Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/3139342e35302e3232332e302f32342d3234203d3e203631333137.roa
File: 3139342e35302e3232332e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: BhoXTTRwLlTLGdKIVYjq6W/OpHQiczDSKGyJLyFNDnk=
Subject key identifier: 4D:A5:F6:37:1C:19:63:57:66:70:40:DB:86:DA:73:8B:86:47:E5:55
Certificate issuer: /CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Certificate serial: 671D8ACED12823FCD81807F626B63C9F8E140A1B
Authority key identifier: 62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/3139342e35302e3232332e302f32342d3234203d3e203631333137.roa
Signing time: Wed 20 Dec 2023 07:05:08 +0000
ROA not before: Wed 20 Dec 2023 07:00:08 +0000
ROA not after: Wed 18 Dec 2024 07:05:08 +0000
asID: 61317
IP address blocks: 194.50.223.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.mft
rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:1d:8a:ce:d1:28:23:fc:d8:18:07:f6:26:b6:3c:9f:8e:14:0a:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Validity
Not Before: Dec 20 07:00:08 2023 GMT
Not After : Dec 18 07:05:08 2024 GMT
Subject: CN=4DA5F6371C196357667040DB86DA738B8647E555
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:ed:20:e0:a8:18:e5:8b:fa:4c:f9:39:ad:64:
11:0d:38:ef:70:f8:9d:bc:11:e4:81:02:2f:b4:f4:
a9:f4:ea:63:a9:fd:de:44:c8:b0:a3:9d:f0:4b:40:
55:b4:0c:89:4d:4c:23:88:2d:67:8a:c2:bf:00:36:
42:0e:88:04:38:87:01:d0:e2:35:ad:e8:a2:84:64:
f4:58:b1:a1:ef:1b:ac:06:0a:8c:ea:f2:54:41:98:
d1:ca:61:ec:8c:04:84:0c:21:7c:2c:6e:b7:32:ce:
b4:84:6f:79:73:e2:a2:9f:25:e6:6d:f0:b1:cf:bb:
88:de:06:7f:fc:e0:5f:bb:56:cb:1f:20:78:57:c5:
97:8d:83:f4:1f:92:e1:ec:bf:21:e4:83:a1:69:f2:
26:13:e7:0c:3c:e5:3e:ad:11:15:88:03:42:8d:ca:
3c:e5:ef:99:09:96:5c:2e:a4:69:15:c1:ac:4b:10:
67:24:81:f8:ae:63:6c:3a:77:51:1a:1c:9f:be:fb:
4c:e0:5d:d9:c5:ce:64:5f:98:d0:d0:92:0b:3f:9f:
30:d7:fb:38:56:6f:87:95:40:95:c9:93:bd:b8:3b:
91:3d:6a:73:81:0d:96:52:2a:2a:e7:f7:28:05:9b:
e4:2f:9a:f8:60:1c:ff:79:8a:8f:2e:00:f4:c3:e5:
b2:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:A5:F6:37:1C:19:63:57:66:70:40:DB:86:DA:73:8B:86:47:E5:55
X509v3 Authority Key Identifier:
keyid:62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/3139342e35302e3232332e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.223.0/24
Signature Algorithm: sha256WithRSAEncryption
58:c3:a1:f9:d8:26:ca:b9:4e:74:6d:9b:cd:24:86:eb:cf:c3:
8d:95:2d:7f:e2:b6:8d:11:3b:3c:8f:88:f0:9d:d2:ce:e7:89:
4f:ae:ab:82:57:5b:62:4b:ce:64:af:11:da:10:90:0c:43:ed:
a4:d8:9d:0f:6b:18:9a:6d:6e:68:31:bd:86:f2:a5:8d:e1:94:
38:4e:6a:56:61:ec:c0:1a:fc:21:b5:88:f1:fe:1d:f4:db:c1:
d4:76:60:77:83:fa:a2:48:47:62:12:fe:e1:76:e1:ad:c6:db:
df:3c:66:0e:6d:ea:fb:82:0b:26:b0:e6:92:5c:07:d2:00:9e:
e7:f2:3d:48:2d:cc:2c:a7:10:88:42:fa:57:23:83:48:5e:fd:
f8:1b:bf:1a:68:65:7e:89:46:bd:bb:e9:6b:ea:3d:d4:51:43:
7d:05:93:6e:f2:31:f4:4d:d1:60:a8:18:a1:e3:7d:6d:77:15:
00:5d:1b:b8:19:c8:8b:f0:e0:75:95:f3:58:11:16:99:96:7a:
51:15:64:9b:90:62:ae:87:9f:9f:de:c8:80:cb:99:65:48:0a:
42:09:c8:31:66:36:11:03:15:2f:09:6c:46:b9:2c:e3:e1:c5:
bd:d4:6b:c4:07:5d:93:c0:95:e1:f9:93:a4:bb:d2:77:6e:e6:
1a:dd:df:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 10:14:34 2024 by rpki-client on console-ams.rpki-client.org