Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a3330303a3a2f34302d3438203d3e203439373931.roa
File: 326131343a373538313a3330303a3a2f34302d3438203d3e203439373931.roa (raw, json)
Hash identifier: GSmHXzOzyUmhPAEmmtr5tzz7tW4xLs68eFEnnvgjMdg=
Subject key identifier: 42:AF:2E:8D:D2:54:EA:F6:73:A7:5D:EB:78:4F:5E:20:0B:F4:92:E5
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 7891B9956196009AC35313D12B4462CDAC5F3629
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a3330303a3a2f34302d3438203d3e203439373931.roa
Signing time: Sat 13 Jul 2024 04:08:44 +0000
ROA not before: Sat 13 Jul 2024 04:03:44 +0000
ROA not after: Sat 12 Jul 2025 04:08:44 +0000
asID: 49791
IP address blocks: 2a14:7581:300::/40 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:91:b9:95:61:96:00:9a:c3:53:13:d1:2b:44:62:cd:ac:5f:36:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Jul 13 04:03:44 2024 GMT
Not After : Jul 12 04:08:44 2025 GMT
Subject: CN=42AF2E8DD254EAF673A75DEB784F5E200BF492E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:dc:4f:76:b2:41:9c:a7:a8:4e:01:58:15:81:
7e:9f:13:c8:bb:80:d1:6a:5f:12:6b:d4:3f:39:58:
2f:7f:9e:35:8f:da:89:31:2b:b6:df:3c:0d:68:e9:
8c:bd:8c:3e:63:2f:9a:79:01:53:26:5f:16:da:2b:
a1:fa:1c:7f:bf:a9:aa:8c:d8:0a:b8:54:fb:e9:00:
e6:41:4c:5c:e8:dd:99:08:ad:7b:27:74:b0:24:24:
10:a9:37:14:88:be:91:5c:69:cf:99:f4:6b:a6:6d:
41:a6:9b:c3:eb:ca:02:cd:c5:b5:25:b8:f6:fd:51:
2f:2d:9c:f7:d8:e3:1f:9c:6c:82:ca:1c:04:33:86:
db:23:f1:16:fb:7e:9d:6d:dd:d0:73:30:44:1f:30:
5b:99:36:ad:ab:fa:e8:42:7d:c9:7a:57:3a:e0:1e:
a7:3a:4d:51:ac:99:b8:3a:4d:52:60:23:13:84:ad:
0b:d3:4a:fa:32:65:f7:ad:76:58:1f:fc:55:50:bb:
6f:f7:73:69:9c:c2:a6:5a:7c:80:8d:79:25:f5:85:
9d:20:dd:0a:b8:0b:ff:bf:dd:d6:ea:eb:71:73:da:
ed:1e:9d:e0:e7:be:84:17:a5:ac:2d:36:a8:64:88:
24:ad:71:d1:c4:41:66:98:b1:08:a7:6d:33:46:fd:
60:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:AF:2E:8D:D2:54:EA:F6:73:A7:5D:EB:78:4F:5E:20:0B:F4:92:E5
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a3330303a3a2f34302d3438203d3e203439373931.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:300::/40
Signature Algorithm: sha256WithRSAEncryption
57:a2:41:fa:4a:91:55:93:2b:0b:01:fc:20:b9:25:7c:d2:e5:
41:75:d2:22:be:dd:2e:45:7c:6d:50:70:a6:2a:cd:94:b8:d8:
55:be:47:ff:fe:86:f8:70:f9:c4:c4:f9:89:b1:a2:2e:db:53:
32:08:64:0b:09:81:f2:e6:29:05:68:9b:75:2d:a7:2f:d5:e3:
ac:19:78:dc:24:1d:02:b2:e3:12:f3:bb:cb:9a:db:2a:7a:c5:
7a:de:42:11:4b:4f:b7:00:5d:3d:c2:ee:2c:90:db:2e:e8:6d:
6d:5b:f9:44:1b:c4:5a:f8:bd:ae:57:1d:d6:32:e6:b7:35:6e:
e3:14:61:f9:44:e8:de:b0:c9:0f:8d:4a:61:82:ea:da:0b:2e:
83:3f:37:d3:29:cf:1d:b4:60:f9:c4:60:20:b4:61:06:3b:2f:
e7:ea:ef:fd:8d:f5:18:20:3a:4d:1b:14:6d:9c:f5:76:8e:47:
cc:bb:86:4b:23:1f:78:1e:89:70:94:f1:8e:1e:8e:db:25:bd:
a5:63:6d:fe:b6:f5:ce:ef:33:b8:10:20:70:e7:35:2e:f4:db:
6e:62:b8:bb:12:7e:18:8b:b7:d9:ef:0e:03:91:7a:fd:3b:d9:
a6:26:97:c7:93:67:00:e3:29:6e:77:10:7c:45:fd:e6:19:f7:
26:b9:81:1c
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sun Nov 24 11:56:51 2024 by rpki-client on console-ams.rpki-client.org