Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a3930303a3a2f34302d3438203d3e203437353039.roa
File: 326131343a373538313a3930303a3a2f34302d3438203d3e203437353039.roa (raw, json)
Hash identifier: Y28x9VN+TH5Y9TIgndgyuI+u1v6s5/QxCIKpXGC0hfU=
Subject key identifier: 91:6D:D6:D3:2D:51:A9:00:18:B5:10:56:26:F4:0E:C4:22:60:05:69
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 4432C42CC531CCA71F537DC3486EEAB6F7AE1AFA
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a3930303a3a2f34302d3438203d3e203437353039.roa
Signing time: Mon 27 May 2024 10:12:36 +0000
ROA not before: Mon 27 May 2024 10:07:36 +0000
ROA not after: Mon 26 May 2025 10:12:36 +0000
asID: 47509
IP address blocks: 2a14:7581:900::/40 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:32:c4:2c:c5:31:cc:a7:1f:53:7d:c3:48:6e:ea:b6:f7:ae:1a:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: May 27 10:07:36 2024 GMT
Not After : May 26 10:12:36 2025 GMT
Subject: CN=916DD6D32D51A90018B5105626F40EC422600569
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:04:82:5d:17:86:ab:65:ac:69:70:0f:3a:ab:
29:80:ba:37:1f:55:e0:24:31:52:5c:e7:4d:3d:34:
60:8b:89:c2:d6:a0:53:03:ba:6e:19:cf:44:43:6e:
54:aa:18:3a:ce:7b:32:0d:f4:a4:67:8b:72:95:c4:
99:9a:bf:02:97:1c:3c:c7:c5:7b:d9:41:29:b6:fd:
db:65:5a:73:35:35:8a:aa:36:01:82:ad:1d:a6:ba:
68:f9:a7:a7:da:40:e8:7f:ac:d9:79:20:78:ff:2c:
9a:09:b3:a2:c8:32:a3:31:54:b7:d4:d4:92:df:20:
be:a5:b3:00:4a:47:52:2a:6d:27:69:9b:ab:62:92:
cf:83:2e:e2:0b:45:4d:18:92:1d:18:65:68:60:fc:
e7:65:19:d2:1f:d1:a5:9d:e0:2f:01:37:7d:db:74:
6b:93:b0:55:7a:ed:f0:0c:53:76:2f:9b:48:75:53:
f6:83:67:b7:82:06:00:6d:83:7c:d0:a8:ea:ab:3a:
4a:b2:29:1c:04:a7:0a:59:25:ea:6f:6d:ac:62:16:
19:86:82:18:53:a6:31:ba:28:1a:d7:87:49:0e:59:
6b:ce:5a:08:1f:fd:d9:f3:3f:ee:c7:98:e4:68:25:
3b:1d:88:90:a7:01:78:85:67:9f:07:2e:27:3f:c9:
cc:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:6D:D6:D3:2D:51:A9:00:18:B5:10:56:26:F4:0E:C4:22:60:05:69
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a3930303a3a2f34302d3438203d3e203437353039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:900::/40
Signature Algorithm: sha256WithRSAEncryption
72:51:4e:07:5c:4e:86:a5:d4:b0:b6:6f:e8:4d:2b:d8:9e:83:
26:fc:6d:e5:ba:e3:a2:6f:b6:62:90:f4:5a:c6:dc:d9:1f:f9:
71:e2:36:5f:90:a8:ce:49:e1:c3:1b:5e:ea:d8:cb:52:42:39:
00:52:b5:b1:b9:b8:b8:16:1e:47:ab:ba:7d:1c:4f:cb:76:17:
91:c4:e3:d9:20:20:33:e1:64:f0:e7:9b:bb:22:95:0d:a0:f0:
80:7d:2b:fa:6f:b0:6b:24:b5:e1:b6:e6:1c:19:03:58:a4:9e:
cd:fe:e6:72:d0:89:2a:38:3d:18:46:fe:dd:de:59:30:f1:05:
0f:71:0a:19:21:f9:88:9e:ad:12:e1:9c:ad:15:96:d5:82:f3:
6e:6f:99:3f:30:5e:da:fc:ff:f5:3f:63:64:08:75:b7:3b:73:
d1:33:ea:b1:33:20:7c:91:80:e0:1a:fa:7e:29:91:a9:40:8d:
fe:5b:af:26:5c:94:e0:83:0e:1c:8e:2a:3c:2c:6e:12:b1:3e:
63:80:70:47:79:75:30:04:bf:6c:e4:ce:64:95:3c:86:3b:b7:
c9:68:8e:fd:15:a2:50:35:45:db:97:2f:ba:76:1f:68:b1:1e:
55:13:5e:b0:da:fa:cf:66:c2:47:ec:a1:23:a0:be:da:09:9a:
2d:41:19:ee
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Nov 21 19:35:20 2024 by rpki-client on console-ams.rpki-client.org