Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/3134362e31392e3136372e302f32342d3234203d3e203633303233.roa
File: 3134362e31392e3136372e302f32342d3234203d3e203633303233.roa (raw, json)
Hash identifier: SKrkjxZx2b8LSY78gYObl+HkN0qgNOj213s7SBcBGU4=
Subject key identifier: 3A:EB:87:AC:E0:08:9B:C7:A6:17:72:BE:A1:FD:AF:2D:FC:91:CC:EC
Certificate issuer: /CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6
Certificate serial: 4FA6EA9C5280369C7D8C822AA22EA61E6DDA746C
Authority key identifier: A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/3134362e31392e3136372e302f32342d3234203d3e203633303233.roa
Signing time: Tue 12 Dec 2023 11:44:00 +0000
ROA not before: Tue 12 Dec 2023 11:39:00 +0000
ROA not after: Tue 10 Dec 2024 11:44:00 +0000
asID: 63023
IP address blocks: 146.19.167.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/A9420E6C6F24B0E422DA7FE7E420EF50354F45C6.crl
rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/A9420E6C6F24B0E422DA7FE7E420EF50354F45C6.mft
rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 07 May 2024 20:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:a6:ea:9c:52:80:36:9c:7d:8c:82:2a:a2:2e:a6:1e:6d:da:74:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6
Validity
Not Before: Dec 12 11:39:00 2023 GMT
Not After : Dec 10 11:44:00 2024 GMT
Subject: CN=3AEB87ACE0089BC7A61772BEA1FDAF2DFC91CCEC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:69:9f:e2:92:99:22:37:34:83:1e:67:b5:d0:
ab:b4:38:57:be:fe:4a:4b:7c:4f:f0:b7:5a:2b:c2:
99:b5:e3:08:06:19:40:aa:f0:d4:7b:27:ec:45:58:
e9:ef:0a:63:ed:80:cc:d7:27:5f:d3:b3:a2:e4:e7:
dc:83:4f:60:8a:8f:09:0a:cb:70:e8:b9:7b:54:2d:
24:bb:d5:6e:bd:0e:fd:8d:23:63:6a:d7:45:05:ed:
8f:b8:d4:93:4d:62:76:02:54:3b:51:5d:7f:8c:b6:
a7:6a:83:af:a1:6c:08:2f:49:f3:2f:cd:e4:c1:2a:
39:90:61:dc:28:80:7d:6c:7c:29:a1:1c:d2:a8:d3:
93:86:e6:cc:67:77:b4:ec:19:a2:80:17:f8:8a:75:
22:84:20:4c:ca:d3:fc:54:0b:ab:08:28:52:d7:0a:
58:41:78:e3:67:1e:49:d1:db:83:92:77:36:e9:ed:
b2:ac:31:03:6b:94:c7:fe:63:31:40:00:88:64:7c:
f2:ea:e6:84:22:81:c8:1a:65:2a:c6:35:60:fd:1c:
58:68:d5:85:70:5e:72:1a:e5:cb:97:33:2c:b7:4b:
3c:c8:82:b2:1b:58:51:b7:d0:a6:66:2e:cd:d0:03:
7e:cd:14:16:cf:d9:ab:2c:0c:ba:7a:7e:7e:10:7a:
ff:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:EB:87:AC:E0:08:9B:C7:A6:17:72:BE:A1:FD:AF:2D:FC:91:CC:EC
X509v3 Authority Key Identifier:
keyid:A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/A9420E6C6F24B0E422DA7FE7E420EF50354F45C6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/3134362e31392e3136372e302f32342d3234203d3e203633303233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.167.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:4e:95:2b:59:20:27:a5:f4:cd:f3:00:85:3a:db:df:9c:5d:
e7:15:21:ad:1a:b1:68:3a:ff:5b:26:6b:ad:29:01:c7:1a:df:
d9:ad:a9:f5:33:13:c4:00:b6:03:1c:dc:d6:a2:44:9c:c0:6d:
6c:58:03:ad:ab:df:c5:c9:61:c3:a9:ba:b7:7d:65:26:94:fa:
3a:b5:3c:ff:65:6a:72:e1:d1:91:e5:50:d7:27:ee:af:f2:a1:
7a:1e:cf:75:e1:be:ee:e6:43:fb:f8:65:94:25:8e:da:f0:d3:
fa:68:bb:5d:33:a6:a7:0e:c3:03:05:b2:d1:c4:41:61:94:c1:
ae:3e:0c:9e:6e:ed:de:59:f1:a4:3a:75:20:95:6f:c5:d6:a2:
5b:22:3f:2b:27:66:5c:db:62:dd:56:2b:26:54:e1:20:0b:55:
ac:bc:96:21:fd:92:6c:dc:7d:2b:c4:80:d7:8d:9e:8c:0b:ad:
67:ab:05:db:68:82:8a:0c:70:51:70:a0:6f:b9:31:45:4d:cb:
e9:7d:07:e9:ff:1a:9a:ff:47:9b:1c:cb:69:99:8a:81:8d:17:
15:4d:d7:14:a1:5f:f5:8c:eb:48:4d:4f:72:46:27:5c:41:ce:
f0:c5:11:a5:c4:18:00:45:df:fe:4c:be:ec:e4:3c:a1:c3:72:
e2:b1:ed:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 00:09:11 2024 by rpki-client on console-ams.rpki-client.org