:c5:98:77:d2:94:
3f:f9:50:2c:f0:01:74:da:cc:33:55:5e:c8:ae:41:26:76:77:
38:0a:31:4b:f2:e2:a7:b2:90:75:6a:26:d4:aa:88:5d:49:e9:
a1:32:2b:ae:1a:e3:a3:18:3e:56:d2:8d:a5:c7:cb:65:0f:68:
f5:b9:f8:ca:eb:b0:ea:f4:72:10:19:10:18:86:84:d5:0b:b8:
31:5f:f1:27:62:e7:e2:af:9a:54:dc:e8:87:d0:32:f8:b9:25:
b2:b4:16:52:91:62:c3:a3:60:b5:34:e9:47:82:74:b5:a0:7a:
c5:9c:49:34:e1:ae:5d:45:d1:f7:08:a0:4b:4a:f5:e0:d7:dd:
b7:06:2e:c4:1b:19:58:e8:7b:a8:2f:37:1d:24:04:87:ee:63:
f4:53:00:61:8c:35:4b:c8:36:8b:49:b4:a5:c7:76:0e:e8:15:
0f:db:f7:1a:b1:f1:e4:0c:ec:03:d3:ca:a2:e8:01:54:85:71:
02:77:81:2f:22:09:75:4f:31:6c:8c:3e:6e:1d:df:12:29:aa:
59:90:4f:a4:23:67:12:21:7e:52:1e:b3:ca:52:f5:29:40:66:
2d:5c:6e:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:50:40 2024 by rpki-client on console-fra.rpki-client.org