Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a666633303a3a2f34342d3438203d3e20323134323538.roa
File: 326131343a373538303a666633303a3a2f34342d3438203d3e20323134323538.roa (raw, json)
Hash identifier: U1E41bGgD0/PTIW1Kmt9BOF8rPG8b7wAA4AeRuLkI4g=
Subject key identifier: F7:78:B1:75:93:23:23:2C:65:50:FF:95:EA:28:5E:20:D1:7B:9E:18
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 10DA4B55B0471732162B386206317E1ACA0B53B0
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a666633303a3a2f34342d3438203d3e20323134323538.roa
Signing time: Thu 26 Sep 2024 00:54:59 +0000
ROA not before: Thu 26 Sep 2024 00:49:59 +0000
ROA not after: Thu 25 Sep 2025 00:54:59 +0000
asID: 214258
IP address blocks: 2a14:7580:ff30::/44 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Oct 2024 13:44:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:da:4b:55:b0:47:17:32:16:2b:38:62:06:31:7e:1a:ca:0b:53:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Sep 26 00:49:59 2024 GMT
Not After : Sep 25 00:54:59 2025 GMT
Subject: CN=F778B1759323232C6550FF95EA285E20D17B9E18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:6d:1f:e3:f3:63:34:3f:cd:0e:74:d3:0d:67:
b9:c6:52:b0:b3:28:41:cf:3e:10:a1:d6:50:5b:e7:
05:09:f7:06:45:e9:c8:20:4d:dd:cc:4a:f6:dd:0f:
15:ac:0f:2e:d4:66:eb:ab:e4:87:47:46:72:2b:75:
4e:66:9c:a7:d3:f3:48:e2:20:f1:f4:f8:a2:70:7d:
8c:6d:f0:2a:2a:37:1b:1d:04:b4:49:8f:60:1f:66:
9f:ae:6f:df:d9:61:ce:3b:cd:7a:42:43:16:32:1b:
42:db:b8:97:83:95:bb:43:e4:bf:0d:13:24:73:be:
bf:11:75:4c:db:62:b8:ee:e8:74:7f:a6:70:1c:2d:
bc:fa:40:c0:eb:8f:7c:12:85:23:7e:62:50:c3:f3:
e0:4f:3a:91:47:eb:22:e7:de:9a:8f:cd:04:26:bf:
5b:05:37:e1:dc:39:3a:0a:20:39:6f:63:06:ec:53:
bf:67:00:a8:15:e0:6a:e4:7f:a2:32:18:08:c8:80:
2d:1d:6e:87:69:6d:0c:22:27:a7:7f:75:d7:89:e4:
3d:4f:df:d8:d0:11:4c:4e:11:92:e1:9e:c8:2c:23:
cd:75:27:e1:5e:d9:70:d6:cf:c9:96:1c:5f:ae:4d:
47:da:12:50:4a:26:a3:72:da:cb:f8:97:15:78:bb:
4e:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:78:B1:75:93:23:23:2C:65:50:FF:95:EA:28:5E:20:D1:7B:9E:18
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a666633303a3a2f34342d3438203d3e20323134323538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7580:ff30::/44
Signature Algorithm: sha256WithRSAEncryption
36:54:d9:84:d7:5b:95:2b:cb:04:47:de:43:a2:4b:98:79:65:
80:0a:70:a2:5f:25:45:8f:74:c4:48:8c:ef:b9:8c:9a:d5:e7:
ac:4a:81:ef:7d:15:42:aa:90:c5:4b:00:e3:89:cf:20:5d:ae:
6f:89:2f:86:9f:28:ec:ca:51:b0:28:f1:60:13:7b:c1:1e:0f:
86:70:2f:f3:f3:6a:f1:7d:80:e9:56:34:c9:48:e5:8e:be:63:
76:ea:37:de:fb:f6:a0:bc:33:4c:be:c6:9f:ae:23:1a:cf:b5:
35:73:e0:27:33:56:69:2c:45:88:6d:00:5e:59:e9:99:6a:d2:
f7:e6:15:e2:99:cf:a1:30:8b:e6:8b:a5:19:d8:04:25:6e:0a:
3c:17:7e:8f:3b:00:6f:02:9d:57:27:31:a3:dd:83:2b:34:57:
9c:31:27:ba:d2:56:a7:b9:b3:4e:f6:d1:52:3c:47:1c:b3:3e:
eb:c4:22:07:7e:62:27:02:cf:91:32:df:c1:59:00:7a:25:1d:
91:f6:07:bd:07:f9:f9:88:09:58:56:d0:00:e9:a0:18:bc:70:
c5:6c:8b:a3:aa:e6:96:c3:1e:d6:74:c1:d3:0e:b4:a9:7b:0c:
ea:72:35:cc:1b:51:55:35:95:16:c2:13:40:b7:12:4f:ce:04:
32:6b:e0:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 22 16:58:19 2024 by rpki-client on console-ams.rpki-client.org