Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a6666303a3a2f34382d3438203d3e20323135333634.roa
File: 326131343a373538313a6666303a3a2f34382d3438203d3e20323135333634.roa (raw, json)
Hash identifier: 6K3a0uPdUob9TPHyfUv+Rzz1WKCNlBs4vsg+xznZh8w=
Subject key identifier: EF:D5:27:3D:1E:B8:D4:1E:05:1E:68:9F:F6:3D:B9:CF:7E:1E:B4:DA
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 53E5E863CD9CCE6E5DE985A539FD763E9590ABDA
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a6666303a3a2f34382d3438203d3e20323135333634.roa
Signing time: Fri 03 May 2024 14:10:10 +0000
ROA not before: Fri 03 May 2024 14:05:10 +0000
ROA not after: Fri 02 May 2025 14:10:10 +0000
asID: 215364
IP address blocks: 2a14:7581:ff0::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:e5:e8:63:cd:9c:ce:6e:5d:e9:85:a5:39:fd:76:3e:95:90:ab:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: May 3 14:05:10 2024 GMT
Not After : May 2 14:10:10 2025 GMT
Subject: CN=EFD5273D1EB8D41E051E689FF63DB9CF7E1EB4DA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:a7:a2:f3:a1:67:a3:4a:02:80:37:fe:48:78:
1f:24:4b:dc:9a:39:e7:48:51:56:4d:0a:31:38:e3:
65:20:02:5d:77:c3:93:62:e7:9a:1b:2c:16:35:c3:
c5:e4:19:07:0e:49:3a:15:af:10:27:ff:6d:2b:75:
f3:64:cb:1e:02:3b:af:4a:7b:ba:7e:64:a8:4d:e4:
d4:96:ca:04:cd:d6:5e:f7:52:dd:ce:2b:a7:04:44:
fb:77:60:1a:a3:40:40:8a:9c:53:cf:9a:e1:ed:fc:
3b:e2:9e:94:01:e3:57:fa:4c:79:d8:13:43:1f:bb:
6c:73:bc:88:eb:59:d7:58:50:62:2e:77:09:73:39:
95:63:af:97:fd:90:a2:5d:94:7c:fb:c5:08:6a:63:
17:73:bb:0e:f1:49:86:6f:dd:c5:3c:d7:33:64:c5:
a6:b6:37:03:ea:c8:22:e1:c0:39:f3:5a:ba:30:e3:
40:c7:4d:6a:ce:61:25:4f:4f:0e:a8:34:78:e4:f2:
a3:94:bd:5e:a0:be:04:37:40:57:d2:36:e3:11:27:
db:16:7d:74:2b:bf:85:81:0a:39:8c:54:30:ee:78:
44:a9:ff:c6:c8:10:37:f7:b2:63:d4:73:c0:e8:a0:
ac:e9:9b:02:31:c1:60:6a:de:2e:27:4d:8a:8c:16:
6b:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:D5:27:3D:1E:B8:D4:1E:05:1E:68:9F:F6:3D:B9:CF:7E:1E:B4:DA
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a6666303a3a2f34382d3438203d3e20323135333634.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:ff0::/48
Signature Algorithm: sha256WithRSAEncryption
75:b4:76:65:ca:11:75:67:99:b1:0c:da:fc:23:9a:1a:a1:7f:
5f:23:b9:c9:0b:d0:63:d4:2f:a7:b4:a5:b8:d7:a9:b3:23:ba:
ac:33:1d:79:83:ef:fa:bf:c9:b0:8f:d4:38:83:a4:b3:6f:0b:
f2:fc:f7:35:f3:3e:05:92:7e:4f:e1:a7:09:21:4b:f7:af:f9:
e7:fc:b0:34:82:21:dd:40:02:3c:b3:ed:d2:ad:84:49:eb:e8:
a0:b3:3f:63:44:1c:06:92:88:46:93:ee:cc:f7:f0:e5:e0:f3:
ee:f2:64:04:1d:a1:28:0a:a0:75:b8:b7:29:b1:7d:cf:3b:a1:
39:6e:9b:8e:58:5c:b6:27:30:e2:8b:03:f0:5b:9a:c4:f4:df:
23:2c:01:36:3e:0d:52:cc:4c:ab:84:f6:0d:4f:28:9f:47:64:
58:de:08:2c:63:3e:ab:a6:6e:c8:97:19:ed:ac:4d:a5:c9:b6:
1f:b8:3d:26:87:e8:83:78:73:4c:3b:49:0d:d0:fa:32:56:65:
be:cb:04:29:fd:90:43:9b:26:99:95:db:d7:4d:d7:17:04:7f:
fb:00:7e:65:67:59:c0:9b:78:57:a5:7d:40:69:88:d9:f3:d5:
85:4a:e2:8a:61:6c:e1:99:eb:b3:a3:30:65:f7:e1:db:25:dc:
78:19:e2:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:50:40 2024 by rpki-client on console-fra.rpki-client.org