Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a353030303a3a2f33362d3438203d3e20313937373337.roa
File: 326131343a373538313a353030303a3a2f33362d3438203d3e20313937373337.roa (raw, json)
Hash identifier: /QBI48E/jPQd54n21dHyAN505YJUAZ1Km7rptjypgeA=
Subject key identifier: CE:E4:7E:10:47:34:D3:C2:8F:AF:4A:D3:7D:E9:73:72:EA:D3:50:80
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 262300489CB8EB77F3B5353B14B5F2E9FB8235FE
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a353030303a3a2f33362d3438203d3e20313937373337.roa
Signing time: Thu 28 Mar 2024 21:52:34 +0000
ROA not before: Thu 28 Mar 2024 21:47:34 +0000
ROA not after: Thu 27 Mar 2025 21:52:34 +0000
asID: 197737
IP address blocks: 2a14:7581:5000::/36 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:23:00:48:9c:b8:eb:77:f3:b5:35:3b:14:b5:f2:e9:fb:82:35:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Mar 28 21:47:34 2024 GMT
Not After : Mar 27 21:52:34 2025 GMT
Subject: CN=CEE47E104734D3C28FAF4AD37DE97372EAD35080
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:0a:b7:a4:87:ae:a8:e6:09:f5:ae:77:e7:5f:
0a:a7:69:31:57:cd:4c:a1:f3:b4:c0:ed:ee:1f:51:
b9:89:a6:8b:d0:d1:47:f3:34:28:2c:8c:d8:9a:ec:
df:70:fb:8c:50:52:67:96:fe:1a:52:57:18:ca:99:
91:81:8a:e2:dd:e0:86:ce:ee:7e:ae:e7:e9:81:ec:
22:ac:cf:af:bf:35:82:db:55:56:5a:3e:60:d6:df:
a9:dc:16:9a:5e:fd:9c:8e:3c:3c:ae:d0:fe:ab:be:
d1:09:6a:62:8f:4c:e3:a6:0f:7c:f9:0d:ca:90:46:
b4:11:76:5e:25:56:38:0c:5c:e4:8f:b5:6e:94:d8:
82:ee:74:09:46:73:6e:fd:f4:67:10:bf:bd:a4:6f:
90:62:d7:68:71:08:84:fa:c3:2c:5c:df:b5:b1:08:
7d:86:3c:e5:d5:83:b6:09:34:03:8a:42:81:0e:8d:
50:be:9d:b8:d7:de:ce:84:09:27:93:19:35:0e:55:
f2:8c:2e:84:ac:c4:09:f8:81:44:c2:40:8d:a5:96:
9a:3f:92:12:d7:3e:17:32:f6:eb:1c:6f:ee:84:b5:
b8:46:96:af:e5:d9:c0:07:04:87:77:f5:86:87:f6:
4d:ed:b6:3c:11:45:8f:f5:e4:19:1f:6a:8f:df:47:
5e:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:E4:7E:10:47:34:D3:C2:8F:AF:4A:D3:7D:E9:73:72:EA:D3:50:80
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a353030303a3a2f33362d3438203d3e20313937373337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:5000::/36
Signature Algorithm: sha256WithRSAEncryption
47:86:b2:af:a2:6a:21:14:69:da:17:2e:38:83:49:1c:b1:60:
1d:1f:a0:4b:fa:41:c9:27:fd:af:3b:73:c4:59:e5:47:3b:7f:
29:72:32:cb:47:6d:1f:55:15:21:62:59:67:d1:66:ed:f4:a8:
26:e9:0a:bd:c1:59:0d:6c:7d:6e:3e:e1:dd:00:1a:1b:8b:ab:
af:a8:0d:fd:da:05:01:00:e7:da:1c:13:3f:7e:a8:41:b1:ce:
ef:08:7c:dd:53:0c:22:22:ca:4e:36:dc:e5:39:04:d4:21:5c:
03:64:4f:41:eb:05:f9:ed:a0:39:80:92:3f:c4:59:32:97:f3:
6a:64:9b:ba:fc:6d:49:d1:7d:a5:d2:e7:9f:df:d2:62:7b:e4:
78:ff:69:5f:c8:ae:41:2b:5a:d6:fd:16:bd:f2:63:c9:dd:ef:
e8:28:eb:63:de:c1:7f:61:75:19:4d:74:ed:82:5f:53:8e:02:
e7:82:84:fb:5b:c0:fc:e9:76:0c:2a:da:4a:b7:7b:9f:c2:fe:
28:40:a1:20:d5:ad:f2:3c:59:a1:25:d5:60:9d:7e:b4:9c:e1:
b2:6f:e8:ee:2a:71:12:68:5b:ab:8e:b3:ce:9e:07:c1:51:08:
ee:5d:82:e0:63:c7:9f:6f:f7:0a:31:a4:10:4e:ef:66:14:b3:
66:7b:73:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:35:20 2024 by rpki-client on console-ams.rpki-client.org