Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a6666383a3a2f34382d3438203d3e20323134383231.roa
File: 326131343a373538313a6666383a3a2f34382d3438203d3e20323134383231.roa (raw, json)
Hash identifier: Kwwb9JYyu26ihsB5FHtpMBxrf1eVtMxgOhI7B+uMmk0=
Subject key identifier: 7D:E3:4E:57:0A:1D:6A:22:77:E6:5F:46:EF:1D:55:E8:FF:FD:AB:FF
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 511F6B8C38D7CDBFBCE365B4B1D553B3DB101A0A
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a6666383a3a2f34382d3438203d3e20323134383231.roa
Signing time: Tue 08 Oct 2024 05:08:01 +0000
ROA not before: Tue 08 Oct 2024 05:03:01 +0000
ROA not after: Tue 07 Oct 2025 05:08:01 +0000
asID: 214821
IP address blocks: 2a14:7581:ff8::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:1f:6b:8c:38:d7:cd:bf:bc:e3:65:b4:b1:d5:53:b3:db:10:1a:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Oct 8 05:03:01 2024 GMT
Not After : Oct 7 05:08:01 2025 GMT
Subject: CN=7DE34E570A1D6A2277E65F46EF1D55E8FFFDABFF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:b8:22:8c:e7:a6:85:67:60:e6:9c:f1:37:c3:
d1:e2:4f:5e:ed:99:5e:26:cc:7e:5e:cb:17:4a:35:
7d:f7:ef:f1:45:0f:78:72:31:d0:5a:cf:82:cf:42:
6e:a1:df:20:f8:50:12:c2:7c:52:97:83:6f:16:60:
3a:94:e6:e7:a6:f8:ff:b8:c8:ad:1a:71:41:fd:64:
d0:cf:1c:b8:9a:38:b4:47:5d:12:09:a2:3c:b3:51:
9f:fc:4a:85:08:19:ca:53:a6:df:1e:73:fa:5e:7d:
9b:c9:15:5c:f3:1e:4e:3d:b4:75:cc:ea:b9:5e:80:
eb:31:65:41:91:37:ee:0c:37:44:f3:d3:02:fe:8a:
6d:87:03:3e:fe:55:90:a9:34:1a:68:4c:a5:23:06:
96:1e:55:04:25:44:e8:43:03:49:a3:bb:d0:6a:d9:
07:9d:79:09:93:9b:77:ce:78:d8:7b:0b:69:82:a6:
cc:02:48:e5:ac:3f:28:c1:f1:6f:85:b3:6f:cc:3a:
91:58:76:72:63:6e:c3:66:76:83:e5:8f:45:67:25:
cd:ac:22:59:c4:59:a7:62:43:77:c0:77:ab:a8:86:
4d:a4:1c:49:04:59:86:ec:91:04:9d:45:fe:6d:fa:
57:a8:a2:40:9e:8a:cd:f2:3a:c0:61:95:9e:37:b0:
3f:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:E3:4E:57:0A:1D:6A:22:77:E6:5F:46:EF:1D:55:E8:FF:FD:AB:FF
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a6666383a3a2f34382d3438203d3e20323134383231.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:ff8::/48
Signature Algorithm: sha256WithRSAEncryption
15:ff:5b:d6:f8:f2:af:03:a4:d8:a9:0b:e5:4e:76:d5:d8:1a:
1d:6b:23:d6:f2:d8:88:56:78:95:c7:ee:f4:d3:52:65:78:a7:
6d:cd:1f:04:8a:4f:6d:7d:c9:89:64:35:a4:37:44:e3:fb:f4:
1d:16:ab:fc:ea:74:ce:55:3e:16:14:09:70:ca:c5:1b:cd:14:
fb:a4:eb:56:c6:f0:68:39:4b:76:cf:b9:c1:cb:ad:b8:b8:0a:
b5:d2:d5:23:d1:70:e7:e9:1c:c9:ee:c1:dd:a6:82:8d:5c:f7:
85:34:ba:10:73:d0:cb:d5:0d:31:31:5d:94:59:5d:3e:ac:90:
fa:68:3d:e9:d0:27:4f:a6:9a:e8:58:c7:6a:7e:f5:9a:8a:9f:
5c:84:9c:b8:f4:8b:22:34:51:1b:a9:5f:50:48:26:9d:c2:eb:
70:1b:a0:0f:b1:ad:3b:34:9b:f7:a6:57:be:ad:7b:44:17:8b:
37:4f:50:7a:0e:38:42:bc:8c:66:a0:85:72:4f:db:2b:a7:d8:
d6:8f:87:20:67:79:da:c3:b9:10:c9:6d:91:6d:19:1d:37:8b:
4f:0f:3f:00:e2:c8:da:65:a9:ec:a7:fd:d9:9d:cb:c2:39:0e:
96:d1:b1:50:ad:07:6b:94:64:63:cd:88:85:f5:9b:62:f4:73:
4d:58:38:45
-----BEGIN CERTIFICATE-----
MIIFPjCCBCagAwIBAgIUUR9rjDjXzb+842W0sdVTs9sQGgowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYTgzZDQ4NjUyZjNiMmRmNzRmNmJmOWJhYThhOWMxNzRj
Y2ZkMzc3MjAeFw0yNDEwMDgwNTAzMDFaFw0yNTEwMDcwNTA4MDFaMDMxMTAvBgNV
BAMTKDdERTM0RTU3MEExRDZBMjI3N0U2NUY0NkVGMUQ1NUU4RkZGREFCRkYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZuCKM56aFZ2DmnPE3w9HiT17t
mV4mzH5eyxdKNX337/FFD3hyMdBaz4LPQm6h3yD4UBLCfFKXg28WYDqU5uem+P+4
yK0acUH9ZNDPHLiaOLRHXRIJojyzUZ/8SoUIGcpTpt8ec/pefZvJFVzzHk49tHXM
6rlegOsxZUGRN+4MN0Tz0wL+im2HAz7+VZCpNBpoTKUjBpYeVQQlROhDA0mju9Bq
2QedeQmTm3fOeNh7C2mCpswCSOWsPyjB8W+Fs2/MOpFYdnJjbsNmdoPlj0VnJc2s
IlnEWadiQ3fAd6uohk2kHEkEWYbskQSdRf5t+leookCeis3yOsBhlZ43sD99AgMB
AAGjggJIMIICRDAdBgNVHQ4EFgQUfeNOVwodaiJ35l9G7x1V6P/9q/8wHwYDVR0j
BBgwFoAUqD1IZS87LfdPa/m6qKnBdMz9N3IwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvODkyNzBmNmMtYTNmZS00Mjk5LWIwNzktMzA5ZWQ5N2Yz
ODI0LzAvQTgzRDQ4NjUyRjNCMkRGNzRGNkJGOUJBQThBOUMxNzRDQ0ZEMzc3Mi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3FEMUlaUzg3TGZkUGFfbTZxS25CZE16
OU4zSS5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvODkyNzBmNmMt
YTNmZS00Mjk5LWIwNzktMzA5ZWQ5N2YzODI0LzAvMzI2MTMxMzQzYTM3MzUzODMx
M2E2NjY2MzgzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzQzODMyMzEucm9h
MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8E
AgACMAkDBwAqFHWBD/gwDQYJKoZIhvcNAQELBQADggEBABX/W9b48q8DpNipC+VO
dtXYGh1rI9by2IhWeJXH7vTTUmV4p23NHwSKT219yYlkNaQ3ROP79B0Wq/zqdM5V
PhYUCXDKxRvNFPuk61bG8Gg5S3bPucHLrbi4CrXS1SPRcOfpHMnuwd2mgo1c94U0
uhBz0MvVDTExXZRZXT6skPpoPenQJ0+mmuhYx2p+9ZqKn1yEnLj0iyI0URupX1BI
Jp3C63AboA+xrTs0m/emV76te0QXizdPUHoOOEK8jGaghXJP2yun2NaPhyBnedrD
uRDJbZFtGR03i08PPwDiyNplqeyn/dmdy8I5DpbRsVCtB2uUZGPNiIX1m2L0c01Y
OEU=
-----END CERTIFICATE-----
Generated at Thu Nov 21 19:35:20 2024 by rpki-client on console-ams.rpki-client.org