Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a6665303a3a2f34382d3438203d3e20323134343737.roa
File: 326131343a373538313a6665303a3a2f34382d3438203d3e20323134343737.roa (raw, json)
Hash identifier: RZjPlpTysimW1VPXewlqReX3ysTlKrrw5V8mc9yJ4Xg=
Subject key identifier: E1:F7:DE:34:0C:EC:DB:0F:1D:78:1D:DE:38:F5:73:4C:AC:C6:2D:D1
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 667E4B921B634DCE79E4AA0EC3D64D3C73C4F637
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a6665303a3a2f34382d3438203d3e20323134343737.roa
Signing time: Wed 24 Jul 2024 10:27:02 +0000
ROA not before: Wed 24 Jul 2024 10:22:02 +0000
ROA not after: Wed 23 Jul 2025 10:27:02 +0000
asID: 214477
IP address blocks: 2a14:7581:fe0::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:7e:4b:92:1b:63:4d:ce:79:e4:aa:0e:c3:d6:4d:3c:73:c4:f6:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Jul 24 10:22:02 2024 GMT
Not After : Jul 23 10:27:02 2025 GMT
Subject: CN=E1F7DE340CECDB0F1D781DDE38F5734CACC62DD1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:82:c3:a3:b5:f8:ba:dd:20:d0:a6:92:59:61:
cb:7a:1e:e7:90:49:71:dd:ec:9e:d2:ac:b9:da:f4:
73:18:b0:97:91:72:4b:86:da:f4:86:f5:ac:a9:1b:
79:4e:39:b9:50:10:ac:7d:2d:97:b5:3a:a9:45:75:
08:0e:48:e1:59:8b:fa:cf:2a:43:cd:90:33:ff:a1:
38:8e:d1:0f:f2:7f:89:7a:6a:0c:a4:c4:7e:06:6b:
85:5e:c5:d9:7b:21:34:26:4a:d6:53:63:c9:b3:14:
7f:9c:a6:3d:d8:7c:a1:10:98:b6:91:59:f2:26:1b:
92:fa:7b:ba:8f:08:c4:72:24:5b:33:74:42:8a:9c:
e3:3c:ce:ac:69:9c:aa:31:25:ff:aa:6a:d6:f1:c1:
a7:10:f3:4f:c7:0e:26:a6:b3:77:d8:b8:3a:53:d1:
9e:47:5a:11:f6:e8:41:00:69:f5:73:4a:1c:62:b3:
89:2d:72:ef:bc:12:da:e2:47:d2:d9:2a:36:bf:09:
98:d3:e2:27:cf:29:cc:4c:12:ab:09:95:b8:6e:5c:
9e:91:25:ac:7f:6a:9d:68:ba:6a:d2:d2:47:61:32:
7e:d8:65:8b:cd:21:25:d2:0c:43:f2:30:98:a9:5a:
46:69:70:4b:e0:21:ec:1a:70:a4:8e:35:a9:fc:fd:
4f:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:F7:DE:34:0C:EC:DB:0F:1D:78:1D:DE:38:F5:73:4C:AC:C6:2D:D1
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a6665303a3a2f34382d3438203d3e20323134343737.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:fe0::/48
Signature Algorithm: sha256WithRSAEncryption
77:67:52:c4:6f:ee:cd:e1:fc:83:0e:39:19:2c:71:ca:d1:db:
70:db:ff:1a:d3:5a:2e:5d:5c:9d:6e:95:63:6c:e3:c7:b3:3d:
3f:80:f8:94:2a:4b:c5:17:6f:c0:a8:7a:8d:cc:cd:3a:39:fb:
ff:7e:d2:14:c5:a2:37:6c:08:2a:bc:00:eb:5f:c1:5e:96:1d:
95:75:a6:8f:db:53:4a:65:64:1d:e8:b8:2d:d3:07:e3:d5:3c:
bf:68:a6:d3:a1:4f:66:d0:e6:d2:83:3a:8c:9b:e4:a6:f6:15:
5b:bf:b9:01:1b:dc:db:b8:e5:3f:c3:1c:ef:bd:66:70:25:ea:
b0:1f:a7:01:c8:07:96:82:23:b5:58:4b:5f:9a:40:99:72:98:
47:f0:06:18:70:1b:62:9a:c8:ec:e4:49:31:27:66:5c:1d:83:
a8:96:a5:91:f1:73:db:41:e1:e0:b1:0d:fe:3f:57:5d:38:2f:
35:83:d9:44:06:f4:91:ea:b3:e3:b0:5f:c8:f7:b1:54:a4:5e:
07:82:87:0f:ec:bd:89:8d:6f:48:d4:db:92:26:20:8b:05:54:
4b:4f:f2:fd:42:89:86:3d:12:7a:b0:b5:8a:40:29:e1:bd:ad:
8c:bf:31:08:78:d5:dc:ff:bb:3d:04:48:0f:13:ea:97:c9:67:
98:e2:6a:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:35:20 2024 by rpki-client on console-ams.rpki-client.org