Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538343a3a2f33322d3438203d3e20333939363436.roa
File: 326131343a373538343a3a2f33322d3438203d3e20333939363436.roa (raw, json)
Hash identifier: 5EmpSZ765RB8hW3xzFwNg9lYRMg/Z7Nl/VNuceVutog=
Subject key identifier: 22:BC:FD:4C:65:D8:D5:55:E1:4C:71:22:C3:DC:C3:55:DC:21:CB:59
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 2B3A8597AD7DD4D49931EE30576A9856B64BF6C9
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538343a3a2f33322d3438203d3e20333939363436.roa
Signing time: Wed 15 May 2024 02:30:29 +0000
ROA not before: Wed 15 May 2024 02:25:29 +0000
ROA not after: Wed 14 May 2025 02:30:29 +0000
asID: 399646
IP address blocks: 2a14:7584::/32 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 07 Jun 2024 20:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:3a:85:97:ad:7d:d4:d4:99:31:ee:30:57:6a:98:56:b6:4b:f6:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: May 15 02:25:29 2024 GMT
Not After : May 14 02:30:29 2025 GMT
Subject: CN=22BCFD4C65D8D555E14C7122C3DCC355DC21CB59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:58:6e:f7:80:d7:20:ef:32:d4:c5:7f:77:3c:
9a:fc:ce:3d:35:5b:5e:15:b8:6f:2b:74:e6:9a:ac:
7f:f2:d2:7d:a6:61:87:fd:b4:2e:b7:ba:37:bd:7e:
65:85:a0:ae:fd:65:a4:df:05:a7:75:f4:57:cd:80:
0a:3d:f1:7e:5f:dd:0d:9a:87:bc:c4:0a:00:e9:a6:
52:b8:ca:c6:e7:12:72:46:d6:c7:19:ff:10:ac:d7:
d0:5d:fe:9b:3e:e4:79:8b:3a:3f:04:18:f7:a3:95:
ae:7a:78:34:ef:1a:b0:13:25:40:4a:1a:f8:ae:d7:
83:14:5f:d4:1e:9a:40:b4:11:d9:e9:32:58:64:02:
19:1d:3a:5f:32:f3:52:ce:d9:90:86:7f:db:63:c1:
9d:12:6e:2a:47:98:be:29:88:91:e6:bc:d9:a1:25:
f9:b4:4a:62:2a:33:6a:ff:59:43:1e:91:a1:63:e7:
28:4d:3d:fd:a9:5f:8e:b8:00:5e:74:b9:24:40:79:
62:73:5b:ca:6f:a6:9d:af:fd:6e:4b:d2:f8:0e:e1:
9a:a1:3b:0c:a5:87:7f:3c:14:02:55:52:d0:a5:b1:
c5:6e:57:eb:9e:2a:b0:11:02:a0:ba:ab:83:6f:a7:
b9:73:f6:2f:30:9f:9f:97:9e:b4:e5:37:d0:87:20:
ac:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:BC:FD:4C:65:D8:D5:55:E1:4C:71:22:C3:DC:C3:55:DC:21:CB:59
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538343a3a2f33322d3438203d3e20333939363436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7584::/32
Signature Algorithm: sha256WithRSAEncryption
3f:1b:9e:bb:f4:c6:2d:15:f9:14:8d:ac:4c:91:38:c7:99:63:
f1:12:f9:97:e1:be:1d:0a:e0:3b:a4:ad:3b:a0:80:8f:27:d4:
61:08:16:cc:d2:b0:53:56:07:8b:fc:d4:f7:37:d1:37:43:c9:
2e:c7:fd:b9:7d:a9:d1:08:5d:0d:d6:d7:2b:7a:ca:4f:dc:dd:
c0:12:df:c8:47:54:5c:56:da:4e:0c:77:6c:e4:1a:27:6f:92:
e4:30:8f:eb:bd:d2:20:a8:78:da:66:07:e1:92:6b:5d:16:c5:
6d:77:b6:48:80:ad:b3:d0:c6:9f:bc:4e:3c:d8:20:e9:63:aa:
f0:7d:ff:ae:db:84:b1:c4:e2:91:80:bb:b8:bc:b5:d7:9b:79:
67:38:af:ae:78:8d:3f:b2:74:06:8c:7d:99:61:6e:04:9e:e4:
5b:fa:02:d1:9c:1a:a8:90:4e:e2:0f:11:04:8b:98:6a:a6:f4:
46:ed:21:bf:5a:94:30:4b:8d:91:57:0a:8a:d2:fa:76:77:ab:
b4:be:02:9d:9f:7c:65:31:56:ca:57:cd:9f:7e:44:ba:23:3e:
d7:1b:ad:85:78:34:17:6a:a4:75:fd:b0:ad:53:2e:66:29:0a:
82:72:fc:27:1e:2e:c5:4d:f9:f9:09:c6:90:dd:a9:81:21:91:
f3:b3:b4:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 04:03:51 2024 by rpki-client on console-ams.rpki-client.org