Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a6666323a3a2f34382d3438203d3e20323135303833.roa
File: 326131343a373538313a6666323a3a2f34382d3438203d3e20323135303833.roa (raw, json)
Hash identifier: 6f0E91kpUInJfEgTkIVnuBbwoKwnSQkrf1Om/uURzjs=
Subject key identifier: 09:53:BD:EA:6E:98:DB:E6:D4:6F:87:77:F2:31:BB:D4:9E:E1:F8:4C
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 2C476C04EECF5A5FDA283B833C3246E7917BC7A0
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a6666323a3a2f34382d3438203d3e20323135303833.roa
Signing time: Thu 18 Apr 2024 06:58:06 +0000
ROA not before: Thu 18 Apr 2024 06:53:06 +0000
ROA not after: Thu 17 Apr 2025 06:58:06 +0000
asID: 215083
IP address blocks: 2a14:7581:ff2::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:47:6c:04:ee:cf:5a:5f:da:28:3b:83:3c:32:46:e7:91:7b:c7:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Apr 18 06:53:06 2024 GMT
Not After : Apr 17 06:58:06 2025 GMT
Subject: CN=0953BDEA6E98DBE6D46F8777F231BBD49EE1F84C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:08:7f:6f:e2:05:5d:56:e6:cd:b8:41:bf:21:
3d:e9:11:ab:fa:68:94:0a:66:c3:af:c9:1d:69:00:
3b:2d:22:09:89:65:92:86:8e:af:ad:60:e2:48:c7:
89:34:57:ff:ba:33:7a:8a:2a:38:1e:66:8b:fb:f4:
0e:bb:07:4c:bf:8c:7c:4e:0c:48:46:75:a6:be:3d:
af:f7:72:80:d4:a6:59:1f:f0:06:35:a0:4c:2e:72:
18:c1:4d:67:63:da:9e:e0:c8:44:fe:3a:5f:e8:17:
de:37:ab:c9:2c:de:1a:bb:d0:93:ff:f3:15:f7:f6:
db:b3:dc:3e:65:9b:9a:54:a5:7a:38:b9:0b:e1:1c:
50:59:34:1b:55:25:ee:0f:36:2d:8e:89:25:43:18:
47:0f:9d:51:b1:d3:42:0a:56:30:83:5b:8b:91:51:
46:fb:86:c7:83:bb:37:81:1f:52:03:71:43:0f:f6:
21:bb:6d:73:34:9b:3b:96:b8:91:4f:19:78:c8:66:
cf:c3:91:f1:9a:b6:c9:02:5f:3b:41:4d:68:04:ac:
a8:2f:6b:55:55:fb:2a:0e:80:eb:1a:94:65:5e:44:
f3:af:f1:0a:c5:05:13:af:eb:21:1c:a8:ac:63:a8:
1f:a5:49:5e:bb:22:22:1f:e8:ec:51:b6:f0:f0:38:
1e:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:53:BD:EA:6E:98:DB:E6:D4:6F:87:77:F2:31:BB:D4:9E:E1:F8:4C
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a6666323a3a2f34382d3438203d3e20323135303833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:ff2::/48
Signature Algorithm: sha256WithRSAEncryption
20:c9:4c:65:27:59:16:17:75:de:96:1a:95:e2:37:d2:85:8c:
75:3f:24:95:0a:c2:5e:b5:59:e4:b0:33:70:69:47:32:6f:d4:
89:43:a6:03:75:d7:5c:0b:87:b6:4c:ee:73:bf:92:d0:83:36:
a2:9c:9b:ad:3a:4f:c7:66:8f:09:8f:cc:93:77:2c:5d:9f:66:
1e:17:2f:66:f7:1a:de:d1:3e:f7:ed:57:53:c7:25:1a:97:92:
56:01:11:72:a9:dd:1a:ee:6b:86:d2:7b:a6:07:af:3c:3c:38:
12:29:13:68:05:26:19:1a:b7:56:cc:bd:67:71:34:66:2b:d7:
0a:e5:9c:23:20:85:7d:1f:08:b2:d7:44:8b:2d:29:1a:a8:96:
c7:1a:b1:90:e3:24:89:54:6b:b9:d0:0e:59:ab:d1:10:76:0b:
8c:bd:ca:4c:bb:ff:eb:96:0d:b6:d4:64:d6:d9:5d:42:a6:f7:
23:3e:f2:47:6d:2d:f7:98:48:d0:1c:a0:6a:a4:04:8c:46:44:
34:7e:af:12:8c:7b:d7:ae:b7:03:82:8d:d8:06:65:37:f2:8e:
d7:59:60:45:9a:4a:5b:2d:10:cd:fb:81:72:be:64:49:76:b1:
8b:ac:b1:74:e9:b4:99:4e:a5:98:78:5b:10:20:8a:60:a0:a9:
0f:23:cf:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:35:20 2024 by rpki-client on console-ams.rpki-client.org