Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/0c8bb446-91c0-4138-a33a-b47865de55c5/1/3134362e3234372e35302e302f32342d3234203d3e203234383531.roa
File: 3134362e3234372e35302e302f32342d3234203d3e203234383531.roa (raw, json)
Hash identifier: Xu9Ulls8bpq0hHPLUzQTCDFdZuHdkeW+6NyQx4cB/cM=
Subject key identifier: 98:09:35:AC:AE:77:E1:77:0A:8B:C9:9C:E1:7D:D5:47:BE:92:8D:83
Certificate issuer: /CN=a6c509ba48e5b50494572e05c45c58e7e16d87fb
Certificate serial: 14E9AF6514D2209D19977ADB945803FD9FE2D0BE
Authority key identifier: A6:C5:09:BA:48:E5:B5:04:94:57:2E:05:C4:5C:58:E7:E1:6D:87:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/psUJukjltQSUVy4FxFxY5-Fth_s.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/0c8bb446-91c0-4138-a33a-b47865de55c5/1/3134362e3234372e35302e302f32342d3234203d3e203234383531.roa
Signing time: Mon 25 Dec 2023 12:05:08 +0000
ROA not before: Mon 25 Dec 2023 12:00:08 +0000
ROA not after: Mon 23 Dec 2024 12:05:08 +0000
asID: 24851
IP address blocks: 146.247.50.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/0c8bb446-91c0-4138-a33a-b47865de55c5/1/A6C509BA48E5B50494572E05C45C58E7E16D87FB.crl
rsync://rsync.paas.rpki.ripe.net/repository/0c8bb446-91c0-4138-a33a-b47865de55c5/1/A6C509BA48E5B50494572E05C45C58E7E16D87FB.mft
rsync://rpki.ripe.net/repository/DEFAULT/psUJukjltQSUVy4FxFxY5-Fth_s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Jun 2024 16:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:e9:af:65:14:d2:20:9d:19:97:7a:db:94:58:03:fd:9f:e2:d0:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6c509ba48e5b50494572e05c45c58e7e16d87fb
Validity
Not Before: Dec 25 12:00:08 2023 GMT
Not After : Dec 23 12:05:08 2024 GMT
Subject: CN=980935ACAE77E1770A8BC99CE17DD547BE928D83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:41:dd:b9:ed:fb:d7:67:73:50:10:20:2d:4e:
c9:23:bb:c0:5a:e9:06:31:8d:b8:6c:83:e2:3b:98:
83:3a:e5:bf:c5:e5:ab:63:f0:12:8d:7b:db:aa:ec:
a4:f7:bf:63:84:e2:a4:ac:7e:56:06:2d:39:94:32:
d2:7a:79:46:a1:ef:32:27:e4:d2:ce:62:e7:a7:f5:
69:17:a4:21:16:0a:2d:b5:16:56:98:fa:a0:9d:b0:
af:27:bb:87:78:60:43:d8:94:c7:c9:43:7c:48:44:
5b:e6:d8:6b:a5:98:92:69:73:69:0e:35:3b:8d:d6:
5e:8a:4a:02:c1:d6:bc:08:ee:b2:ed:21:81:d6:aa:
23:5b:16:73:26:d7:a2:cd:fc:11:4a:ea:97:8b:fc:
85:24:4c:1f:33:60:f7:17:02:f3:99:2d:68:13:35:
fa:ab:d2:23:9a:cb:b0:f3:36:a3:fe:3e:9f:36:a8:
ee:1c:10:a9:ba:28:c7:ff:04:02:0f:c8:b8:ba:da:
fa:fb:9f:4e:31:b8:54:93:b1:b9:0c:c0:2e:0e:cf:
bf:85:fb:3d:b4:7a:c7:fa:e5:62:9e:5b:66:4b:23:
72:16:62:67:fc:08:c3:e0:a2:92:8c:bf:3b:ce:3d:
e5:bd:c2:93:29:0f:fb:c1:bb:a3:7d:d5:6b:a8:e2:
ba:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:09:35:AC:AE:77:E1:77:0A:8B:C9:9C:E1:7D:D5:47:BE:92:8D:83
X509v3 Authority Key Identifier:
keyid:A6:C5:09:BA:48:E5:B5:04:94:57:2E:05:C4:5C:58:E7:E1:6D:87:FB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/0c8bb446-91c0-4138-a33a-b47865de55c5/1/A6C509BA48E5B50494572E05C45C58E7E16D87FB.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/psUJukjltQSUVy4FxFxY5-Fth_s.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/0c8bb446-91c0-4138-a33a-b47865de55c5/1/3134362e3234372e35302e302f32342d3234203d3e203234383531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.247.50.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:0d:3a:1c:a1:53:77:c8:88:1f:39:f7:f1:8e:c3:cd:39:49:
6a:5a:7b:a5:48:7e:4f:30:bf:e3:8c:5e:64:5a:b7:17:ab:a9:
ba:d7:4c:2f:40:62:38:c5:72:14:4b:b6:70:41:94:1a:17:08:
7c:ae:fa:a3:80:72:75:58:85:51:55:14:9f:37:58:35:6d:40:
ff:15:72:52:15:67:b7:b0:ef:d7:ea:96:61:7f:1a:c1:30:2c:
df:6d:63:f9:d0:51:67:f5:32:98:2c:9d:cb:30:53:bf:8d:ab:
90:96:59:a6:d3:96:d4:af:34:7b:66:b7:62:48:01:3b:7c:00:
ec:b9:6f:3f:3a:f6:a3:72:24:ad:25:a8:88:5a:c5:1a:bb:08:
8a:47:0b:74:f8:28:e0:c7:86:c2:99:3e:a9:84:f7:96:86:ab:
68:b8:00:48:91:ea:08:df:f3:7b:37:cf:c8:44:16:70:d3:0c:
c1:09:bb:ce:55:b5:ce:69:11:bf:2c:88:cf:95:6b:b8:42:30:
60:f5:dd:13:00:79:4c:2f:cd:2b:9d:ba:8a:1e:54:6f:ff:56:
6e:5f:be:4b:ed:3a:5f:fa:51:b3:5f:7d:19:52:73:c8:e2:d6:
e8:16:da:c9:14:b5:dd:01:27:35:61:48:e7:de:20:ea:c2:50:
47:29:fc:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 31 23:54:54 2024 by rpki-client on console-fra.rpki-client.org