Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a393831313a3a2f34382d3438203d3e203331383938.roa
File: 326131343a373538313a393831313a3a2f34382d3438203d3e203331383938.roa (raw, json)
Hash identifier: ofQoAaiNicMBcAA3g93EAbbs3U6bEy64EklwS/JCgPk=
Subject key identifier: 4F:F0:B4:8E:49:32:D6:1E:CF:1A:65:FA:38:0C:2D:F1:A0:81:DE:86
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 633438EDB87C71318E3F7602A4BA913F4D357FF0
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a393831313a3a2f34382d3438203d3e203331383938.roa
Signing time: Sat 17 Aug 2024 06:58:56 +0000
ROA not before: Sat 17 Aug 2024 06:53:56 +0000
ROA not after: Sat 16 Aug 2025 06:58:56 +0000
asID: 31898
IP address blocks: 2a14:7581:9811::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:34:38:ed:b8:7c:71:31:8e:3f:76:02:a4:ba:91:3f:4d:35:7f:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Aug 17 06:53:56 2024 GMT
Not After : Aug 16 06:58:56 2025 GMT
Subject: CN=4FF0B48E4932D61ECF1A65FA380C2DF1A081DE86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:50:61:29:1d:da:eb:b6:8a:53:24:74:d3:df:
3a:79:29:1f:1f:49:19:30:59:c5:f4:b7:d3:50:87:
78:32:db:b7:1b:0c:9e:f2:03:25:fa:fb:a0:c7:bf:
85:3f:32:f0:44:1e:b4:52:62:93:7a:89:85:b5:0a:
c8:2e:e5:6c:00:88:13:7a:fc:f4:58:a2:f4:0b:04:
1d:35:68:02:dd:c6:61:e5:3d:59:12:a5:5b:b1:69:
bc:f2:59:85:68:7c:68:16:f2:d8:8f:aa:32:3c:76:
64:37:08:fd:12:9a:4d:fd:54:5b:c4:27:d4:8a:ff:
8c:56:42:44:ef:b2:f8:37:8e:64:a0:53:5f:b4:10:
7d:67:08:ac:fa:d2:f1:7d:0c:f8:5e:7d:a1:fa:28:
e4:0a:74:b9:68:54:8b:9e:09:63:c3:71:30:e7:f4:
26:76:df:f4:0d:a3:ab:d0:95:fa:29:e8:c2:15:b5:
f1:d7:72:a8:00:28:1e:83:7f:6c:40:f0:b2:55:c3:
fd:3f:55:32:f3:c0:15:79:b0:36:2c:62:03:6f:21:
a5:c0:63:7e:98:75:ac:86:19:1e:b6:88:be:ba:eb:
9c:ad:6b:c8:9c:57:3a:55:e5:32:0c:b1:5e:a1:22:
cf:55:fa:6d:98:0a:df:27:57:a1:08:92:7a:d1:11:
42:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:F0:B4:8E:49:32:D6:1E:CF:1A:65:FA:38:0C:2D:F1:A0:81:DE:86
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a393831313a3a2f34382d3438203d3e203331383938.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:9811::/48
Signature Algorithm: sha256WithRSAEncryption
86:b8:81:f9:50:01:81:ff:5d:46:ad:7a:00:3f:7a:e0:92:d4:
26:57:a6:d6:00:a2:22:ce:a0:e7:19:3b:03:2d:d1:71:f4:33:
78:98:57:db:4d:a7:f0:e3:68:62:93:e5:43:94:81:56:3a:3d:
45:48:17:b7:53:c0:dc:44:95:75:aa:54:58:d9:4c:98:8d:89:
81:86:8c:1c:d8:de:2b:1e:ba:05:ad:d7:e7:57:db:77:66:65:
53:59:af:c5:fe:c6:d1:d8:a2:f4:5c:6d:e9:df:76:93:9c:58:
1d:7e:64:00:20:eb:3e:9f:4d:04:f9:85:bf:8b:f8:53:de:a5:
91:01:db:b5:ab:9a:c8:5d:9e:66:3d:4a:be:44:82:80:d6:cc:
6b:b3:ee:66:b7:c9:ad:0b:44:0c:45:dc:00:ff:75:5b:74:c0:
a5:d9:17:87:67:65:a1:37:6d:bd:ea:21:71:33:42:ee:8a:24:
36:c0:f2:02:cf:d3:4e:32:b9:2a:03:7e:36:d4:36:1f:3e:37:
43:5d:79:34:03:64:3f:ec:ad:99:6e:0f:84:28:62:49:28:e9:
f5:84:cc:31:df:74:03:3f:00:e8:01:b5:92:93:6c:68:65:43:
98:52:98:c8:e9:87:85:c8:55:52:ee:8c:6f:18:b9:e6:da:2c:
ef:50:44:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 10:22:12 2024 by rpki-client on console-fra.rpki-client.org