Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a666130303a3a2f34302d3438203d3e20323135373530.roa
File: 326131343a373538303a666130303a3a2f34302d3438203d3e20323135373530.roa (raw, json)
Hash identifier: QvsNHxBLny8awDAsqZVtGAL4uN2CtPZRPaVm6KllauE=
Subject key identifier: 06:8E:C5:96:77:1E:80:CB:63:F1:EF:6C:01:DD:B5:55:E7:5B:FE:02
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 743E1F82AF9ADD5961594FC7E371913B830B0445
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a666130303a3a2f34302d3438203d3e20323135373530.roa
Signing time: Sun 27 Oct 2024 15:30:20 +0000
ROA not before: Sun 27 Oct 2024 15:25:20 +0000
ROA not after: Sun 26 Oct 2025 15:30:20 +0000
asID: 215750
IP address blocks: 2a14:7580:fa00::/40 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:3e:1f:82:af:9a:dd:59:61:59:4f:c7:e3:71:91:3b:83:0b:04:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Oct 27 15:25:20 2024 GMT
Not After : Oct 26 15:30:20 2025 GMT
Subject: CN=068EC596771E80CB63F1EF6C01DDB555E75BFE02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c9:0a:1b:47:f7:43:75:0c:fc:8e:3e:24:be:
c4:63:da:4d:ae:d3:8b:66:a8:6a:f7:57:35:d1:78:
08:62:18:35:11:51:fc:a0:1c:d0:be:a6:d2:ae:b0:
8e:68:32:3b:bf:15:d4:6e:6c:ef:78:76:6b:20:a0:
ff:0a:d5:92:49:d3:65:c9:91:14:d2:a6:83:6e:d0:
f9:67:74:55:5a:93:8b:81:b2:49:f7:75:c7:4b:49:
4d:5d:51:bc:8b:dd:df:f5:99:ac:f0:ce:87:7d:5c:
a2:9f:b3:e2:e7:43:7b:0a:ce:c5:a3:c1:62:b5:de:
0f:9c:91:f4:5e:4e:d0:88:84:1e:e1:dd:d2:32:07:
d0:62:af:38:f3:fd:53:f4:0c:c2:f3:14:db:cc:15:
82:20:b6:e5:09:32:b1:e8:c3:0d:3d:34:07:94:e5:
b2:61:92:ed:41:c1:e5:49:9b:09:61:a4:90:6f:0a:
2f:4b:ff:7f:55:0f:88:2a:cb:70:ff:58:89:7f:3e:
8e:6d:f0:a1:a4:b9:7c:33:a7:84:56:03:c1:d5:8d:
b5:2c:cb:25:ec:90:ed:df:30:42:9e:df:8a:d3:e0:
01:27:04:0f:c2:51:15:59:77:4c:1b:6b:01:27:74:
12:83:ad:4d:b4:c2:e9:37:fb:6b:f0:5b:8d:59:ad:
a8:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:8E:C5:96:77:1E:80:CB:63:F1:EF:6C:01:DD:B5:55:E7:5B:FE:02
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a666130303a3a2f34302d3438203d3e20323135373530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7580:fa00::/40
Signature Algorithm: sha256WithRSAEncryption
45:c9:d3:03:96:93:13:32:9b:fd:62:f4:84:2d:2e:57:25:5f:
2c:c2:cc:ce:af:83:11:3b:5f:72:df:2f:ec:c7:d2:9f:6a:2d:
ea:e6:66:d6:c4:e2:32:83:29:2e:71:22:9e:32:f0:ee:2a:31:
58:b2:8e:0d:a0:6c:25:96:50:96:e3:7b:5d:aa:d3:e7:d6:de:
c4:e4:61:8a:87:04:48:8b:a2:e6:75:9f:7e:73:99:00:ce:a1:
1d:69:fe:3e:a1:09:0a:8a:1a:29:0c:a8:98:3f:92:93:06:f2:
29:08:f4:d4:78:77:55:a3:d7:34:ec:0c:ae:ae:6c:47:0a:f9:
80:3e:b6:78:b3:eb:fd:3a:76:f1:97:d2:fe:6c:ca:4c:6d:91:
41:00:7d:c4:43:be:d7:cc:6e:09:55:75:e1:3a:7e:67:64:58:
fc:60:90:46:40:b7:cb:f4:e5:c7:3e:11:a7:6d:fa:8b:dd:07:
64:f2:4b:04:b3:e1:a6:dd:fd:c6:d8:c4:d8:e0:90:cf:8c:95:
64:93:88:e6:12:76:ff:17:6b:ce:d9:09:e2:42:27:36:81:14:
a1:96:2c:e6:20:ba:62:74:a6:ef:3f:a2:2f:6b:d8:8a:29:c0:
f6:18:f8:1c:fe:89:ba:30:8c:cd:01:a1:cd:51:d2:00:27:c2:
a1:8c:bd:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:50:40 2024 by rpki-client on console-fra.rpki-client.org