Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a396530303a3a2f34302d3438203d3e203533363637.roa
File: 326131343a373538313a396530303a3a2f34302d3438203d3e203533363637.roa (raw, json)
Hash identifier: 7vshQdpkNSZjKpxX06NuXRZaC5XTrY4FRVrBU/WGhQA=
Subject key identifier: EF:8C:54:35:7B:F1:4B:A3:CA:7C:A5:8F:DB:31:F3:C5:CF:D7:15:A3
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 5D669065093B1A024E20376B7FA6797CEF46EFA7
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a396530303a3a2f34302d3438203d3e203533363637.roa
Signing time: Sat 21 Sep 2024 00:34:21 +0000
ROA not before: Sat 21 Sep 2024 00:29:21 +0000
ROA not after: Sat 20 Sep 2025 00:34:21 +0000
asID: 53667
IP address blocks: 2a14:7581:9e00::/40 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:66:90:65:09:3b:1a:02:4e:20:37:6b:7f:a6:79:7c:ef:46:ef:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Sep 21 00:29:21 2024 GMT
Not After : Sep 20 00:34:21 2025 GMT
Subject: CN=EF8C54357BF14BA3CA7CA58FDB31F3C5CFD715A3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:74:f2:e0:8d:b6:68:51:a7:04:e1:f1:f3:bf:
84:12:ad:93:27:b6:07:09:b6:38:08:42:95:33:87:
45:2a:86:71:bf:a5:1b:24:e9:4f:bd:a6:07:27:f4:
96:34:0a:2d:40:40:63:f4:10:d4:b3:ca:44:8f:46:
62:1f:62:ca:1f:2c:51:7f:3e:98:8b:03:51:00:52:
73:c2:47:fb:59:29:b1:85:30:bd:e1:12:69:b3:b8:
15:6d:cf:7b:3d:95:94:6b:db:67:46:c5:15:39:20:
72:75:7c:b8:31:ca:d0:20:ea:08:a1:cc:92:49:cc:
1b:40:99:bb:57:5d:2c:91:bf:d1:87:78:1d:9e:5e:
4c:73:fe:bd:9c:06:32:3c:e1:e9:22:39:9f:a0:99:
07:c8:a4:1d:e3:dd:15:3b:62:9c:22:37:1a:65:b2:
43:83:e4:c0:7f:28:84:03:12:e8:fc:be:9f:a2:de:
af:4e:b9:f4:2b:37:dc:df:cc:da:0c:98:af:0b:c7:
d4:c7:4c:62:77:2c:cb:1b:4b:83:93:f3:f6:a4:a3:
1c:e5:15:47:ba:85:bd:a8:ba:3d:eb:90:e8:63:96:
ee:20:df:17:c4:47:54:db:7c:25:27:82:6b:56:08:
bf:64:f0:41:a6:6a:0b:04:17:ed:59:7b:b0:1d:fa:
32:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:8C:54:35:7B:F1:4B:A3:CA:7C:A5:8F:DB:31:F3:C5:CF:D7:15:A3
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a396530303a3a2f34302d3438203d3e203533363637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:9e00::/40
Signature Algorithm: sha256WithRSAEncryption
52:c2:8b:cd:29:23:35:8c:bc:2b:bf:8f:f8:63:fb:f7:d0:db:
b6:9e:4e:e4:7e:36:06:72:9c:8d:c9:bd:32:89:f8:c7:8f:48:
d8:9c:07:37:b0:55:b4:69:42:d2:41:b6:91:6e:3c:14:10:69:
95:80:15:c7:77:2c:da:c8:f2:fe:01:6a:fe:f0:c9:68:42:1e:
05:c1:eb:34:5a:38:d1:28:ab:dc:e1:7b:4c:64:2a:ff:64:66:
2a:fc:eb:dc:d8:79:3a:b0:4d:fc:9c:66:44:38:4e:d0:3a:1c:
b1:6e:5c:c1:7f:9e:6e:00:6b:d3:cc:fe:cb:c2:7a:77:72:e8:
91:78:7e:88:e6:bc:51:c6:ae:bb:65:76:62:42:5a:56:e7:4c:
21:5b:0a:55:4a:8a:04:b9:09:f7:ce:ab:c6:39:02:56:93:70:
26:06:2a:0b:6b:46:64:aa:8d:e9:ea:d9:4d:87:37:7e:18:8d:
66:30:db:58:0c:ec:42:fb:54:e0:73:b6:ec:76:3d:16:4d:02:
43:cb:81:db:b1:73:9f:97:49:0c:cf:22:8b:8e:c3:8c:93:1e:
79:16:81:77:73:0b:37:76:7a:75:ad:b7:cc:a8:ea:af:ec:4b:
e9:94:31:1d:3c:84:10:6b:f3:70:34:5a:23:e3:22:a6:15:dd:
6c:b8:00:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:35:20 2024 by rpki-client on console-ams.rpki-client.org