Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/39342e3132362e3233332e302f32342d3234203d3e203438303730.roa
File: 39342e3132362e3233332e302f32342d3234203d3e203438303730.roa (raw, json)
Hash identifier: g6c4KgstvUlegppZUO6REhKz/gSTpIqu21IqhG4nk14=
Subject key identifier: C6:00:3F:E7:C4:F8:B7:A1:FB:4A:40:E8:A1:92:B3:EE:92:5F:94:C1
Certificate issuer: /CN=98a87cad5b710890a9528f166f4202393824e6b8
Certificate serial: 1F8BACF730F11ABD3975B293152062793FBF33BE
Authority key identifier: 98:A8:7C:AD:5B:71:08:90:A9:52:8F:16:6F:42:02:39:38:24:E6:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mKh8rVtxCJCpUo8Wb0ICOTgk5rg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/39342e3132362e3233332e302f32342d3234203d3e203438303730.roa
Signing time: Tue 25 Jul 2023 15:01:22 +0000
ROA not before: Tue 25 Jul 2023 14:56:22 +0000
ROA not after: Tue 23 Jul 2024 15:01:22 +0000
asID: 48070
IP address blocks: 94.126.233.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.crl
rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.mft
rsync://rpki.ripe.net/repository/DEFAULT/mKh8rVtxCJCpUo8Wb0ICOTgk5rg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 22 Jun 2024 00:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:8b:ac:f7:30:f1:1a:bd:39:75:b2:93:15:20:62:79:3f:bf:33:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98a87cad5b710890a9528f166f4202393824e6b8
Validity
Not Before: Jul 25 14:56:22 2023 GMT
Not After : Jul 23 15:01:22 2024 GMT
Subject: CN=C6003FE7C4F8B7A1FB4A40E8A192B3EE925F94C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:60:e1:bd:f5:94:04:6f:cc:d9:d2:5d:af:a8:
16:a0:ba:92:ef:58:92:52:8d:9d:91:d1:86:3a:22:
23:32:22:5d:d4:e2:8b:ea:bb:ce:16:e9:99:91:ee:
49:48:68:0e:3a:51:0d:dc:b0:05:3c:30:f3:5c:72:
7e:a1:e5:3c:2a:04:5c:e1:06:52:a5:43:01:82:b0:
56:bf:b6:db:87:54:b5:12:4f:0a:bf:92:f4:09:a8:
dd:33:f8:97:f0:86:e5:2e:1f:2a:78:dd:92:ab:31:
10:5a:ae:ef:f6:38:3a:d6:66:2c:21:0a:84:4d:cd:
82:af:d5:39:66:50:4f:95:e4:59:87:a1:11:1e:f6:
dd:bf:ec:0b:b9:32:4b:73:eb:7b:b8:12:3e:34:2f:
d3:22:26:cf:e8:1c:54:45:02:a4:79:a5:6d:3f:e5:
ce:f7:bb:7e:2d:a7:21:33:58:d5:a4:d8:a4:9a:9c:
bf:57:35:06:12:5a:09:35:09:6c:25:1c:b9:99:d5:
5a:a4:a0:dd:16:7b:cb:19:4e:e4:e6:17:d3:6a:d2:
c4:24:50:98:ac:d7:df:9d:c1:bf:ee:95:7a:e8:58:
2d:c3:29:74:be:a8:4b:78:15:61:59:46:53:42:53:
9e:e8:9d:3a:bc:45:54:62:56:90:89:c5:a5:81:d1:
41:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:00:3F:E7:C4:F8:B7:A1:FB:4A:40:E8:A1:92:B3:EE:92:5F:94:C1
X509v3 Authority Key Identifier:
keyid:98:A8:7C:AD:5B:71:08:90:A9:52:8F:16:6F:42:02:39:38:24:E6:B8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mKh8rVtxCJCpUo8Wb0ICOTgk5rg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/39342e3132362e3233332e302f32342d3234203d3e203438303730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.126.233.0/24
Signature Algorithm: sha256WithRSAEncryption
31:5e:0d:a7:39:0b:bd:22:8b:95:53:ba:55:b2:97:0f:25:39:
8f:ee:35:f8:c1:b7:c8:e5:c6:5d:21:ca:ce:d5:59:e4:14:cb:
38:64:71:7b:82:41:f8:3e:20:e5:ed:a9:e9:16:1a:16:a1:56:
18:c3:87:d6:10:55:0c:3d:07:0c:76:19:1f:56:aa:48:52:47:
ab:15:f1:e0:b4:80:f3:f2:02:6c:3c:37:31:19:1f:93:ad:42:
c5:d4:24:b9:9f:36:ef:9c:97:fa:0d:4a:3b:6e:9a:02:92:91:
fb:9d:9c:22:89:dd:6e:d0:dc:af:20:f9:81:60:e8:c9:d4:77:
fd:65:c5:f7:45:bb:de:3a:41:3a:7e:75:d1:41:77:5d:67:92:
79:94:a6:cd:60:59:d1:dc:40:cb:02:a5:8f:59:95:46:97:56:
f3:94:05:5c:f8:18:48:cc:09:82:55:19:7d:c3:be:0e:4e:78:
1f:f5:d7:e3:94:66:c8:33:d5:8e:a8:b0:3e:ae:a7:e2:e8:42:
da:11:d0:4f:11:13:81:91:c7:10:03:4d:e7:b9:bb:43:82:52:
59:26:98:58:5e:66:4d:ad:1f:3e:d6:fe:47:d5:7b:05:4f:df:
26:ad:1b:f8:30:6c:ef:6b:7e:32:56:a4:95:c3:f2:b1:2f:a1:
b5:c1:9b:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 21 11:19:00 2024 by rpki-client on console-ams.rpki-client.org