Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a643030303a3a2f34302d3438203d3e203337393838.roa
File: 326131343a373538313a643030303a3a2f34302d3438203d3e203337393838.roa (raw, json)
Hash identifier: tNCYYgcH+OQWXEBjXfda2sRuQkvwy1qFjzLjnLgc95c=
Subject key identifier: 1E:E3:B0:E3:79:86:E3:48:D1:B2:29:93:7F:C9:31:C7:4C:2E:C1:BB
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 08B005905844194D4D3C1B22C99DD485C1F05130
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a643030303a3a2f34302d3438203d3e203337393838.roa
Signing time: Tue 25 Jun 2024 10:25:36 +0000
ROA not before: Tue 25 Jun 2024 10:20:36 +0000
ROA not after: Tue 24 Jun 2025 10:25:36 +0000
asID: 37988
IP address blocks: 2a14:7581:d000::/40 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:b0:05:90:58:44:19:4d:4d:3c:1b:22:c9:9d:d4:85:c1:f0:51:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Jun 25 10:20:36 2024 GMT
Not After : Jun 24 10:25:36 2025 GMT
Subject: CN=1EE3B0E37986E348D1B229937FC931C74C2EC1BB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:41:83:11:ea:b4:5e:ee:e8:ab:bb:a0:a1:29:
5d:70:1c:75:06:d0:6a:7e:95:43:b3:a5:e0:46:6a:
f9:3e:56:f9:fb:92:96:24:3b:7e:32:fa:3b:9d:fc:
68:16:07:ef:d6:19:4b:f8:11:ba:8c:fa:dc:80:52:
79:d0:55:89:f0:33:33:70:8a:38:de:fe:d1:9a:f5:
46:95:e8:95:99:98:79:c7:40:c0:5e:23:a6:0a:9b:
9b:32:db:06:5e:c5:b4:bc:94:b2:e1:fb:47:61:8f:
4a:82:d7:7b:69:35:c1:c5:6b:0e:85:03:1e:b7:3f:
64:ef:1e:14:9d:a7:17:82:4f:a6:56:03:60:43:87:
7b:dc:22:c1:0b:c1:57:59:ed:44:87:c1:ed:36:28:
8e:a7:ca:11:f5:00:3f:3e:71:d9:84:bd:61:8b:50:
5c:47:d6:6e:c0:99:b3:2b:cb:ff:6a:58:24:14:b7:
8e:cc:68:88:90:78:17:e3:68:98:29:ba:52:a1:df:
8b:82:3d:31:07:35:02:84:9f:63:87:79:be:cd:1c:
03:ef:c1:ee:95:d0:a1:37:f8:56:88:65:85:f7:a0:
b4:6c:a9:6e:9d:1d:c9:1c:50:8d:01:d2:da:55:dd:
d6:20:37:70:ed:eb:74:9f:bb:0a:61:1b:50:99:e6:
50:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:E3:B0:E3:79:86:E3:48:D1:B2:29:93:7F:C9:31:C7:4C:2E:C1:BB
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a643030303a3a2f34302d3438203d3e203337393838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:d000::/40
Signature Algorithm: sha256WithRSAEncryption
59:61:a0:d7:7f:64:b1:dd:e8:75:6b:ac:2d:9f:78:a3:c0:95:
5c:cb:91:f9:62:ad:fb:7c:0a:d1:cf:49:97:fb:23:ae:02:96:
08:15:eb:0f:a3:c3:16:77:00:86:84:94:52:05:f6:cc:85:2b:
5b:7f:da:59:32:8f:7e:01:f7:8a:f8:a4:ff:59:da:7b:9d:c9:
aa:9b:f0:57:f7:63:c0:b0:55:d7:4a:51:5a:ce:57:fb:68:1b:
d5:65:53:fa:9b:a7:05:92:02:33:c3:77:36:3d:7d:5a:02:9c:
b3:4a:38:ed:ef:e1:a4:24:50:d0:96:96:bb:2e:fd:9e:3c:db:
de:cc:bf:77:f5:39:b0:2a:e9:a1:0b:55:77:b9:d7:9d:4d:5d:
6c:c8:22:e1:6b:9c:49:18:65:85:62:74:16:ea:ed:6c:93:b3:
e4:fa:88:73:f4:d7:0f:cc:73:7d:03:70:34:b0:11:da:41:9c:
60:84:01:b5:aa:d3:47:4a:43:7f:6f:5e:fc:2a:a2:ab:71:54:
36:c6:72:6c:2c:7f:5f:46:d6:e7:f0:aa:55:97:61:a7:c4:97:
7a:90:1a:14:ac:4b:81:bf:b2:31:d3:89:7c:1c:2a:89:fa:46:
ef:b5:5a:b6:d7:ae:e4:eb:c5:d8:6c:12:b0:f3:e7:46:a5:ba:
a3:ea:69:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:35:20 2024 by rpki-client on console-ams.rpki-client.org