Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/33312e362e31362e302f32342d3234203d3e20323135373634.roa
File: 33312e362e31362e302f32342d3234203d3e20323135373634.roa (raw, json)
Hash identifier: 2mPip4/KLPs+rvS86gmYp3L6KprN0Vh+i4uZXXjojoA=
Subject key identifier: 96:EA:ED:20:36:61:42:E2:3D:B3:3C:31:23:BB:B4:D3:61:A2:5A:5A
Certificate issuer: /CN=048af665bf8b186b70220759d26c578f40b5f3e3
Certificate serial: 054F9B5AC4017940DBEE2B4EF06508703BBD33A4
Authority key identifier: 04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/33312e362e31362e302f32342d3234203d3e20323135373634.roa
Signing time: Sun 07 Jan 2024 13:25:28 +0000
ROA not before: Sun 07 Jan 2024 13:20:28 +0000
ROA not after: Sun 05 Jan 2025 13:25:28 +0000
asID: 215764
IP address blocks: 31.6.16.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.mft
rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Jun 2024 08:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:4f:9b:5a:c4:01:79:40:db:ee:2b:4e:f0:65:08:70:3b:bd:33:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048af665bf8b186b70220759d26c578f40b5f3e3
Validity
Not Before: Jan 7 13:20:28 2024 GMT
Not After : Jan 5 13:25:28 2025 GMT
Subject: CN=96EAED20366142E23DB33C3123BBB4D361A25A5A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:94:2b:bb:26:6b:72:2a:52:85:fa:89:d5:53:
93:33:38:82:26:34:1a:16:02:68:ae:ac:b5:f0:f0:
93:0a:95:76:d1:3f:6f:bf:75:43:bc:9f:4c:e6:39:
b2:e7:d8:c5:47:a6:a7:c9:30:85:13:a4:5d:fc:b7:
7e:58:a5:d6:61:74:9e:19:b5:a1:8b:6a:12:28:63:
ec:bf:b0:24:6f:69:22:73:d3:eb:97:ad:8d:05:ec:
f5:02:49:41:c4:df:a7:91:60:18:0e:35:d7:17:6b:
00:a4:f7:a6:16:f3:cf:2c:9f:1e:05:19:a6:3f:70:
83:17:f2:90:be:2e:e1:06:2f:c1:e1:9c:31:be:10:
87:f0:10:66:5a:17:27:e6:95:87:2e:fd:db:ee:9a:
97:70:cf:d9:35:13:55:a5:3b:f4:24:fb:2e:54:a1:
7e:4a:0a:06:fe:a5:9c:db:5e:99:30:56:96:ed:ba:
0f:e8:b3:ce:98:ff:6e:a3:5a:96:9e:59:78:0a:70:
bd:40:84:ec:9b:01:c6:23:78:a5:93:65:a0:ea:f6:
6f:d0:13:6b:cf:86:5d:05:26:92:39:33:a4:c6:df:
b1:d5:f4:d8:55:5c:dc:d5:e9:91:f3:9e:b5:d8:77:
18:f3:a5:97:80:dc:bd:f4:ca:c4:a0:ee:9c:02:75:
f1:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:EA:ED:20:36:61:42:E2:3D:B3:3C:31:23:BB:B4:D3:61:A2:5A:5A
X509v3 Authority Key Identifier:
keyid:04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/33312e362e31362e302f32342d3234203d3e20323135373634.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.6.16.0/24
Signature Algorithm: sha256WithRSAEncryption
80:0b:be:f3:0e:27:34:2a:22:0e:e9:ad:29:06:24:37:ec:ab:
39:bb:c5:b3:a9:dc:3e:23:e3:b2:2b:9e:15:01:14:63:a4:0e:
2b:55:be:70:47:6c:f4:64:fe:84:b4:39:81:bc:49:30:94:6c:
98:ba:24:08:0f:86:39:55:60:61:eb:55:1f:b8:f6:45:dd:dc:
86:11:0d:81:1d:8f:14:a9:2a:e2:1c:29:46:91:bd:fe:22:db:
0e:ee:c5:f3:e2:0e:58:ea:17:e6:8c:84:13:70:41:07:35:70:
92:b6:ea:b3:67:44:be:cb:4a:d3:97:74:a3:33:c7:bc:aa:d8:
78:db:a5:c7:7c:43:b0:13:c1:c2:96:cf:32:8c:c3:ab:bb:b2:
9f:95:aa:64:d6:23:e3:ee:6c:ea:63:1b:cb:be:8f:32:71:27:
93:3c:6f:13:25:c7:66:0e:6f:fe:86:fe:fa:82:86:64:7c:ab:
ff:8c:3b:63:9b:50:72:2f:2c:36:61:5b:02:84:a8:36:72:7b:
f5:bf:ca:20:10:0c:aa:87:aa:f6:c9:82:3b:1c:29:cb:4d:fe:
3e:fc:88:4c:ee:0b:69:81:ea:2e:97:2f:5e:7a:5d:91:45:f7:
30:61:f2:74:af:cd:30:ba:a7:7c:3b:e5:0f:aa:62:65:28:db:
ad:57:c6:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 17:58:22 2024 by rpki-client on console-ams.rpki-client.org