Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a663630303a3a2f34302d3438203d3e20323135303530.roa
File: 326131343a373538303a663630303a3a2f34302d3438203d3e20323135303530.roa (raw, json)
Hash identifier: EB9qO90P3JTxhK8Gj40sFW19fLBBFarikvRhUCaGWqw=
Subject key identifier: F6:07:37:86:3F:3F:B4:69:78:13:54:B5:3E:F9:9C:A8:17:00:8E:1A
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 58854FC38F1EB60F563A62663C36A6F77D9DD5AF
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a663630303a3a2f34302d3438203d3e20323135303530.roa
Signing time: Sun 20 Oct 2024 01:04:57 +0000
ROA not before: Sun 20 Oct 2024 00:59:57 +0000
ROA not after: Sun 19 Oct 2025 01:04:57 +0000
asID: 215050
IP address blocks: 2a14:7580:f600::/40 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:85:4f:c3:8f:1e:b6:0f:56:3a:62:66:3c:36:a6:f7:7d:9d:d5:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Oct 20 00:59:57 2024 GMT
Not After : Oct 19 01:04:57 2025 GMT
Subject: CN=F60737863F3FB469781354B53EF99CA817008E1A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:aa:03:b8:5e:47:f8:78:6c:a0:fa:44:19:a8:
1c:fa:a1:30:b5:7f:fe:2c:f9:53:ef:20:8e:c3:31:
d7:65:8e:f2:83:48:89:2e:5e:7c:84:1f:0a:1d:55:
65:cb:88:00:ea:c8:56:3a:47:97:b2:54:ea:b1:1d:
bb:be:44:f9:6a:84:91:76:10:05:bd:aa:46:40:56:
a1:86:e2:1d:30:f6:fb:ad:ae:42:32:d3:b0:98:9e:
04:97:7b:2b:bc:4e:cf:7e:45:45:da:09:ce:41:4e:
3d:63:4c:7a:91:57:64:60:66:d3:9f:84:59:53:96:
80:ae:95:5b:cd:53:da:82:9a:fa:30:6c:70:64:37:
10:57:d6:d9:53:ed:b6:2d:bc:3b:67:44:da:bb:a9:
8d:72:1d:08:cb:22:e3:c2:e7:93:54:a7:ee:89:36:
68:c6:73:83:da:38:d9:69:65:64:87:9e:da:e0:2b:
fa:2e:93:16:66:82:47:cc:e5:4b:af:8d:80:83:dc:
49:4b:93:e7:7f:85:ce:e9:c6:e7:59:be:59:20:e5:
28:6b:31:1e:9d:c1:cd:60:e9:a6:70:a3:cb:15:84:
53:ea:11:5f:e0:51:fd:55:55:ec:97:79:7b:57:98:
e9:03:bd:94:b2:99:c9:1b:f9:32:c3:74:12:89:c9:
e6:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:07:37:86:3F:3F:B4:69:78:13:54:B5:3E:F9:9C:A8:17:00:8E:1A
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a663630303a3a2f34302d3438203d3e20323135303530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7580:f600::/40
Signature Algorithm: sha256WithRSAEncryption
43:26:a8:92:87:0e:57:67:28:56:85:aa:96:88:ed:7d:29:ba:
55:6d:37:11:b2:ad:66:71:6d:59:4e:82:2c:b5:f8:15:0c:63:
27:e8:1f:f2:97:72:17:26:48:91:73:08:a5:c9:b2:3a:c7:01:
45:4a:8c:c0:70:77:52:7b:82:5e:77:55:b7:42:f0:44:d1:de:
9d:25:8d:d0:b7:ac:a2:f9:ef:64:46:41:57:a5:71:9f:a3:f4:
a0:9c:29:f9:52:02:84:51:e0:99:d3:a4:ff:0b:04:31:cf:32:
44:b7:e9:8c:d1:67:22:ec:65:6c:f5:29:17:a2:76:e9:fc:c4:
5a:b0:7d:e4:7a:ef:02:fd:ad:2c:a6:02:62:49:d2:4e:66:e2:
f5:76:ed:63:c7:01:51:13:05:af:b2:98:ed:1b:6e:69:77:79:
0a:9e:03:67:ee:e5:71:1c:9f:01:87:46:49:f6:6c:fa:5c:66:
01:67:e0:8b:5f:e6:b7:e4:82:ae:e7:ae:34:02:8e:7e:04:d1:
1c:0a:5d:84:6e:e4:ea:8c:a5:39:51:f0:47:db:7a:fd:1f:36:
d5:65:3f:45:de:f8:66:8d:e8:fc:13:38:71:0c:c5:43:cd:d3:
44:42:bb:10:b8:01:d4:fd:33:22:5c:ab:df:9a:97:85:32:c6:
5e:05:0e:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:35:20 2024 by rpki-client on console-ams.rpki-client.org