Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a6665313a3a2f34382d3438203d3e20323134343536.roa
File: 326131343a373538313a6665313a3a2f34382d3438203d3e20323134343536.roa (raw, json)
Hash identifier: FajHlOALiQEjG6e0WFFkZQK8dd4dFgxlq3jPyIdyaE0=
Subject key identifier: D9:0D:E1:CA:E4:84:BA:03:69:D8:B2:89:45:44:CC:9E:B9:4B:8C:8C
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 363404D253FC3ED79A2D83FA60B4C7DC8485FDED
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a6665313a3a2f34382d3438203d3e20323134343536.roa
Signing time: Tue 30 Jul 2024 03:29:08 +0000
ROA not before: Tue 30 Jul 2024 03:24:08 +0000
ROA not after: Tue 29 Jul 2025 03:29:08 +0000
asID: 214456
IP address blocks: 2a14:7581:fe1::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:34:04:d2:53:fc:3e:d7:9a:2d:83:fa:60:b4:c7:dc:84:85:fd:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Jul 30 03:24:08 2024 GMT
Not After : Jul 29 03:29:08 2025 GMT
Subject: CN=D90DE1CAE484BA0369D8B2894544CC9EB94B8C8C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:e5:19:af:03:cd:71:1f:73:41:6f:f9:e4:21:
cf:7a:fa:26:e6:8e:42:78:55:02:e7:76:1b:49:3b:
b7:e1:b8:43:6e:ee:92:fb:ac:f2:e3:fe:a1:e6:b2:
a3:0f:88:20:1d:06:19:44:bc:1d:fe:e9:27:5c:03:
fc:a2:6e:cd:20:8a:5b:df:ef:2e:2c:4d:be:2c:5d:
a5:36:56:8d:b4:54:a8:33:39:78:b3:4a:87:ac:f1:
13:a2:4c:75:c0:b8:92:e0:a3:68:48:ec:ba:30:03:
25:51:7d:18:1b:04:20:ba:54:ad:48:bc:73:38:b7:
65:57:b1:42:99:d2:84:b5:61:29:a6:52:f3:de:d4:
21:1e:f9:e7:71:62:25:73:3b:8a:e2:14:4c:56:6e:
98:f7:33:90:05:47:e2:15:c9:74:1d:f8:90:4a:81:
ab:02:38:94:bf:65:e2:8e:51:94:66:c1:ec:02:85:
89:67:0c:0b:7b:29:cd:95:3e:74:63:ef:d7:0b:7c:
6a:29:2e:16:6e:b9:00:ce:b0:32:b0:7a:46:8f:7f:
d8:93:86:f0:21:20:9e:e4:2f:fc:f4:a4:ff:49:c0:
dd:1d:35:1d:51:c8:f9:03:70:84:51:e8:11:21:d1:
48:67:49:f0:f5:e8:37:e5:bc:41:f5:ce:b0:22:4b:
11:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:0D:E1:CA:E4:84:BA:03:69:D8:B2:89:45:44:CC:9E:B9:4B:8C:8C
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a6665313a3a2f34382d3438203d3e20323134343536.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:fe1::/48
Signature Algorithm: sha256WithRSAEncryption
03:04:fc:94:32:82:3c:92:9e:03:a6:e9:a6:9c:65:ec:94:ae:
52:f3:92:46:e4:73:b7:ac:b0:0b:eb:8a:63:51:b1:e2:ef:ca:
14:a9:00:fa:f7:aa:df:05:92:e3:dd:05:11:ed:58:54:01:eb:
ba:48:6d:6c:30:ac:3f:cb:54:8e:15:fa:cd:af:e1:b6:1b:33:
46:ad:88:9a:5f:5a:f7:cc:27:a6:d4:38:17:f6:6d:8e:4a:72:
4e:77:e2:64:93:0c:75:49:26:da:7b:d0:76:d0:ee:5f:5d:84:
f0:8c:f0:6b:aa:d4:0d:92:89:31:c6:b0:79:c1:86:5f:d9:db:
5c:e4:d4:1a:55:d1:eb:23:4e:7e:b6:56:58:77:4a:9b:54:9d:
cf:ab:3d:69:d7:51:08:ea:29:3b:78:b8:61:1e:37:ad:26:7c:
2b:5f:e2:40:34:e6:65:72:a8:ae:c5:ba:7b:4a:fe:43:dc:23:
7b:0c:25:1a:54:d9:af:b9:f9:84:57:c1:30:03:5b:c9:9d:fa:
20:8d:36:98:b4:50:b9:d7:94:c9:7a:3a:41:bf:c2:a2:c8:5a:
53:5c:87:10:ab:c6:67:80:da:eb:97:d3:57:b7:4c:6e:fe:9d:
31:33:5e:98:18:b2:7d:57:02:0c:42:e6:d2:1d:c2:c9:a4:39:
d6:90:5a:6a
-----BEGIN CERTIFICATE-----
MIIFPjCCBCagAwIBAgIUNjQE0lP8PteaLYP6YLTH3ISF/e0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYTgzZDQ4NjUyZjNiMmRmNzRmNmJmOWJhYThhOWMxNzRj
Y2ZkMzc3MjAeFw0yNDA3MzAwMzI0MDhaFw0yNTA3MjkwMzI5MDhaMDMxMTAvBgNV
BAMTKEQ5MERFMUNBRTQ4NEJBMDM2OUQ4QjI4OTQ1NDRDQzlFQjk0QjhDOEMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCT5RmvA81xH3NBb/nkIc96+ibm
jkJ4VQLndhtJO7fhuENu7pL7rPLj/qHmsqMPiCAdBhlEvB3+6SdcA/yibs0gilvf
7y4sTb4sXaU2Vo20VKgzOXizSoes8ROiTHXAuJLgo2hI7LowAyVRfRgbBCC6VK1I
vHM4t2VXsUKZ0oS1YSmmUvPe1CEe+edxYiVzO4riFExWbpj3M5AFR+IVyXQd+JBK
gasCOJS/ZeKOUZRmwewChYlnDAt7Kc2VPnRj79cLfGopLhZuuQDOsDKwekaPf9iT
hvAhIJ7kL/z0pP9JwN0dNR1RyPkDcIRR6BEh0UhnSfD16DflvEH1zrAiSxFDAgMB
AAGjggJIMIICRDAdBgNVHQ4EFgQU2Q3hyuSEugNp2LKJRUTMnrlLjIwwHwYDVR0j
BBgwFoAUqD1IZS87LfdPa/m6qKnBdMz9N3IwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvODkyNzBmNmMtYTNmZS00Mjk5LWIwNzktMzA5ZWQ5N2Yz
ODI0LzAvQTgzRDQ4NjUyRjNCMkRGNzRGNkJGOUJBQThBOUMxNzRDQ0ZEMzc3Mi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3FEMUlaUzg3TGZkUGFfbTZxS25CZE16
OU4zSS5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvODkyNzBmNmMt
YTNmZS00Mjk5LWIwNzktMzA5ZWQ5N2YzODI0LzAvMzI2MTMxMzQzYTM3MzUzODMx
M2E2NjY1MzEzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzQzNDM1MzYucm9h
MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8E
AgACMAkDBwAqFHWBD+EwDQYJKoZIhvcNAQELBQADggEBAAME/JQygjySngOm6aac
ZeyUrlLzkkbkc7essAvrimNRseLvyhSpAPr3qt8FkuPdBRHtWFQB67pIbWwwrD/L
VI4V+s2v4bYbM0atiJpfWvfMJ6bUOBf2bY5Kck534mSTDHVJJtp70HbQ7l9dhPCM
8Guq1A2SiTHGsHnBhl/Z21zk1BpV0esjTn62Vlh3SptUnc+rPWnXUQjqKTt4uGEe
N60mfCtf4kA05mVyqK7FuntK/kPcI3sMJRpU2a+5+YRXwTADW8md+iCNNpi0ULnX
lMl6OkG/wqLIWlNchxCrxmeA2uuX01e3TG7+nTEzXpgYsn1XAgxC5tIdwsmkOdaQ
Wmo=
-----END CERTIFICATE-----
Generated at Thu Nov 21 19:35:20 2024 by rpki-client on console-ams.rpki-client.org