Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/39312e3139362e3232302e302f32342d3332203d3e203632323430.roa
File: 39312e3139362e3232302e302f32342d3332203d3e203632323430.roa (raw, json)
Hash identifier: m95DjXEROv73ELT+GsyMFfa20No5IUyYaUlO32eTu1g=
Subject key identifier: 31:61:17:56:D5:0A:18:D3:BA:47:B3:23:89:B2:FF:D1:37:F5:29:E6
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 0C9354FAA55041BF91CCDF69E6CF2F94F8BC8AB4
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/39312e3139362e3232302e302f32342d3332203d3e203632323430.roa
Signing time: Mon 26 Feb 2024 08:53:38 +0000
ROA not before: Mon 26 Feb 2024 08:48:38 +0000
ROA not after: Mon 24 Feb 2025 08:53:38 +0000
asID: 62240
IP address blocks: 91.196.220.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 01:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:93:54:fa:a5:50:41:bf:91:cc:df:69:e6:cf:2f:94:f8:bc:8a:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Feb 26 08:48:38 2024 GMT
Not After : Feb 24 08:53:38 2025 GMT
Subject: CN=31611756D50A18D3BA47B32389B2FFD137F529E6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:a7:54:4a:03:4f:59:19:d1:87:dd:ce:c3:a7:
a5:63:33:d6:af:83:1f:ce:51:fe:b9:d9:56:2f:e1:
0c:86:fa:ed:78:03:a4:ab:7f:79:a2:13:ee:fe:33:
d9:17:03:0f:dd:e4:e8:08:2b:94:13:4d:42:ac:a4:
8c:a5:31:03:c4:3f:ff:02:0a:fc:a2:9f:fd:eb:32:
18:48:dd:f9:21:4d:42:c1:37:18:a1:25:1c:73:39:
64:41:9c:c8:b7:24:33:55:15:41:11:81:cb:86:47:
19:8e:b0:85:52:e5:f0:37:12:fb:14:4b:e2:48:5b:
14:cb:54:a4:92:20:26:89:c4:b7:21:68:8a:af:69:
a5:46:03:53:48:a1:4b:3d:f3:0f:9a:06:a1:c6:2f:
37:8b:ac:9a:ff:63:d4:4e:08:8a:28:fc:6a:88:28:
a7:99:b4:16:4c:8f:38:a1:1b:f1:40:6d:14:af:f5:
f2:f8:b8:46:81:96:bb:05:a2:82:77:c1:64:b8:e4:
8b:a8:c8:59:9e:e0:04:52:71:18:cb:ea:2f:11:f7:
10:a7:1f:01:8e:6f:d8:24:af:ba:26:86:52:d8:80:
e6:c6:4a:7c:3b:5a:d1:67:bc:a1:2d:6d:ab:34:c1:
4e:7a:a2:57:39:81:f1:56:08:e9:68:91:76:8b:dc:
49:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:61:17:56:D5:0A:18:D3:BA:47:B3:23:89:B2:FF:D1:37:F5:29:E6
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/39312e3139362e3232302e302f32342d3332203d3e203632323430.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.196.220.0/24
Signature Algorithm: sha256WithRSAEncryption
06:cc:ff:81:b5:4d:80:99:80:aa:6b:da:85:7b:68:20:7c:90:
ce:8f:9e:3b:12:92:2d:50:16:6e:59:77:b5:0b:93:12:73:8a:
d1:0d:84:e8:6c:8c:17:89:af:5d:e9:3a:24:ab:f2:44:ef:ea:
1b:5f:6d:43:e3:b2:ce:7b:bd:91:57:4d:32:db:5c:1f:2c:16:
96:43:75:96:0d:73:ff:61:9b:cf:42:41:fb:3e:66:f3:5c:b3:
18:05:2c:a1:53:52:0c:ec:3d:13:ff:59:85:08:85:4e:e3:cd:
e9:66:e5:b4:de:f1:31:69:51:6a:67:bc:28:f1:6f:bb:b6:4e:
8a:70:3b:48:33:75:a9:e9:1f:83:98:a8:96:1b:7f:fe:91:26:
a2:fe:40:b4:4d:b4:59:0b:69:28:b9:19:16:ae:bf:f5:90:7a:
f1:d8:dc:98:1f:f3:c1:d3:cc:98:01:80:52:c0:ea:d7:56:29:
08:8a:d4:43:99:c4:02:15:85:71:cc:e4:5e:53:d8:6a:0d:e0:
a9:73:cf:f4:e2:5b:9f:76:8b:2c:02:86:7a:9f:0e:00:6b:02:
60:b7:78:0a:83:a5:23:63:7e:8f:f2:d0:83:99:3c:81:87:fc:
6f:ec:11:5d:a8:90:7f:a3:e3:70:c5:3e:e7:0c:03:21:84:03:
19:27:de:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 10:22:32 2024 by rpki-client on console-ams.rpki-client.org