Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a663030303a3a2f33362d3438203d3e20323039393838.roa
File: 326131343a373538313a663030303a3a2f33362d3438203d3e20323039393838.roa (raw, json)
Hash identifier: 5IqiuGDp6GFUKctivE39ae3kB5LffKKoPeP3jfFHnEk=
Subject key identifier: 90:61:D4:B7:C6:60:60:66:8F:81:68:8D:97:64:22:43:92:81:A4:C5
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 29BB988EBC84FB62E8967362AB9F0475F50F8C46
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a663030303a3a2f33362d3438203d3e20323039393838.roa
Signing time: Fri 19 Jul 2024 16:50:01 +0000
ROA not before: Fri 19 Jul 2024 16:45:01 +0000
ROA not after: Fri 18 Jul 2025 16:50:01 +0000
asID: 209988
IP address blocks: 2a14:7581:f000::/36 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:bb:98:8e:bc:84:fb:62:e8:96:73:62:ab:9f:04:75:f5:0f:8c:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Jul 19 16:45:01 2024 GMT
Not After : Jul 18 16:50:01 2025 GMT
Subject: CN=9061D4B7C66060668F81688D976422439281A4C5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:1c:98:9e:f5:91:67:3c:95:68:ae:d3:f3:0a:
10:80:1b:f7:58:c9:46:69:19:63:9d:76:43:32:cd:
70:50:ae:2b:96:1a:27:b4:3d:ad:44:d2:0a:22:ff:
03:61:19:02:ea:d1:a8:73:42:2f:1f:34:5e:96:f8:
62:f0:4e:bf:6d:d6:5e:5a:03:5f:c7:ec:24:39:dc:
7c:38:1a:81:50:9d:8d:03:91:86:5e:97:15:ad:f3:
bf:a0:f0:98:1f:15:1d:b1:eb:9e:d5:98:f7:43:ba:
0e:0e:d7:26:e7:28:27:53:3e:e0:2a:2b:80:99:98:
13:f2:dd:d2:3a:2e:4b:37:69:bd:2f:29:5b:b0:80:
1f:3b:53:4d:d8:82:30:55:89:02:b7:33:66:82:fa:
3f:fe:c5:32:ff:65:6b:a5:32:e6:37:e4:31:2f:12:
67:87:bf:0d:87:aa:cf:d9:ba:ca:0f:04:26:a3:45:
12:4e:97:6a:ad:ab:5d:cc:8a:ac:03:42:6a:76:fc:
23:b7:63:99:40:6b:e0:c6:29:dd:71:7c:c1:52:c1:
4c:f4:c9:a1:8f:d6:cf:6d:14:09:d8:a9:55:ab:53:
35:4b:8b:00:6b:d2:9d:ea:5a:b4:e7:d2:a0:8f:6a:
95:17:9d:4f:3f:e8:60:62:fb:88:f8:65:11:b0:1e:
58:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:61:D4:B7:C6:60:60:66:8F:81:68:8D:97:64:22:43:92:81:A4:C5
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a663030303a3a2f33362d3438203d3e20323039393838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:f000::/36
Signature Algorithm: sha256WithRSAEncryption
2e:e0:b3:b3:a2:b5:df:81:e7:fb:a5:d5:e2:3c:c5:1d:39:18:
9c:04:23:26:5c:98:94:68:44:b2:aa:a8:c9:af:49:8f:0a:8a:
12:1c:2f:27:84:df:89:30:a7:0e:2d:8e:c6:63:5e:62:b3:9d:
2e:c1:0e:de:b0:c3:72:d5:9b:0f:8d:88:4a:56:91:c5:84:88:
b3:1d:86:e8:96:c0:9f:cd:10:17:a1:ac:f2:e8:ff:44:ce:13:
fa:cf:12:fd:bd:c8:ad:a9:30:32:a7:48:cf:d7:fa:5f:07:d5:
97:45:da:d8:4a:c3:d8:b9:8d:f6:98:26:5e:a6:4c:4c:83:60:
31:e4:5f:60:ae:8e:b6:8e:d4:3c:76:77:fb:e5:91:bc:85:06:
d3:7d:34:2d:e4:ca:44:78:91:ee:43:63:1d:ce:8b:fc:4b:1f:
4d:f1:c0:ab:50:62:8b:60:2c:54:0d:6f:c2:1a:10:11:9c:73:
5f:1c:d9:92:0e:d2:1b:3f:93:da:77:27:53:67:22:6b:85:11:
51:51:23:c2:54:a7:bd:bb:76:40:34:70:b9:41:54:e7:b5:ab:
49:1d:4f:6d:76:e9:e8:7d:43:db:f0:50:d8:cb:ca:9a:0d:c6:
4a:c8:29:2d:9d:0f:95:9a:d7:16:03:e2:ac:32:5d:94:be:d1:
33:6f:e0:9f
-----BEGIN CERTIFICATE-----
MIIFPzCCBCegAwIBAgIUKbuYjryE+2LolnNiq58EdfUPjEYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYTgzZDQ4NjUyZjNiMmRmNzRmNmJmOWJhYThhOWMxNzRj
Y2ZkMzc3MjAeFw0yNDA3MTkxNjQ1MDFaFw0yNTA3MTgxNjUwMDFaMDMxMTAvBgNV
BAMTKDkwNjFENEI3QzY2MDYwNjY4RjgxNjg4RDk3NjQyMjQzOTI4MUE0QzUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrHJie9ZFnPJVortPzChCAG/dY
yUZpGWOddkMyzXBQriuWGie0Pa1E0goi/wNhGQLq0ahzQi8fNF6W+GLwTr9t1l5a
A1/H7CQ53Hw4GoFQnY0DkYZelxWt87+g8JgfFR2x657VmPdDug4O1ybnKCdTPuAq
K4CZmBPy3dI6Lks3ab0vKVuwgB87U03YgjBViQK3M2aC+j/+xTL/ZWulMuY35DEv
EmeHvw2Hqs/ZusoPBCajRRJOl2qtq13MiqwDQmp2/CO3Y5lAa+DGKd1xfMFSwUz0
yaGP1s9tFAnYqVWrUzVLiwBr0p3qWrTn0qCPapUXnU8/6GBi+4j4ZRGwHliPAgMB
AAGjggJJMIICRTAdBgNVHQ4EFgQUkGHUt8ZgYGaPgWiNl2QiQ5KBpMUwHwYDVR0j
BBgwFoAUqD1IZS87LfdPa/m6qKnBdMz9N3IwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvODkyNzBmNmMtYTNmZS00Mjk5LWIwNzktMzA5ZWQ5N2Yz
ODI0LzAvQTgzRDQ4NjUyRjNCMkRGNzRGNkJGOUJBQThBOUMxNzRDQ0ZEMzc3Mi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3FEMUlaUzg3TGZkUGFfbTZxS25CZE16
OU4zSS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvODkyNzBmNmMt
YTNmZS00Mjk5LWIwNzktMzA5ZWQ5N2YzODI0LzAvMzI2MTMxMzQzYTM3MzUzODMx
M2E2NjMwMzAzMDNhM2EyZjMzMzYyZDM0MzgyMDNkM2UyMDMyMzAzOTM5MzgzOC5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw
DgQCAAIwCAMGBCoUdYHwMA0GCSqGSIb3DQEBCwUAA4IBAQAu4LOzorXfgef7pdXi
PMUdORicBCMmXJiUaESyqqjJr0mPCooSHC8nhN+JMKcOLY7GY15is50uwQ7esMNy
1ZsPjYhKVpHFhIizHYbolsCfzRAXoazy6P9EzhP6zxL9vcitqTAyp0jP1/pfB9WX
RdrYSsPYuY32mCZepkxMg2Ax5F9gro62jtQ8dnf75ZG8hQbTfTQt5MpEeJHuQ2Md
zov8Sx9N8cCrUGKLYCxUDW/CGhARnHNfHNmSDtIbP5PadydTZyJrhRFRUSPCVKe9
u3ZANHC5QVTntatJHU9tdunofUPb8FDYy8qaDcZKyCktnQ+VmtcWA+KsMl2UvtEz
b+Cf
-----END CERTIFICATE-----
Generated at Thu Nov 21 19:50:40 2024 by rpki-client on console-fra.rpki-client.org