Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/3139342e33312e3139372e302f32342d3234203d3e203432383331.roa
File: 3139342e33312e3139372e302f32342d3234203d3e203432383331.roa (raw, json)
Hash identifier: K/AgWhdBwRNuHNiBHXtZ25SaRir/NPec0zhFlGbzmks=
Subject key identifier: 18:15:DB:4C:9F:D0:9E:5B:18:58:56:C7:44:15:9C:EB:AA:DD:5E:0B
Certificate issuer: /CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6
Certificate serial: 1A5B8249723B2A34A6E8B272029F1E3566390375
Authority key identifier: A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/3139342e33312e3139372e302f32342d3234203d3e203432383331.roa
Signing time: Fri 20 Sep 2024 11:42:59 +0000
ROA not before: Fri 20 Sep 2024 11:37:59 +0000
ROA not after: Fri 19 Sep 2025 11:42:59 +0000
asID: 42831
IP address blocks: 194.31.197.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/A9420E6C6F24B0E422DA7FE7E420EF50354F45C6.crl
rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/A9420E6C6F24B0E422DA7FE7E420EF50354F45C6.mft
rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:5b:82:49:72:3b:2a:34:a6:e8:b2:72:02:9f:1e:35:66:39:03:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6
Validity
Not Before: Sep 20 11:37:59 2024 GMT
Not After : Sep 19 11:42:59 2025 GMT
Subject: CN=1815DB4C9FD09E5B185856C744159CEBAADD5E0B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:6d:62:f0:77:67:8a:a1:ec:9d:26:66:bb:12:
54:94:70:a4:84:27:a2:e5:1e:63:44:16:2c:11:74:
62:df:0a:5a:eb:69:aa:72:40:55:b9:f2:2f:04:44:
45:22:a0:c5:c6:82:95:b7:22:8c:81:1c:98:ac:83:
33:82:fe:7c:75:f9:d5:bf:c1:01:50:76:d0:e5:7b:
76:cc:1a:24:c7:05:e5:64:2d:c1:f4:2a:81:6e:7c:
66:a8:91:29:92:0b:7c:63:18:03:2d:34:e3:64:74:
a1:e6:cb:cb:0f:28:2c:75:6a:23:14:3d:55:28:00:
ae:96:b6:38:dc:f8:ac:18:59:dd:df:2e:bc:bb:a1:
90:fb:6a:a1:85:b2:62:a4:b5:b2:56:e7:02:59:14:
e9:09:1e:18:1d:94:ee:62:c3:b5:91:ac:67:79:17:
04:45:dd:21:d8:db:d2:d0:e3:9f:70:be:cc:4e:b8:
e6:7f:b4:41:2d:96:03:31:bc:79:e3:24:fb:de:99:
b8:32:42:9d:4b:f3:65:01:d7:62:e1:43:db:7b:f4:
75:d8:f0:9d:a4:67:66:a2:62:ca:64:3d:ec:8e:e7:
c7:3d:29:90:4d:4d:46:e6:12:ba:40:b5:37:b2:9c:
ff:08:ec:57:05:0c:b0:3d:41:28:67:a1:44:35:68:
0c:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:15:DB:4C:9F:D0:9E:5B:18:58:56:C7:44:15:9C:EB:AA:DD:5E:0B
X509v3 Authority Key Identifier:
keyid:A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/A9420E6C6F24B0E422DA7FE7E420EF50354F45C6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/3139342e33312e3139372e302f32342d3234203d3e203432383331.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.31.197.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:46:99:e9:fb:b8:7b:b3:29:17:bd:fc:24:5a:98:2a:29:98:
5b:35:5e:4d:dc:bb:0e:0c:9b:a6:42:8b:fa:3f:28:7d:74:07:
99:a3:8e:6c:39:08:9d:4e:49:3e:61:f6:26:a5:4b:32:3d:77:
e3:ab:49:c0:c5:df:4b:50:e1:97:76:0b:1d:30:ef:f5:20:ba:
cc:d2:1b:44:98:24:e4:9c:c7:b1:0d:c4:f5:21:b8:95:38:ab:
70:48:52:cf:93:b7:8d:32:ec:30:65:26:ba:10:3a:c0:51:59:
37:54:3a:8e:a1:f0:3e:0b:cc:90:73:26:ef:91:50:26:92:40:
79:cc:c0:c7:9f:0f:73:87:6d:4e:c7:f5:31:66:77:80:d2:c7:
a1:e3:fe:e9:84:07:de:aa:6f:e5:5b:09:b3:0f:52:7a:02:90:
c9:4b:cc:ef:c0:eb:57:eb:22:a7:a7:40:02:d5:44:be:57:06:
90:26:e0:6d:00:e0:7d:7e:a1:f4:56:e3:cd:93:fc:2b:38:da:
b4:1e:90:b0:b9:d3:3f:7a:a0:b8:21:81:7b:46:b1:55:85:37:
f4:ad:55:43:e8:74:34:5d:2a:49:10:c2:13:e3:0f:93:0d:41:
d4:19:74:b3:d9:8e:63:c7:ae:29:95:f1:39:11:7d:29:81:f5:
4e:59:cb:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 18:06:08 2024 by rpki-client on console-fra.rpki-client.org