Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a396465303a3a2f34332d3438203d3e203330373030.roa
File: 326131343a373538313a396465303a3a2f34332d3438203d3e203330373030.roa (raw, json)
Hash identifier: zccP3RiSDAxmdxX1TzHk78mQJidIN5lnxzfXlwvyb4o=
Subject key identifier: 6B:4A:44:21:3A:F1:11:8D:AB:18:5A:71:F3:0B:D4:DE:E1:C7:C8:77
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 707BA01F0158266EAD221B7CFDDCF63DB3B5EF60
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a396465303a3a2f34332d3438203d3e203330373030.roa
Signing time: Sat 28 Sep 2024 00:38:34 +0000
ROA not before: Sat 28 Sep 2024 00:33:34 +0000
ROA not after: Sat 27 Sep 2025 00:38:34 +0000
asID: 30700
IP address blocks: 2a14:7581:9de0::/43 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:7b:a0:1f:01:58:26:6e:ad:22:1b:7c:fd:dc:f6:3d:b3:b5:ef:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Sep 28 00:33:34 2024 GMT
Not After : Sep 27 00:38:34 2025 GMT
Subject: CN=6B4A44213AF1118DAB185A71F30BD4DEE1C7C877
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ae:65:f5:5d:65:ad:b8:2a:72:26:76:61:c8:
90:03:e9:06:86:fa:f7:ea:28:36:0d:a6:5b:f9:52:
90:34:34:8e:96:8b:2f:06:15:e6:0e:05:54:53:f7:
59:eb:4e:eb:10:fe:14:07:21:98:98:da:f1:5d:42:
b5:1d:cf:d3:17:d8:ed:24:7c:54:d3:92:ae:d0:9e:
4e:fe:f5:85:c2:b5:eb:07:65:4d:e5:2c:9d:fe:d4:
8c:69:a4:56:2e:e7:23:a0:f5:70:f0:b2:87:c9:db:
e1:cf:56:8c:8f:7a:1b:7d:47:79:17:1f:14:eb:a6:
f0:9e:d1:08:d2:8d:e1:18:3c:fd:28:ce:22:a1:5a:
42:f1:7c:30:ae:1d:b0:ee:c7:94:c5:bc:1f:cd:8f:
89:29:a5:80:f4:2d:d7:dc:14:25:4c:ca:d3:d3:aa:
57:ac:ff:2c:52:e4:1b:f2:aa:12:2e:39:c0:74:de:
91:04:e3:9b:01:36:99:33:df:16:eb:56:e5:b6:41:
53:c2:94:97:78:40:aa:29:2a:da:4d:34:a1:93:8a:
f5:c9:c3:60:fe:ab:71:bf:fd:0d:f4:58:28:f1:f9:
73:be:62:02:22:30:c1:ca:8f:22:8e:6a:32:95:a6:
92:84:cd:ff:46:09:06:36:ab:bc:15:f4:32:06:9e:
a4:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:4A:44:21:3A:F1:11:8D:AB:18:5A:71:F3:0B:D4:DE:E1:C7:C8:77
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a396465303a3a2f34332d3438203d3e203330373030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:9de0::/43
Signature Algorithm: sha256WithRSAEncryption
28:12:1b:71:2c:70:fb:5f:b6:c4:f5:33:9e:c9:d7:08:54:3d:
11:3b:fb:de:3b:61:1b:5b:9c:2c:61:1d:ee:a3:f3:b5:de:57:
0a:f5:a2:0d:a1:e3:31:3f:0a:09:ce:31:86:c0:38:a8:e3:90:
b6:24:a5:22:42:44:dc:18:3d:ca:44:59:20:63:e4:b8:95:44:
b9:c1:e0:61:d3:87:99:ae:f9:e2:bf:99:a8:de:14:97:57:63:
96:5f:b0:c3:24:86:47:a0:05:f4:08:85:c2:93:d2:f3:e9:fd:
dc:0b:3f:d9:98:81:61:ee:9c:16:68:af:47:05:07:a7:4d:ee:
2d:d2:04:5b:29:45:35:30:67:6f:13:06:77:ae:7b:cf:43:38:
4e:51:f7:2d:d3:ea:03:58:88:a0:8c:2e:2c:bf:76:b5:b1:7c:
6c:60:42:df:1a:6d:c1:fe:f0:24:a9:1e:56:44:ec:11:32:b7:
cb:ba:3f:16:53:15:2f:62:87:e2:d9:3c:7d:3c:ab:72:69:ed:
e3:44:fd:86:4a:b3:e3:e1:fe:66:0c:9a:d6:11:15:1d:53:f2:
6c:ac:88:0e:a6:7b:ac:39:58:c7:d2:56:0e:a6:8d:0c:45:bb:
90:0c:08:4b:03:de:69:09:82:81:fd:76:1a:00:3b:e3:ce:d8:
bc:6a:1f:31
-----BEGIN CERTIFICATE-----
MIIFPjCCBCagAwIBAgIUcHugHwFYJm6tIht8/dz2PbO172AwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYTgzZDQ4NjUyZjNiMmRmNzRmNmJmOWJhYThhOWMxNzRj
Y2ZkMzc3MjAeFw0yNDA5MjgwMDMzMzRaFw0yNTA5MjcwMDM4MzRaMDMxMTAvBgNV
BAMTKDZCNEE0NDIxM0FGMTExOERBQjE4NUE3MUYzMEJENERFRTFDN0M4NzcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwrmX1XWWtuCpyJnZhyJAD6QaG
+vfqKDYNplv5UpA0NI6Wiy8GFeYOBVRT91nrTusQ/hQHIZiY2vFdQrUdz9MX2O0k
fFTTkq7Qnk7+9YXCtesHZU3lLJ3+1IxppFYu5yOg9XDwsofJ2+HPVoyPeht9R3kX
HxTrpvCe0QjSjeEYPP0oziKhWkLxfDCuHbDux5TFvB/Nj4kppYD0LdfcFCVMytPT
qles/yxS5BvyqhIuOcB03pEE45sBNpkz3xbrVuW2QVPClJd4QKopKtpNNKGTivXJ
w2D+q3G//Q30WCjx+XO+YgIiMMHKjyKOajKVppKEzf9GCQY2q7wV9DIGnqS/AgMB
AAGjggJIMIICRDAdBgNVHQ4EFgQUa0pEITrxEY2rGFpx8wvU3uHHyHcwHwYDVR0j
BBgwFoAUqD1IZS87LfdPa/m6qKnBdMz9N3IwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvODkyNzBmNmMtYTNmZS00Mjk5LWIwNzktMzA5ZWQ5N2Yz
ODI0LzAvQTgzRDQ4NjUyRjNCMkRGNzRGNkJGOUJBQThBOUMxNzRDQ0ZEMzc3Mi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3FEMUlaUzg3TGZkUGFfbTZxS25CZE16
OU4zSS5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvODkyNzBmNmMt
YTNmZS00Mjk5LWIwNzktMzA5ZWQ5N2YzODI0LzAvMzI2MTMxMzQzYTM3MzUzODMx
M2EzOTY0NjUzMDNhM2EyZjM0MzMyZDM0MzgyMDNkM2UyMDMzMzAzNzMwMzAucm9h
MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8E
AgACMAkDBwUqFHWBneAwDQYJKoZIhvcNAQELBQADggEBACgSG3EscPtftsT1M57J
1whUPRE7+947YRtbnCxhHe6j87XeVwr1og2h4zE/CgnOMYbAOKjjkLYkpSJCRNwY
PcpEWSBj5LiVRLnB4GHTh5mu+eK/majeFJdXY5ZfsMMkhkegBfQIhcKT0vPp/dwL
P9mYgWHunBZor0cFB6dN7i3SBFspRTUwZ28TBneue89DOE5R9y3T6gNYiKCMLiy/
drWxfGxgQt8abcH+8CSpHlZE7BEyt8u6PxZTFS9ih+LZPH08q3Jp7eNE/YZKs+Ph
/mYMmtYRFR1T8mysiA6me6w5WMfSVg6mjQxFu5AMCEsD3mkJgoH9dhoAO+PO2Lxq
HzE=
-----END CERTIFICATE-----
Generated at Thu Nov 21 19:50:40 2024 by rpki-client on console-fra.rpki-client.org