Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/39342e3132362e3233322e302f32342d3234203d3e203438303730.roa
File: 39342e3132362e3233322e302f32342d3234203d3e203438303730.roa (raw, json)
Hash identifier: l8eIo2FlZo6EznHW8IuYhJrABmMBLcvWRcSIOHvjUNE=
Subject key identifier: 06:A0:5C:35:F2:76:22:A6:8C:AA:BC:2E:79:21:0B:E3:1A:9A:38:1C
Certificate issuer: /CN=98a87cad5b710890a9528f166f4202393824e6b8
Certificate serial: 32275BDEF4B5C949D53398169FC6BF07A2D6A79E
Authority key identifier: 98:A8:7C:AD:5B:71:08:90:A9:52:8F:16:6F:42:02:39:38:24:E6:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mKh8rVtxCJCpUo8Wb0ICOTgk5rg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/39342e3132362e3233322e302f32342d3234203d3e203438303730.roa
Signing time: Tue 25 Jul 2023 15:01:20 +0000
ROA not before: Tue 25 Jul 2023 14:56:20 +0000
ROA not after: Tue 23 Jul 2024 15:01:20 +0000
asID: 48070
IP address blocks: 94.126.232.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.crl
rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.mft
rsync://rpki.ripe.net/repository/DEFAULT/mKh8rVtxCJCpUo8Wb0ICOTgk5rg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 22 Jun 2024 00:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:27:5b:de:f4:b5:c9:49:d5:33:98:16:9f:c6:bf:07:a2:d6:a7:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98a87cad5b710890a9528f166f4202393824e6b8
Validity
Not Before: Jul 25 14:56:20 2023 GMT
Not After : Jul 23 15:01:20 2024 GMT
Subject: CN=06A05C35F27622A68CAABC2E79210BE31A9A381C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:86:7f:99:dc:7b:65:81:bf:1f:2d:1f:a0:14:
6c:2e:de:e4:c1:40:5f:57:5b:80:3b:e5:04:a0:a0:
e6:75:6b:33:d7:49:f4:84:cd:05:ca:87:2f:29:e8:
2a:87:b5:c8:72:c1:d3:4a:8b:15:27:ea:07:8b:b4:
c3:a9:e3:b4:9d:e8:42:de:70:ea:d0:25:9f:a2:5c:
58:2f:3d:cc:7d:c6:f6:cf:53:bb:73:ce:b5:e7:1b:
7c:72:6d:57:08:60:1c:6b:59:d5:6c:78:1b:f0:d0:
f6:6c:7f:21:d3:6b:31:4e:8a:31:fc:79:a1:d5:dd:
63:d3:02:5e:3d:83:85:ba:fd:30:7f:36:c8:f7:43:
42:e1:ce:24:9d:bd:1c:a0:43:f6:a7:f8:75:c8:2f:
80:8e:9c:bf:42:9c:d5:c5:b3:9d:38:ad:12:97:15:
80:48:38:1a:cd:83:e1:fa:cf:e4:95:b4:58:b1:c5:
e9:bc:9c:1a:43:3e:40:49:eb:5f:73:31:41:56:21:
bc:37:3d:f0:c3:1c:51:a8:a9:62:0f:87:12:c9:2d:
8a:e2:07:4b:04:de:d2:ea:ee:44:50:33:51:c8:51:
e2:b2:4c:61:6c:a2:66:f1:34:5e:3a:f4:c7:8a:cc:
40:37:c9:15:df:0e:f6:07:fd:b4:b6:f2:08:93:8d:
d3:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:A0:5C:35:F2:76:22:A6:8C:AA:BC:2E:79:21:0B:E3:1A:9A:38:1C
X509v3 Authority Key Identifier:
keyid:98:A8:7C:AD:5B:71:08:90:A9:52:8F:16:6F:42:02:39:38:24:E6:B8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mKh8rVtxCJCpUo8Wb0ICOTgk5rg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/39342e3132362e3233322e302f32342d3234203d3e203438303730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.126.232.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:82:3c:90:d4:8d:70:9f:2e:48:71:b6:b5:d7:a5:a6:28:a3:
26:1f:ad:a1:34:11:be:55:28:e5:5f:19:57:21:1e:aa:7a:2f:
fb:a2:e7:ec:aa:9c:6c:f9:85:7e:fb:bd:f7:f9:80:48:23:8c:
26:e1:02:6b:6f:57:be:13:e5:e6:90:e5:63:2c:c6:62:c5:f2:
52:53:cc:c3:50:b6:68:88:25:7b:76:c1:b2:67:67:a6:10:57:
f4:70:4b:0e:e8:c0:2f:be:fa:04:c4:eb:65:f7:97:1a:64:e0:
b1:24:03:f8:84:c7:b4:ba:50:b0:2b:89:8b:82:03:71:44:4a:
da:7e:a3:ad:b3:fd:7f:87:b2:71:fd:d9:f6:9a:c6:b5:ae:ec:
fe:33:8e:3e:99:ee:31:04:c2:18:0b:39:be:9e:97:d4:b7:18:
a5:4d:0f:25:21:f0:80:d2:ef:39:a0:f5:1e:bb:53:ce:bf:e8:
68:83:53:56:a3:16:1c:90:a2:03:52:23:5f:fe:83:db:88:3d:
09:57:5e:2b:28:9c:b6:b9:00:5b:a0:42:b2:3a:c7:0b:5b:4f:
e4:b6:14:bc:8a:4d:5f:a9:3f:17:94:13:d9:46:a7:43:72:6c:
6c:af:3c:92:f5:82:83:b1:fd:b8:b2:82:4d:15:18:f1:c7:cf:
8f:0c:3f:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 21 11:19:00 2024 by rpki-client on console-ams.rpki-client.org