Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/0c8bb446-91c0-4138-a33a-b47865de55c5/1/3134362e3234372e34382e302f32302d3230203d3e203234383531.roa
File: 3134362e3234372e34382e302f32302d3230203d3e203234383531.roa (raw, json)
Hash identifier: AtkJtoUoox26oxAHfh2tdwiB6b5wZkwjk748vQvHZ0Y=
Subject key identifier: 30:82:3E:49:72:48:3C:FC:A3:08:28:9A:40:B3:62:A4:A7:A4:30:C5
Certificate issuer: /CN=a6c509ba48e5b50494572e05c45c58e7e16d87fb
Certificate serial: 7FE507AFC2206C04967D5EDEC9B38ABABE708112
Authority key identifier: A6:C5:09:BA:48:E5:B5:04:94:57:2E:05:C4:5C:58:E7:E1:6D:87:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/psUJukjltQSUVy4FxFxY5-Fth_s.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/0c8bb446-91c0-4138-a33a-b47865de55c5/1/3134362e3234372e34382e302f32302d3230203d3e203234383531.roa
Signing time: Mon 25 Dec 2023 12:05:08 +0000
ROA not before: Mon 25 Dec 2023 12:00:08 +0000
ROA not after: Mon 23 Dec 2024 12:05:08 +0000
asID: 24851
IP address blocks: 146.247.48.0/20 maxlen: 20
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/0c8bb446-91c0-4138-a33a-b47865de55c5/1/A6C509BA48E5B50494572E05C45C58E7E16D87FB.crl
rsync://rsync.paas.rpki.ripe.net/repository/0c8bb446-91c0-4138-a33a-b47865de55c5/1/A6C509BA48E5B50494572E05C45C58E7E16D87FB.mft
rsync://rpki.ripe.net/repository/DEFAULT/psUJukjltQSUVy4FxFxY5-Fth_s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 07 Jun 2024 20:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:e5:07:af:c2:20:6c:04:96:7d:5e:de:c9:b3:8a:ba:be:70:81:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6c509ba48e5b50494572e05c45c58e7e16d87fb
Validity
Not Before: Dec 25 12:00:08 2023 GMT
Not After : Dec 23 12:05:08 2024 GMT
Subject: CN=30823E4972483CFCA308289A40B362A4A7A430C5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:a4:88:c6:ab:b3:bd:bd:53:12:24:f8:35:22:
f6:dd:93:15:30:95:7c:53:40:1e:e2:24:f6:b7:fb:
26:7f:7d:8d:c7:ef:bb:b0:f1:d6:cc:dc:a0:e5:70:
50:27:ab:40:97:44:1b:11:80:77:c5:15:c7:47:6f:
c8:0a:70:ca:46:4a:19:b5:96:1d:30:0b:88:f0:85:
4c:04:e8:5e:90:30:6a:6d:3b:b4:54:de:31:7b:90:
c4:85:a2:87:67:40:ff:8b:c3:78:8b:25:8b:d1:d2:
bc:39:90:20:83:ef:5e:1e:38:9c:96:fe:d9:75:e1:
36:c7:8a:8d:e9:94:9c:40:be:7a:2e:7e:cd:e9:76:
cf:99:d7:9a:61:a4:97:6e:5a:2e:3f:1f:ec:85:c8:
e6:f5:56:47:6c:b6:d8:0a:32:90:5d:83:5b:0b:65:
47:ce:b0:3e:08:db:d9:5f:0c:78:44:a9:7e:22:3e:
69:eb:dd:ef:70:e1:4c:85:c2:9a:2a:40:d2:38:ce:
dc:fe:2b:20:fb:e2:48:2c:a7:5c:fd:e1:58:9f:3b:
09:df:b8:1d:32:ea:df:cb:f6:25:be:28:ee:e0:3e:
a8:2b:e1:ad:58:49:24:85:13:78:b2:5f:87:f8:1f:
ac:ab:74:17:e4:db:e4:53:ff:e7:45:c7:2c:64:74:
64:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:82:3E:49:72:48:3C:FC:A3:08:28:9A:40:B3:62:A4:A7:A4:30:C5
X509v3 Authority Key Identifier:
keyid:A6:C5:09:BA:48:E5:B5:04:94:57:2E:05:C4:5C:58:E7:E1:6D:87:FB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/0c8bb446-91c0-4138-a33a-b47865de55c5/1/A6C509BA48E5B50494572E05C45C58E7E16D87FB.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/psUJukjltQSUVy4FxFxY5-Fth_s.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/0c8bb446-91c0-4138-a33a-b47865de55c5/1/3134362e3234372e34382e302f32302d3230203d3e203234383531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.247.48.0/20
Signature Algorithm: sha256WithRSAEncryption
03:a5:2b:84:4c:af:ec:44:98:6a:e9:4a:93:1a:51:77:db:4d:
ff:99:8c:54:8c:f6:28:7d:54:b2:30:81:0a:74:ee:07:2a:44:
4f:0e:6f:4a:76:25:1c:8b:28:71:dd:0d:2d:59:b7:15:10:08:
29:c6:b0:63:43:f3:a8:46:c1:a6:a6:4d:2a:d2:72:c7:57:5c:
e3:fc:b1:81:d1:2a:c2:35:77:74:7c:ee:e7:68:bc:55:a3:68:
4d:6e:20:0c:8c:a8:0e:b3:ef:67:39:c2:49:d5:91:7b:46:a7:
f7:fa:0d:55:5f:c9:bf:76:03:ca:33:58:1e:ee:fe:32:a0:d7:
b5:20:4e:9d:d0:a6:9e:d0:82:d3:7c:1f:59:2d:8d:3f:a7:d2:
69:f3:fc:8b:2e:52:72:21:c0:55:d1:79:2c:ce:8c:bf:c8:50:
5e:c9:57:cc:ad:82:67:49:2c:ee:d3:34:51:5c:0f:73:c9:e4:
cb:2d:21:73:a5:bb:40:6b:20:4c:c7:cb:28:26:50:b1:99:f3:
4a:d4:dd:6b:07:8a:7c:0b:a9:33:c6:68:ee:a4:85:5f:99:b4:
16:43:43:5b:2d:d9:c0:a2:fe:a6:3e:e5:1c:3b:d1:9e:44:fd:
7c:58:11:e6:5b:7c:01:18:f8:6f:4c:17:ec:f5:21:a4:1d:83:
b3:56:f3:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 04:54:12 2024 by rpki-client on console-fra.rpki-client.org