Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a84b548c-275a-476e-bfbe-540e73e62383/0/326130643a643734303a3a2f34382d3438203d3e20323130303336.roa
File: 326130643a643734303a3a2f34382d3438203d3e20323130303336.roa (raw, json)
Hash identifier: NVsaZ9iPKYZVXCBCRypoKEHoUemUiOWP8NUQFTgIeBk=
Subject key identifier: 7B:B8:7B:52:D5:53:3C:9F:32:CC:61:53:0B:4C:CD:CB:7E:48:08:C3
Certificate issuer: /CN=87d48146623246673056151f64abb8d1ee6b7727
Certificate serial: 02758088B5399FCAB35A9C86DA9E2B20242B12C6
Authority key identifier: 87:D4:81:46:62:32:46:67:30:56:15:1F:64:AB:B8:D1:EE:6B:77:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h9SBRmIyRmcwVhUfZKu40e5rdyc.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a84b548c-275a-476e-bfbe-540e73e62383/0/326130643a643734303a3a2f34382d3438203d3e20323130303336.roa
Signing time: Mon 15 Jan 2024 15:37:27 +0000
ROA not before: Mon 15 Jan 2024 15:32:27 +0000
ROA not after: Mon 13 Jan 2025 15:37:27 +0000
asID: 210036
IP address blocks: 2a0d:d740::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a84b548c-275a-476e-bfbe-540e73e62383/0/87D48146623246673056151F64ABB8D1EE6B7727.crl
rsync://rsync.paas.rpki.ripe.net/repository/a84b548c-275a-476e-bfbe-540e73e62383/0/87D48146623246673056151F64ABB8D1EE6B7727.mft
rsync://rpki.ripe.net/repository/DEFAULT/h9SBRmIyRmcwVhUfZKu40e5rdyc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 29 Jun 2024 08:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:75:80:88:b5:39:9f:ca:b3:5a:9c:86:da:9e:2b:20:24:2b:12:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87d48146623246673056151f64abb8d1ee6b7727
Validity
Not Before: Jan 15 15:32:27 2024 GMT
Not After : Jan 13 15:37:27 2025 GMT
Subject: CN=7BB87B52D5533C9F32CC61530B4CCDCB7E4808C3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:26:46:01:9b:32:c8:ce:57:04:00:37:5d:a5:
fc:a3:c9:9f:3a:61:7a:5a:31:51:c3:5c:17:1b:58:
b3:62:a7:5f:b9:0d:a3:e8:0b:22:e7:cb:ed:50:f1:
63:78:85:ac:62:81:d1:ce:b3:d9:f0:44:33:94:8f:
36:69:05:99:65:b8:bf:3e:1f:6b:0d:70:0e:b7:a6:
3a:8f:e1:eb:95:3b:0a:65:2f:d2:76:ae:15:29:18:
7f:12:19:32:99:14:8d:ae:cb:66:b8:7a:9d:ad:64:
51:8a:04:49:72:a4:8b:05:0a:ab:95:47:8a:a7:ca:
c6:71:35:2c:7e:79:3a:87:66:1a:79:51:12:ed:6f:
5f:21:44:99:7b:78:36:65:af:fd:63:80:9a:cf:fc:
0c:52:5e:c1:69:3a:93:62:9b:19:13:4d:91:e7:ed:
45:65:03:aa:60:7a:de:ab:bd:6c:6d:86:98:fc:bc:
ee:0a:c5:8c:99:86:83:d0:d6:c6:dc:86:6b:41:4f:
a5:6d:32:45:29:20:4e:06:22:3a:4f:96:aa:9c:fa:
d3:7c:36:6e:bc:b0:48:2f:2b:50:77:f3:a7:05:51:
a7:8e:e5:ea:bd:9b:da:52:33:0b:da:cb:fb:5b:f0:
44:8e:7e:43:40:4c:e9:41:a5:91:aa:b8:da:05:08:
a8:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:B8:7B:52:D5:53:3C:9F:32:CC:61:53:0B:4C:CD:CB:7E:48:08:C3
X509v3 Authority Key Identifier:
keyid:87:D4:81:46:62:32:46:67:30:56:15:1F:64:AB:B8:D1:EE:6B:77:27
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a84b548c-275a-476e-bfbe-540e73e62383/0/87D48146623246673056151F64ABB8D1EE6B7727.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h9SBRmIyRmcwVhUfZKu40e5rdyc.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a84b548c-275a-476e-bfbe-540e73e62383/0/326130643a643734303a3a2f34382d3438203d3e20323130303336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:d740::/48
Signature Algorithm: sha256WithRSAEncryption
46:72:15:4f:f4:d2:30:b7:60:6e:b7:96:ea:b1:0c:23:79:02:
79:e4:a9:48:25:07:bf:a1:8c:14:e7:13:f0:87:1e:22:60:c9:
9c:c2:6c:3b:6e:6d:27:5c:17:94:1c:a1:2e:6c:c8:77:59:92:
4c:55:00:66:71:54:84:fd:5a:cb:1c:da:a6:06:3a:e8:45:7f:
9b:00:a1:7e:80:ff:56:b6:f0:aa:9c:e9:93:96:90:e2:7f:22:
29:6d:40:80:0b:ed:a7:d1:bd:f8:36:c5:55:a1:ba:d8:8d:49:
1c:51:d5:b8:5d:98:79:d7:60:c5:e7:b6:43:99:9c:26:9e:3b:
37:f3:23:58:98:68:60:dc:6e:55:ca:40:83:24:f2:a5:40:d8:
aa:da:98:7d:9b:92:4e:5f:ef:d0:78:bd:15:22:67:50:eb:0c:
a7:fb:b6:d1:bf:af:77:43:62:cc:a2:db:e0:59:09:db:c0:5f:
80:80:64:4d:e2:0c:ee:14:52:17:e2:da:ad:22:4c:ef:7e:c0:
42:d8:d7:7b:54:d4:0b:c5:1d:55:ef:66:52:18:ea:b3:62:04:
e7:2e:93:5a:64:28:64:be:8a:97:25:d1:a9:21:d4:68:06:60:
16:e3:72:39:76:48:35:20:3a:1a:18:46:35:2a:02:b8:83:fa:
0b:28:d7:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 28 19:45:15 2024 by rpki-client on console-ams.rpki-client.org