Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1309bdce-70e3-46ae-8f05-0c3ada8f8a42/0/3139352e3139312e34392e302f32342d3234203d3e203539343332.roa
File: 3139352e3139312e34392e302f32342d3234203d3e203539343332.roa (raw, json)
Hash identifier: ANzfUvSqq6wAAaPrIcvZMUd2t6kg1nvjEfIS7C5iQTM=
Subject key identifier: A2:4E:6C:B6:1C:F3:48:EB:0C:59:47:FE:8F:97:62:AF:57:DC:C6:D0
Certificate issuer: /CN=ac428c8eed241857f73d0f3d483abecb240519d0
Certificate serial: 1A2106171894A3565CB798361C89B721DAC622F4
Authority key identifier: AC:42:8C:8E:ED:24:18:57:F7:3D:0F:3D:48:3A:BE:CB:24:05:19:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rEKMju0kGFf3PQ89SDq-yyQFGdA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1309bdce-70e3-46ae-8f05-0c3ada8f8a42/0/3139352e3139312e34392e302f32342d3234203d3e203539343332.roa
Signing time: Tue 11 Jun 2024 10:38:14 +0000
ROA not before: Tue 11 Jun 2024 10:33:14 +0000
ROA not after: Tue 10 Jun 2025 10:38:14 +0000
asID: 59432
IP address blocks: 195.191.49.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/1309bdce-70e3-46ae-8f05-0c3ada8f8a42/0/AC428C8EED241857F73D0F3D483ABECB240519D0.crl
rsync://rsync.paas.rpki.ripe.net/repository/1309bdce-70e3-46ae-8f05-0c3ada8f8a42/0/AC428C8EED241857F73D0F3D483ABECB240519D0.mft
rsync://rpki.ripe.net/repository/DEFAULT/rEKMju0kGFf3PQ89SDq-yyQFGdA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 20 Jun 2024 18:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:21:06:17:18:94:a3:56:5c:b7:98:36:1c:89:b7:21:da:c6:22:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac428c8eed241857f73d0f3d483abecb240519d0
Validity
Not Before: Jun 11 10:33:14 2024 GMT
Not After : Jun 10 10:38:14 2025 GMT
Subject: CN=A24E6CB61CF348EB0C5947FE8F9762AF57DCC6D0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:f3:f1:45:88:f7:4d:61:b0:96:c7:a2:63:2d:
56:7b:3e:df:d5:91:c6:a1:3e:98:08:93:d9:87:49:
8d:f4:13:a0:c2:21:2d:d4:1d:cd:17:41:27:47:1f:
5b:0d:95:81:65:fe:ab:b5:75:d4:03:10:af:ce:2d:
a8:d4:8e:5c:4d:88:6b:52:79:fd:1a:a5:6e:3f:8d:
1f:d0:24:70:68:ac:79:81:cb:ec:64:8b:de:c2:62:
3f:40:5c:1f:29:c7:fa:4e:fa:2a:4a:1b:a4:5a:c2:
0d:a5:50:b5:51:42:d9:27:7b:82:1b:9f:f9:a3:73:
32:72:4f:17:7d:e2:b2:2e:db:53:55:75:d6:5d:ed:
a6:07:2a:dc:d0:e4:ba:8e:a4:6c:a5:fc:bb:0c:88:
56:34:50:4b:de:a9:3c:3b:48:28:b3:f6:9c:a4:04:
b0:13:b6:fb:6a:f4:a1:99:f1:f5:fe:81:05:64:d3:
c0:fd:68:bd:df:d5:c0:c2:80:3a:b0:0e:20:7b:59:
e9:ba:a1:ee:28:8c:01:a2:e1:08:c1:9b:8c:15:1a:
c1:bd:20:7d:c8:de:91:f0:81:0f:21:d7:0c:31:2d:
0e:b0:cc:a4:97:5c:4b:75:24:61:da:e6:bb:21:84:
6b:ba:d3:8d:a6:fe:5c:be:b8:b7:b3:80:52:17:00:
65:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:4E:6C:B6:1C:F3:48:EB:0C:59:47:FE:8F:97:62:AF:57:DC:C6:D0
X509v3 Authority Key Identifier:
keyid:AC:42:8C:8E:ED:24:18:57:F7:3D:0F:3D:48:3A:BE:CB:24:05:19:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1309bdce-70e3-46ae-8f05-0c3ada8f8a42/0/AC428C8EED241857F73D0F3D483ABECB240519D0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rEKMju0kGFf3PQ89SDq-yyQFGdA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1309bdce-70e3-46ae-8f05-0c3ada8f8a42/0/3139352e3139312e34392e302f32342d3234203d3e203539343332.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.191.49.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:43:bc:43:c4:f2:39:ff:28:54:e9:3b:ad:d4:23:62:ea:53:
6a:5b:77:1c:a4:4e:7c:d5:4b:25:f2:4b:76:8c:ae:39:6b:45:
24:b7:46:45:d7:df:82:d4:ac:81:67:6d:eb:c3:53:3d:68:f1:
07:a7:bf:d8:fb:a1:56:77:a6:06:e1:84:e9:15:06:aa:0f:e6:
82:d1:88:40:11:bf:d5:99:21:92:07:e6:8a:00:67:ec:c6:52:
7d:a6:d6:c9:a9:2f:f5:65:0d:ea:0b:5b:7e:e3:b2:27:3e:e0:
82:75:88:f3:13:2c:17:8d:9c:9c:da:3c:83:83:c6:73:e8:0b:
25:82:c5:50:0c:87:c4:58:e0:f6:e7:b7:19:2c:84:c0:48:c6:
f6:42:87:66:64:eb:d8:2f:ef:0b:9a:25:2d:79:63:47:2a:bc:
7b:76:f3:b1:50:a7:c1:32:3f:a2:4c:b0:79:a9:28:9d:4b:58:
f4:b3:75:b3:fd:8a:96:4a:8f:32:39:8a:c4:65:3b:e5:63:a8:
0c:e4:d2:59:b8:9b:b6:68:9e:94:e8:0c:a5:a4:b7:a6:4e:f5:
c7:33:55:6b:94:c0:3c:e3:14:5a:7a:7c:bf:c7:8c:27:3e:22:
0f:b7:b9:c2:4a:fe:ff:c5:a2:30:8c:dd:23:ca:59:68:0d:c4:
5b:20:b9:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 19 23:17:37 2024 by rpki-client on console-ams.rpki-client.org