Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/0c8bb446-91c0-4138-a33a-b47865de55c5/1/3134362e3234372e35382e302f32342d3234203d3e20323036353035.roa
File: 3134362e3234372e35382e302f32342d3234203d3e20323036353035.roa (raw, json)
Hash identifier: 0tLtxBZIh3JPv4ntMCHEQwo1L1G+TJlCryihDcvMeKQ=
Subject key identifier: 6E:DC:9E:59:91:8F:4B:2F:47:32:05:34:52:F1:5B:BA:A3:50:78:5B
Certificate issuer: /CN=a6c509ba48e5b50494572e05c45c58e7e16d87fb
Certificate serial: 49A2C5879A878A49FFAEADC0BCE6D2A96629E9DC
Authority key identifier: A6:C5:09:BA:48:E5:B5:04:94:57:2E:05:C4:5C:58:E7:E1:6D:87:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/psUJukjltQSUVy4FxFxY5-Fth_s.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/0c8bb446-91c0-4138-a33a-b47865de55c5/1/3134362e3234372e35382e302f32342d3234203d3e20323036353035.roa
Signing time: Thu 29 Jun 2023 11:26:50 +0000
ROA not before: Thu 29 Jun 2023 11:21:50 +0000
ROA not after: Thu 27 Jun 2024 11:26:50 +0000
asID: 206505
IP address blocks: 146.247.58.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/0c8bb446-91c0-4138-a33a-b47865de55c5/1/A6C509BA48E5B50494572E05C45C58E7E16D87FB.crl
rsync://rsync.paas.rpki.ripe.net/repository/0c8bb446-91c0-4138-a33a-b47865de55c5/1/A6C509BA48E5B50494572E05C45C58E7E16D87FB.mft
rsync://rpki.ripe.net/repository/DEFAULT/psUJukjltQSUVy4FxFxY5-Fth_s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 16 May 2024 07:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:a2:c5:87:9a:87:8a:49:ff:ae:ad:c0:bc:e6:d2:a9:66:29:e9:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6c509ba48e5b50494572e05c45c58e7e16d87fb
Validity
Not Before: Jun 29 11:21:50 2023 GMT
Not After : Jun 27 11:26:50 2024 GMT
Subject: CN=6EDC9E59918F4B2F4732053452F15BBAA350785B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:ca:e8:2c:c1:b6:82:bd:fb:da:3a:95:45:c0:
6d:b0:ee:bf:7f:9f:59:e5:2b:7b:e1:ac:70:cd:99:
ce:90:27:57:15:7f:31:22:a3:74:a6:5b:4e:1f:52:
dc:37:f4:ac:fd:f2:6e:07:56:e2:0a:22:54:ab:81:
f4:f5:38:0e:b2:a6:61:68:e2:b3:0b:72:8e:12:42:
82:ac:0f:03:73:3b:c4:5c:64:91:cb:04:6b:29:d3:
4c:ff:e7:a4:79:ff:c4:95:83:82:57:f7:a4:70:2a:
db:cb:be:e6:fc:a3:22:1a:30:91:7d:53:ef:2c:02:
99:c3:22:c4:79:78:e6:f9:15:7d:b3:fc:b5:67:b6:
7a:37:f2:8a:1c:8f:26:99:00:29:63:13:4b:6b:74:
fc:64:92:bc:3f:9f:51:17:0f:cb:d7:4f:4e:12:72:
50:b6:50:9a:bc:a7:b7:62:bc:e4:4a:dd:38:27:bc:
e1:91:d3:22:34:76:43:8a:0f:cd:cb:d7:89:b9:1c:
57:4e:15:2c:7a:c1:86:6a:be:16:03:ee:d0:c4:f4:
f8:d1:f9:b4:1b:2c:55:4a:a9:8b:94:2b:26:de:ce:
d8:ad:c7:cd:7c:f7:37:7a:02:ef:11:cb:c3:c7:76:
e7:bb:2c:16:28:30:54:9c:f9:f3:f7:bf:7f:93:81:
1a:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:DC:9E:59:91:8F:4B:2F:47:32:05:34:52:F1:5B:BA:A3:50:78:5B
X509v3 Authority Key Identifier:
keyid:A6:C5:09:BA:48:E5:B5:04:94:57:2E:05:C4:5C:58:E7:E1:6D:87:FB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/0c8bb446-91c0-4138-a33a-b47865de55c5/1/A6C509BA48E5B50494572E05C45C58E7E16D87FB.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/psUJukjltQSUVy4FxFxY5-Fth_s.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/0c8bb446-91c0-4138-a33a-b47865de55c5/1/3134362e3234372e35382e302f32342d3234203d3e20323036353035.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.247.58.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:38:ee:6e:46:fa:f3:b2:38:92:75:a4:b2:c5:f1:cc:87:d7:
56:87:94:a5:43:2d:da:60:02:f1:7a:e8:47:7f:50:af:9f:a7:
7c:38:d9:f2:80:76:91:46:d9:73:98:ad:c6:4a:5d:d1:fd:f0:
af:08:05:56:a1:a4:5b:93:39:ac:90:11:79:40:06:04:02:82:
4d:4e:e8:84:e8:c5:7b:96:20:3f:e9:5d:54:f8:8f:1e:03:b1:
c9:ad:92:b0:39:ed:ae:95:bd:ad:73:27:4b:60:64:42:6f:31:
6a:d2:d9:97:aa:73:16:28:8f:da:3b:05:2d:3b:1b:1d:32:15:
66:62:2a:7b:87:22:a8:95:de:00:b1:ed:08:fe:5e:0f:01:d7:
ad:e6:63:c0:dd:49:5c:f1:0d:7b:b0:f8:8e:f4:20:b3:76:42:
54:b4:a6:b4:40:43:cf:e2:bd:73:c2:e9:92:4b:c8:24:b7:0b:
4b:5a:ef:70:63:16:04:ab:08:81:1a:50:3c:1e:92:a9:5b:64:
6c:f4:e9:27:e4:29:9e:6f:4b:c8:47:58:d7:d5:45:41:a3:fa:
cb:b5:95:59:1b:96:b5:e4:eb:c4:00:5f:5b:a5:3a:aa:b1:74:
96:20:1d:c7:60:5a:af:ab:b7:82:b1:83:20:91:21:d8:65:bb:
06:32:a4:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 15 11:27:13 2024 by rpki-client on console-fra.rpki-client.org