Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538333a3a2f33322d3438203d3e203231373338.roa
File: 326131343a373538333a3a2f33322d3438203d3e203231373338.roa (raw, json)
Hash identifier: CSNWoj+ozcORZSDuA/E9OcxBxvr2gwZn0ZBI3I4UvHE=
Subject key identifier: 34:AC:B5:E6:AD:49:BD:8A:10:17:51:56:2F:53:6A:06:1E:FA:66:CC
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 6142CB9C0C14E6249F3D561DB406E2AEBB148E95
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538333a3a2f33322d3438203d3e203231373338.roa
Signing time: Wed 10 Apr 2024 07:07:45 +0000
ROA not before: Wed 10 Apr 2024 07:02:45 +0000
ROA not after: Wed 09 Apr 2025 07:07:45 +0000
asID: 21738
IP address blocks: 2a14:7583::/32 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 13 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:42:cb:9c:0c:14:e6:24:9f:3d:56:1d:b4:06:e2:ae:bb:14:8e:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Apr 10 07:02:45 2024 GMT
Not After : Apr 9 07:07:45 2025 GMT
Subject: CN=34ACB5E6AD49BD8A101751562F536A061EFA66CC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:20:97:d4:69:d7:c9:01:6b:85:06:c8:99:8c:
72:d0:81:f8:22:3e:42:2b:36:2d:f1:ad:69:8f:53:
df:d4:f1:96:17:84:1e:b5:10:25:09:db:c9:52:2b:
2c:c9:dd:aa:78:66:17:9a:61:3f:0d:2b:8a:08:16:
f6:e7:68:0d:e3:45:9a:37:ae:de:15:9b:fa:1c:78:
11:67:4c:6b:a8:cd:a3:a1:85:06:b7:07:bc:5f:7c:
7d:15:fa:5f:ca:fb:95:a7:74:77:dc:e8:9b:ce:ee:
d2:64:bc:6f:29:6f:77:d1:fd:df:5d:1b:dc:0f:3a:
42:ad:cd:12:0c:fc:ef:d1:a1:af:c6:67:f1:62:da:
b4:52:ec:8b:7b:33:dc:92:f2:01:4a:a3:25:95:89:
e0:c8:5f:bf:a3:63:bf:be:86:0a:98:27:96:b2:22:
5c:50:7c:c9:08:d0:35:46:3e:72:e3:43:7d:3a:06:
bc:43:5c:d1:61:f1:92:e1:4e:9b:a7:9b:60:8d:df:
92:89:83:b8:f9:76:4e:a3:2e:70:1c:6b:04:6b:c4:
c3:f2:b6:42:3b:8c:42:67:f6:96:2f:39:61:04:23:
cd:89:95:89:65:7e:f6:af:72:f8:94:bd:a7:27:cf:
3a:1e:7c:8d:b4:46:66:f9:e9:b8:49:96:05:cf:0f:
89:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:AC:B5:E6:AD:49:BD:8A:10:17:51:56:2F:53:6A:06:1E:FA:66:CC
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538333a3a2f33322d3438203d3e203231373338.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7583::/32
Signature Algorithm: sha256WithRSAEncryption
87:60:db:15:a3:30:ab:a5:47:85:87:cb:d8:9e:9f:67:db:a2:
2a:c0:de:57:92:a6:6d:72:35:88:6f:39:fa:d1:1c:54:26:16:
75:8e:38:7f:ba:19:7f:35:9e:24:3c:54:42:a9:ef:bb:57:1a:
9d:fa:b1:c7:95:f0:a9:da:2c:12:a1:45:8d:a0:d1:d9:9c:f3:
9c:cb:47:08:d7:d6:c5:80:1a:d9:90:76:07:b4:4c:a4:59:a1:
16:1c:f7:62:26:40:b9:c7:6a:32:2e:93:d1:fe:4e:ed:5d:7b:
07:f5:ad:3d:27:01:b7:a0:ee:1c:67:5f:ca:56:ae:74:0a:a1:
c9:af:e2:80:1b:0b:f6:e0:e1:d7:58:26:cf:8a:5e:ae:ca:a3:
44:87:41:92:37:a6:6c:af:95:5f:1e:02:87:87:c6:7f:26:54:
96:ef:29:f9:3b:9d:b9:3a:50:96:ce:26:77:12:63:16:af:78:
cf:cc:cd:0c:c3:c3:ff:73:9e:4b:d3:88:8d:8e:13:55:9f:bd:
be:54:09:51:81:fb:1a:a9:97:b4:e8:5c:c6:63:e5:47:48:18:
74:88:82:39:63:6d:c4:cb:87:68:27:17:a0:f6:e0:76:63:67:
4b:ff:7e:c8:38:48:f4:1f:48:fd:10:ff:e5:99:d5:e8:cd:3e:
cb:60:32:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 12 19:19:28 2024 by rpki-client on console-ams.rpki-client.org