Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a6230303a3a2f34302d3438203d3e20323134353735.roa
File: 326131343a373538313a6230303a3a2f34302d3438203d3e20323134353735.roa (raw, json)
Hash identifier: cwzUBOUaHnsrhLDAkJorfP0XIdpNF5EfvOayoHyGNqU=
Subject key identifier: 08:36:A9:B8:DC:30:83:9A:3D:E5:9A:F3:31:53:C4:43:23:B2:45:5A
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 0B39B1B23BB6A01958AE4E458FE3749AFE841FDB
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a6230303a3a2f34302d3438203d3e20323134353735.roa
Signing time: Fri 05 Jul 2024 17:34:51 +0000
ROA not before: Fri 05 Jul 2024 17:29:51 +0000
ROA not after: Fri 04 Jul 2025 17:34:51 +0000
asID: 214575
IP address blocks: 2a14:7581:b00::/40 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:39:b1:b2:3b:b6:a0:19:58:ae:4e:45:8f:e3:74:9a:fe:84:1f:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Jul 5 17:29:51 2024 GMT
Not After : Jul 4 17:34:51 2025 GMT
Subject: CN=0836A9B8DC30839A3DE59AF33153C44323B2455A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:5a:a5:95:73:08:ab:50:d2:45:7d:5a:f2:c7:
c0:f2:17:65:8f:8e:00:89:8c:3d:e9:6d:00:1a:a7:
70:0a:dd:e7:59:53:59:5a:09:7c:01:5b:65:97:35:
23:d3:33:40:e3:3c:82:c0:a6:b2:4d:31:61:bd:9b:
9d:0f:e9:0c:76:97:f1:14:73:82:98:99:cf:45:57:
a0:f4:cf:dd:5d:82:0c:94:6f:ed:53:1c:06:e8:49:
e3:04:2f:d6:53:2d:f4:f8:2f:74:48:98:cf:69:50:
ec:49:29:dc:54:51:5f:63:4f:ee:32:97:e1:d1:a9:
5a:75:8a:90:55:8b:35:5a:0e:5f:17:7e:39:39:ef:
4a:fb:1f:c6:48:f7:35:0e:33:7b:5b:9f:a7:5e:f0:
10:21:e5:48:84:57:f1:45:59:7c:24:7a:61:fd:92:
a2:c9:ee:3a:6e:95:dd:f8:b3:9d:f5:30:74:12:1f:
2c:15:ba:97:31:c4:4a:9c:5d:d1:62:81:9e:ee:14:
15:c4:ad:82:70:dc:00:c3:a1:78:8b:01:9b:f5:de:
bb:8d:c2:6f:82:67:80:c7:95:19:27:8e:6b:bd:42:
bc:d9:ca:e9:63:71:ad:1c:fd:a5:ec:4e:56:a6:8f:
11:cc:7c:a4:31:22:8f:2d:b1:c5:8b:8f:bd:7e:4e:
47:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:36:A9:B8:DC:30:83:9A:3D:E5:9A:F3:31:53:C4:43:23:B2:45:5A
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a6230303a3a2f34302d3438203d3e20323134353735.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:b00::/40
Signature Algorithm: sha256WithRSAEncryption
78:72:35:cf:87:dd:34:3d:b8:34:cd:ec:89:a1:09:67:ba:a1:
ba:e9:9f:69:a4:22:88:3c:83:89:63:7e:0c:18:4e:e4:60:89:
85:90:41:8e:cf:22:5c:94:ee:cd:be:c5:7d:dd:5c:cb:70:f7:
2b:d0:a7:2c:ce:0b:f3:ff:3d:cc:20:d1:83:22:14:f6:b5:22:
a9:d5:7c:66:23:55:9d:b4:e1:d4:b3:9d:20:ae:e1:a7:0f:3b:
db:07:f2:48:8a:02:f4:3d:0d:4d:90:69:bf:c8:dc:39:85:0d:
27:07:5f:f4:0e:9f:55:15:a7:27:6d:f1:3c:5f:b2:49:5c:8e:
7c:12:a1:d9:7a:9f:ec:c7:62:a5:90:7b:8e:a6:aa:d1:c4:80:
5f:b7:ca:e6:ca:59:03:c5:64:21:76:94:e7:18:41:da:15:e6:
d6:99:47:1e:bb:2a:44:d7:a6:92:95:4d:ce:09:4e:f8:d6:4a:
b9:03:da:92:9a:01:bb:cb:05:40:ed:61:13:88:f6:ea:bb:57:
f0:9f:c6:a9:b5:d6:94:e3:04:3a:13:ec:de:81:21:04:1d:36:
39:b4:6d:05:47:fe:47:7f:c6:a2:2b:12:38:dd:e8:67:0c:3b:
4b:a1:2b:cb:d7:07:06:92:62:f0:be:e4:a6:15:79:ce:80:58:
f0:5d:07:65
-----BEGIN CERTIFICATE-----
MIIFPTCCBCWgAwIBAgIUCzmxsju2oBlYrk5Fj+N0mv6EH9swDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYTgzZDQ4NjUyZjNiMmRmNzRmNmJmOWJhYThhOWMxNzRj
Y2ZkMzc3MjAeFw0yNDA3MDUxNzI5NTFaFw0yNTA3MDQxNzM0NTFaMDMxMTAvBgNV
BAMTKDA4MzZBOUI4REMzMDgzOUEzREU1OUFGMzMxNTNDNDQzMjNCMjQ1NUEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgWqWVcwirUNJFfVryx8DyF2WP
jgCJjD3pbQAap3AK3edZU1laCXwBW2WXNSPTM0DjPILAprJNMWG9m50P6Qx2l/EU
c4KYmc9FV6D0z91dggyUb+1THAboSeMEL9ZTLfT4L3RImM9pUOxJKdxUUV9jT+4y
l+HRqVp1ipBVizVaDl8Xfjk570r7H8ZI9zUOM3tbn6de8BAh5UiEV/FFWXwkemH9
kqLJ7jpuld34s531MHQSHywVupcxxEqcXdFigZ7uFBXErYJw3ADDoXiLAZv13ruN
wm+CZ4DHlRknjmu9QrzZyuljca0c/aXsTlamjxHMfKQxIo8tscWLj71+Tke5AgMB
AAGjggJHMIICQzAdBgNVHQ4EFgQUCDapuNwwg5o95ZrzMVPEQyOyRVowHwYDVR0j
BBgwFoAUqD1IZS87LfdPa/m6qKnBdMz9N3IwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvODkyNzBmNmMtYTNmZS00Mjk5LWIwNzktMzA5ZWQ5N2Yz
ODI0LzAvQTgzRDQ4NjUyRjNCMkRGNzRGNkJGOUJBQThBOUMxNzRDQ0ZEMzc3Mi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3FEMUlaUzg3TGZkUGFfbTZxS25CZE16
OU4zSS5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvODkyNzBmNmMt
YTNmZS00Mjk5LWIwNzktMzA5ZWQ5N2YzODI0LzAvMzI2MTMxMzQzYTM3MzUzODMx
M2E2MjMwMzAzYTNhMmYzNDMwMmQzNDM4MjAzZDNlMjAzMjMxMzQzNTM3MzUucm9h
MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4E
AgACMAgDBgAqFHWBCzANBgkqhkiG9w0BAQsFAAOCAQEAeHI1z4fdND24NM3siaEJ
Z7qhuumfaaQiiDyDiWN+DBhO5GCJhZBBjs8iXJTuzb7Ffd1cy3D3K9CnLM4L8/89
zCDRgyIU9rUiqdV8ZiNVnbTh1LOdIK7hpw872wfySIoC9D0NTZBpv8jcOYUNJwdf
9A6fVRWnJ23xPF+ySVyOfBKh2Xqf7MdipZB7jqaq0cSAX7fK5spZA8VkIXaU5xhB
2hXm1plHHrsqRNemkpVNzglO+NZKuQPakpoBu8sFQO1hE4j26rtX8J/GqbXWlOME
OhPs3oEhBB02ObRtBUf+R3/GoisSON3oZww7S6Ery9cHBpJi8L7kphV5zoBY8F0H
ZQ==
-----END CERTIFICATE-----
Generated at Thu Nov 21 19:50:40 2024 by rpki-client on console-fra.rpki-client.org