Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/39342e3132362e3233372e302f32342d3234203d3e203438303730.roa
File: 39342e3132362e3233372e302f32342d3234203d3e203438303730.roa (raw, json)
Hash identifier: TuSxpbzi25dKvaDwAUU7eKC/BJS4fC4bGUnoO1g1d/E=
Subject key identifier: E1:46:5C:B5:35:B1:47:4C:18:EC:50:7A:2C:3C:00:D7:EE:44:5A:5B
Certificate issuer: /CN=98a87cad5b710890a9528f166f4202393824e6b8
Certificate serial: 2A7703E7DDDB3653E9B9CC21A91A9A076DA32FD1
Authority key identifier: 98:A8:7C:AD:5B:71:08:90:A9:52:8F:16:6F:42:02:39:38:24:E6:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mKh8rVtxCJCpUo8Wb0ICOTgk5rg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/39342e3132362e3233372e302f32342d3234203d3e203438303730.roa
Signing time: Tue 25 Jul 2023 15:01:31 +0000
ROA not before: Tue 25 Jul 2023 14:56:31 +0000
ROA not after: Tue 23 Jul 2024 15:01:31 +0000
asID: 48070
IP address blocks: 94.126.237.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.crl
rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.mft
rsync://rpki.ripe.net/repository/DEFAULT/mKh8rVtxCJCpUo8Wb0ICOTgk5rg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 22 Jun 2024 00:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:77:03:e7:dd:db:36:53:e9:b9:cc:21:a9:1a:9a:07:6d:a3:2f:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98a87cad5b710890a9528f166f4202393824e6b8
Validity
Not Before: Jul 25 14:56:31 2023 GMT
Not After : Jul 23 15:01:31 2024 GMT
Subject: CN=E1465CB535B1474C18EC507A2C3C00D7EE445A5B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:5e:8e:da:ab:44:5c:ee:14:cd:99:42:fd:e3:
18:72:55:51:60:59:0b:9d:a2:52:2b:ec:63:f1:af:
f7:db:a3:4a:53:0b:bd:44:24:d8:76:60:f5:97:84:
05:8f:7a:5d:27:f1:06:ca:4a:35:1c:41:6f:7e:7d:
3d:fa:7b:17:60:5d:8e:44:88:d3:f0:c0:82:ee:70:
d9:fa:db:56:fd:3a:6c:32:c2:8c:cf:f8:3f:23:d2:
83:30:08:c5:c5:f5:7e:89:17:b2:fb:80:1f:f3:87:
7c:6d:61:2b:67:2c:03:33:9f:83:0c:6c:ab:e7:da:
67:1e:bf:f1:73:92:52:ba:53:1c:fc:2a:34:ba:fc:
1b:f1:f0:87:80:c1:5e:4b:87:92:3e:e1:5f:92:6f:
56:c2:13:30:7d:dc:e7:52:91:e7:71:ad:85:f2:bb:
97:cb:f0:6e:3f:e1:b5:1c:62:b5:b1:77:0e:8b:56:
8e:b6:4b:a3:b5:f8:1f:50:f0:84:13:52:25:c1:14:
01:4e:10:e6:cb:9f:2f:0e:dc:00:67:a0:43:e9:79:
5a:fe:88:1b:79:7e:cf:10:e5:fc:a5:d0:d5:2e:bd:
9d:83:22:80:e8:2a:5e:f2:7b:60:c2:14:fe:b4:73:
c5:62:16:2d:6a:7e:b2:a6:14:a6:dd:43:d2:17:5b:
a0:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:46:5C:B5:35:B1:47:4C:18:EC:50:7A:2C:3C:00:D7:EE:44:5A:5B
X509v3 Authority Key Identifier:
keyid:98:A8:7C:AD:5B:71:08:90:A9:52:8F:16:6F:42:02:39:38:24:E6:B8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mKh8rVtxCJCpUo8Wb0ICOTgk5rg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/39342e3132362e3233372e302f32342d3234203d3e203438303730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.126.237.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:51:75:75:e1:38:bf:1f:5e:95:03:d2:20:e5:04:1e:8b:0b:
eb:06:1a:69:16:48:ca:3b:61:fb:f2:d7:48:6e:3a:49:36:d0:
f8:48:5f:9d:b9:7b:4d:3d:1d:18:0a:0d:a1:23:e3:9d:8a:ff:
ce:9f:f8:15:16:f0:55:33:22:4a:1a:1a:77:4f:f9:a7:48:1c:
08:c9:e2:e5:44:d3:90:0f:db:28:36:c2:20:31:a4:70:f2:fb:
09:f2:cb:ba:e7:ab:b6:ca:54:27:aa:a6:05:3a:87:06:48:c2:
cb:3f:b4:7d:4c:9f:8a:c0:ac:e8:2f:63:d3:bc:24:9c:b1:bf:
d0:91:e5:64:ac:71:13:fd:7a:d3:9c:8e:9a:be:19:4b:7c:27:
8a:1a:e9:d4:20:e0:7f:0e:33:60:b9:ee:88:aa:5f:32:da:58:
06:8d:4c:40:a3:95:8f:cf:52:67:2c:7b:08:4c:5c:c3:9c:e8:
b4:93:e9:95:54:2e:71:1e:32:e7:de:f8:07:66:05:8e:b8:e7:
92:d0:15:3b:13:f4:8b:c5:96:59:87:bc:d2:b7:4a:88:f7:2e:
43:31:5e:f2:5c:0f:1d:e4:9f:80:84:d6:10:fa:3b:69:49:9f:
96:49:11:76:bf:8d:d7:57:dd:fe:e8:60:19:0d:cf:2f:f4:8b:
bc:66:db:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 21 11:19:00 2024 by rpki-client on console-ams.rpki-client.org