Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/3134362e31392e3231352e302f32342d3234203d3e20323036323136.roa
File: 3134362e31392e3231352e302f32342d3234203d3e20323036323136.roa (raw, json)
Hash identifier: l2gMnR6HL/hs1piFpgFvep7ZBGV1nmQ3FVGcT/Sln9A=
Subject key identifier: 1B:0C:91:17:A8:75:21:54:DA:14:1E:5B:5A:BE:5F:BF:80:1B:9C:A9
Certificate issuer: /CN=cefce449bea8deaedb1804dba25c584df5873dc4
Certificate serial: 0B15C0F0DCCFFB675975789B1A5994CBEE6D5D1A
Authority key identifier: CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/3134362e31392e3231352e302f32342d3234203d3e20323036323136.roa
Signing time: Wed 21 Feb 2024 20:05:13 +0000
ROA not before: Wed 21 Feb 2024 20:00:13 +0000
ROA not after: Wed 19 Feb 2025 20:05:13 +0000
asID: 206216
IP address blocks: 146.19.215.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.crl
rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.mft
rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 10:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:15:c0:f0:dc:cf:fb:67:59:75:78:9b:1a:59:94:cb:ee:6d:5d:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cefce449bea8deaedb1804dba25c584df5873dc4
Validity
Not Before: Feb 21 20:00:13 2024 GMT
Not After : Feb 19 20:05:13 2025 GMT
Subject: CN=1B0C9117A8752154DA141E5B5ABE5FBF801B9CA9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:ee:75:be:cb:fb:d6:da:d0:f0:38:22:e5:ae:
05:3b:6c:a8:07:83:91:29:09:7a:13:41:0e:a1:fb:
d7:7e:61:a9:17:4f:8e:21:a2:68:8c:88:35:f1:f2:
78:d4:0a:ec:e3:a3:26:da:cd:60:08:aa:e0:df:1f:
a6:0d:5e:a1:60:e1:30:cb:db:f3:ad:9a:bb:c5:de:
e8:c5:22:4d:75:6f:ad:56:84:43:e4:36:94:b0:ce:
4d:45:1f:1a:4f:0c:98:4b:48:a0:7b:1b:0e:23:bc:
4e:15:96:73:11:21:d0:f5:91:71:c7:79:2d:6d:f9:
b8:ff:ac:88:06:3e:58:93:68:93:78:f9:59:c6:5e:
e7:ef:9b:3b:95:d5:89:2c:aa:bb:b6:1e:71:90:e0:
6b:f3:a4:3b:f7:5c:82:90:c0:0d:be:85:23:1c:5e:
c1:10:35:14:ee:63:b4:ec:cb:e6:c5:f6:28:7a:2d:
54:cc:3e:d9:61:2e:27:58:9d:40:7f:89:f7:77:8e:
27:fd:f8:ab:32:cd:be:3d:7d:a6:ee:18:1a:43:96:
43:e7:6f:72:5b:40:7c:8a:b5:b4:45:06:f3:93:39:
73:38:ae:7b:bf:18:d7:ad:2c:34:b9:cc:c2:c4:54:
2d:7d:ee:51:ef:79:c8:52:07:d3:3d:d0:40:51:c9:
c2:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:0C:91:17:A8:75:21:54:DA:14:1E:5B:5A:BE:5F:BF:80:1B:9C:A9
X509v3 Authority Key Identifier:
keyid:CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/3134362e31392e3231352e302f32342d3234203d3e20323036323136.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.215.0/24
Signature Algorithm: sha256WithRSAEncryption
59:b8:53:ee:fc:92:fe:56:b9:e7:d7:11:04:39:c8:70:a8:29:
f9:1d:d8:44:28:e0:a9:57:6f:e7:12:14:eb:a7:13:d5:fa:4f:
ac:50:e9:34:b8:5f:8e:24:13:d7:1c:f6:66:5d:39:7a:77:85:
f2:0a:d2:9e:77:7e:5a:90:a1:93:e0:19:df:a8:18:32:4e:0f:
d7:4f:4b:a8:19:00:43:d7:4d:71:21:22:45:ac:7b:76:5a:c8:
f5:78:75:11:07:90:a5:ea:30:a8:dc:40:cb:99:2c:cf:8d:3c:
96:3d:0e:7c:08:86:96:54:a3:ad:4d:c6:3e:9b:5f:b9:de:c7:
14:70:22:e9:00:8c:da:52:5f:7e:bb:61:6c:b1:a7:b5:d0:80:
ed:e8:af:57:9e:ca:91:20:d2:b7:83:d4:61:2e:fb:86:53:65:
89:73:c5:1a:7f:39:73:6e:70:b5:92:85:7d:28:cd:cd:e9:04:
a3:83:b9:d6:e4:7e:1c:03:ca:05:ee:7b:b3:c4:25:c1:c6:59:
c0:d3:b3:06:9c:0b:06:89:f9:c9:77:40:d3:41:b2:fd:37:2a:
3a:97:a7:ad:a8:d4:64:6f:34:92:d1:3b:67:ad:82:8a:80:5f:
11:df:f6:f9:29:57:a0:21:78:3b:9c:7e:7a:2e:5c:ec:ef:ba:
a0:a3:df:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 13:56:00 2024 by rpki-client on console-fra.rpki-client.org