Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/3134362e31392e33382e302f32342d3234203d3e203135333737.roa
File: 3134362e31392e33382e302f32342d3234203d3e203135333737.roa (raw, json)
Hash identifier: N6T0jFQQmYABJvaCcEnmYFyCSARfKHMwXddVzKW1SQo=
Subject key identifier: EC:8E:90:04:8D:F4:E1:BE:C0:73:97:39:B3:C7:2F:AC:01:AA:AC:E9
Certificate issuer: /CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6
Certificate serial: 11DA87E753490FB985213FF9947FE87C515D4126
Authority key identifier: A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/3134362e31392e33382e302f32342d3234203d3e203135333737.roa
Signing time: Tue 12 Dec 2023 11:35:26 +0000
ROA not before: Tue 12 Dec 2023 11:30:26 +0000
ROA not after: Tue 10 Dec 2024 11:35:26 +0000
asID: 15377
IP address blocks: 146.19.38.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/A9420E6C6F24B0E422DA7FE7E420EF50354F45C6.crl
rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/A9420E6C6F24B0E422DA7FE7E420EF50354F45C6.mft
rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 16 May 2024 14:51:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:da:87:e7:53:49:0f:b9:85:21:3f:f9:94:7f:e8:7c:51:5d:41:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6
Validity
Not Before: Dec 12 11:30:26 2023 GMT
Not After : Dec 10 11:35:26 2024 GMT
Subject: CN=EC8E90048DF4E1BEC0739739B3C72FAC01AAACE9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c3:43:f0:dc:28:65:a6:2b:20:3e:35:4a:37:
10:c0:1c:95:b5:3c:a2:29:69:ec:ae:89:47:24:f2:
bd:75:90:a3:be:0b:a4:9d:42:67:04:1b:68:13:e6:
13:1f:c9:af:0e:c3:ca:77:83:5d:a9:a0:17:38:b0:
f2:56:5e:b3:0a:26:3b:7e:10:8c:b6:25:6b:fd:62:
f5:67:fd:9b:ba:9e:7a:7d:c4:aa:6e:81:f9:d0:ce:
46:59:64:5c:4c:bb:98:a9:e1:da:74:58:94:48:56:
e2:d0:56:0b:9e:fd:b0:bb:84:0d:2b:c2:3b:c6:28:
ff:ac:2f:d3:04:2e:34:ef:24:6b:82:dd:e0:c4:c3:
5b:4d:6f:9c:84:85:a9:68:3c:a8:06:80:4b:44:48:
68:02:26:0c:0f:12:21:ce:0a:90:09:0a:93:eb:bb:
1a:5d:d7:e9:04:8a:e4:fe:ee:82:ca:1f:f6:0e:8e:
db:01:ac:f6:2c:80:4a:07:66:19:a9:f6:1a:69:34:
1e:26:ed:6e:62:b8:d1:ab:df:02:ac:f7:9f:a7:13:
2c:08:8b:64:d5:31:60:9b:58:7c:1d:1d:f0:ba:88:
a3:f8:6a:5d:a4:3a:01:a3:cd:3a:2d:ee:67:fb:2a:
71:3b:22:b3:18:de:2e:93:3d:69:e0:b3:92:ff:76:
1d:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:8E:90:04:8D:F4:E1:BE:C0:73:97:39:B3:C7:2F:AC:01:AA:AC:E9
X509v3 Authority Key Identifier:
keyid:A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/A9420E6C6F24B0E422DA7FE7E420EF50354F45C6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/3134362e31392e33382e302f32342d3234203d3e203135333737.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.38.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:bf:6e:38:ec:54:34:d1:c7:5c:8e:b3:55:ba:e1:19:be:b5:
67:b4:43:fc:62:2e:50:ce:b8:b9:31:65:7b:62:8a:f8:76:d0:
5b:17:77:e7:fb:9e:b0:4f:18:95:e9:fc:7e:87:78:9e:f0:15:
66:d5:2a:d9:a5:bd:bb:eb:86:70:a9:0e:20:23:1b:d1:ee:dd:
16:b4:35:fc:38:6f:09:13:4f:81:4d:ed:28:1e:4d:ed:3c:7d:
ce:d3:97:ff:79:1b:3d:c3:39:13:04:a7:ba:09:9b:33:53:e6:
4b:e0:2a:4b:ca:31:3f:83:96:d3:4c:a0:b3:ec:bd:5e:76:26:
22:8f:49:df:5e:9d:35:59:78:f7:9a:80:05:74:fc:34:61:c1:
6b:c9:ca:9d:69:16:62:cb:a0:cd:4f:8d:8d:69:1b:27:55:94:
f2:4f:27:0e:a6:ce:50:3b:37:ab:5e:71:0a:82:06:5e:97:53:
66:18:f0:c5:e4:dc:b3:f6:16:91:6d:87:ce:be:d8:6d:52:1b:
0a:e8:3a:c1:2f:7f:3a:89:79:96:4e:be:a5:1e:74:9e:7d:14:
07:1e:7a:cb:b9:13:e7:0a:03:05:b3:07:f2:d7:a1:e9:29:b2:
30:8b:c3:99:e1:f3:1e:d8:ea:a5:8e:0a:d9:c1:68:be:4e:f8:
b3:93:72:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 15 23:20:38 2024 by rpki-client on console-fra.rpki-client.org