Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a663930303a3a2f34302d3438203d3e20323135303530.roa
File: 326131343a373538303a663930303a3a2f34302d3438203d3e20323135303530.roa (raw, json)
Hash identifier: 0kBcJwfoxMP7p/DpzgKTo6CtJruJbTJ43w0ndOHwvJk=
Subject key identifier: 65:A4:4E:17:41:4D:19:E4:D7:DD:7A:A0:F3:94:49:01:29:11:BF:D7
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 2B598FD8C35E93C8EC8F757DB188608185A1839E
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a663930303a3a2f34302d3438203d3e20323135303530.roa
Signing time: Sun 20 Oct 2024 01:05:43 +0000
ROA not before: Sun 20 Oct 2024 01:00:43 +0000
ROA not after: Sun 19 Oct 2025 01:05:43 +0000
asID: 215050
IP address blocks: 2a14:7580:f900::/40 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:59:8f:d8:c3:5e:93:c8:ec:8f:75:7d:b1:88:60:81:85:a1:83:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Oct 20 01:00:43 2024 GMT
Not After : Oct 19 01:05:43 2025 GMT
Subject: CN=65A44E17414D19E4D7DD7AA0F39449012911BFD7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:0e:e5:d5:fd:cb:1a:87:20:3c:00:3d:ab:e8:
c4:de:1b:62:ac:f6:b2:86:f0:55:0a:46:07:3e:32:
77:b1:15:ee:54:71:c8:fe:ea:db:84:b4:11:ce:4b:
fd:ad:14:f0:bf:c0:fb:b7:1b:cf:d1:8c:6f:77:b0:
2c:e4:b6:01:c8:a2:f3:3c:7c:cd:0c:ac:e4:90:8c:
75:f3:a8:b6:b9:c3:74:76:d8:f9:4d:5a:7b:0d:4e:
4a:a4:a6:9e:e9:d9:37:c4:ad:bb:ff:3e:af:7e:2c:
a1:ee:bd:d8:da:61:98:25:97:82:5c:91:be:78:c3:
ae:5b:da:08:40:16:9f:eb:88:ad:7e:11:a6:21:a0:
f4:7b:5f:0c:fb:0b:3f:50:db:29:50:57:9d:fd:55:
12:94:c0:68:4e:ab:32:89:8c:b4:44:71:4a:8e:ca:
c5:96:96:13:88:e5:61:a3:bb:de:2b:bf:96:36:88:
a9:db:17:e0:75:7b:ab:8d:a6:36:62:6c:d0:90:03:
35:c6:e2:62:78:7e:8d:1d:cb:b4:3f:fc:0f:c8:8b:
b0:62:c7:8b:d6:51:0c:bc:48:1e:db:1e:fc:3e:bc:
18:c8:f8:15:49:1d:f3:b4:8b:6e:c0:c8:c3:6a:4f:
6b:b9:02:39:ce:a1:c5:22:48:a9:53:fd:2c:bf:52:
72:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:A4:4E:17:41:4D:19:E4:D7:DD:7A:A0:F3:94:49:01:29:11:BF:D7
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a663930303a3a2f34302d3438203d3e20323135303530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7580:f900::/40
Signature Algorithm: sha256WithRSAEncryption
0d:ac:11:a4:46:3e:90:51:74:02:57:14:09:b3:35:8c:7f:24:
d4:a7:9a:2a:83:e2:70:e6:cd:1c:e7:44:6e:20:d6:0e:47:84:
94:e2:d6:72:f7:27:15:ad:a3:85:ee:2c:03:83:ea:d3:48:5b:
b5:b2:32:43:82:96:8b:49:6e:a7:81:e3:7f:30:f7:ab:4f:93:
d5:fb:70:04:f5:fd:d6:d8:28:34:8f:30:d1:c7:94:23:0e:23:
2d:2b:c7:87:65:04:70:1c:03:e7:a3:08:da:2c:9e:71:cc:8a:
ca:e4:86:29:fd:11:3e:3e:bd:be:08:b1:77:40:d5:86:35:1b:
bd:7c:15:64:60:44:7a:75:14:59:a1:68:97:af:cc:6c:65:37:
56:33:a9:dd:68:79:24:15:f7:f4:93:d2:ee:96:39:12:0f:fa:
71:0a:cb:f9:cc:68:9b:01:39:24:31:4a:32:0c:e6:1e:6e:4c:
a6:1a:4f:43:23:84:df:71:55:21:56:bd:bd:42:52:56:ff:b8:
48:95:fe:e8:58:d0:56:d2:36:36:98:3b:7c:a4:93:29:dc:d4:
04:22:a7:e7:74:64:81:36:98:1c:05:35:74:60:9e:99:3c:40:
af:cc:99:a0:ee:54:5b:a8:98:14:a0:5a:f0:6f:51:f5:0c:bf:
6a:a0:e4:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:35:20 2024 by rpki-client on console-ams.rpki-client.org