Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/370be6cd-25d2-4f8b-88a4-b5109f49462d/1/39312e3232382e3136382e302f32342d3234203d3e203439353831.roa
File: 39312e3232382e3136382e302f32342d3234203d3e203439353831.roa (raw, json)
Hash identifier: 8bZFUF3g/YKJVUTCrPE9L5aUrWVuRLFWHNJLOM9oLGc=
Subject key identifier: 7F:C5:7D:AC:88:B2:88:3D:F2:A0:1F:E8:28:35:F1:0A:4C:76:F4:82
Certificate issuer: /CN=06da19f4285eb04d0310733f4ac00107b73337ad
Certificate serial: 59D594C3747A979182F829C0320389D0A31563
Authority key identifier: 06:DA:19:F4:28:5E:B0:4D:03:10:73:3F:4A:C0:01:07:B7:33:37:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BtoZ9ChesE0DEHM_SsABB7czN60.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/370be6cd-25d2-4f8b-88a4-b5109f49462d/1/39312e3232382e3136382e302f32342d3234203d3e203439353831.roa
Signing time: Wed 17 Jul 2024 13:48:38 +0000
ROA not before: Wed 17 Jul 2024 13:43:38 +0000
ROA not after: Wed 16 Jul 2025 13:48:38 +0000
asID: 49581
IP address blocks: 91.228.168.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/370be6cd-25d2-4f8b-88a4-b5109f49462d/1/06DA19F4285EB04D0310733F4AC00107B73337AD.crl
rsync://rsync.paas.rpki.ripe.net/repository/370be6cd-25d2-4f8b-88a4-b5109f49462d/1/06DA19F4285EB04D0310733F4AC00107B73337AD.mft
rsync://rpki.ripe.net/repository/DEFAULT/BtoZ9ChesE0DEHM_SsABB7czN60.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:d5:94:c3:74:7a:97:91:82:f8:29:c0:32:03:89:d0:a3:15:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06da19f4285eb04d0310733f4ac00107b73337ad
Validity
Not Before: Jul 17 13:43:38 2024 GMT
Not After : Jul 16 13:48:38 2025 GMT
Subject: CN=7FC57DAC88B2883DF2A01FE82835F10A4C76F482
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:21:f8:0d:cf:d0:a4:0f:54:8b:b7:a7:19:f1:
3c:e8:09:76:84:82:f8:c6:22:4e:0a:f6:97:04:25:
8f:5a:60:f0:5e:e6:37:ea:dd:88:4d:fa:08:4a:a6:
16:0e:b5:7b:11:98:87:ba:60:ae:69:65:18:70:25:
5b:6a:7f:51:2e:25:4a:51:d3:4e:59:e7:1a:03:53:
76:8a:0c:38:a3:0f:1e:2d:9f:74:8f:20:21:8d:5a:
61:d2:25:6e:0b:cf:cc:8f:3f:4e:37:76:a2:47:db:
15:07:82:72:c9:e4:a5:d3:f7:7e:fc:37:74:e7:ea:
4e:ce:db:00:a2:6d:47:3b:94:e5:a5:84:4b:86:cc:
5f:03:ef:9c:2f:d3:15:e6:b5:e3:e9:d6:98:d4:c6:
a4:3a:99:b2:fe:ec:f0:2d:f4:c2:48:c6:c2:1c:b4:
91:b1:5f:85:9f:59:4b:7a:43:38:65:16:7f:ff:e1:
61:ff:ba:b8:f9:ac:bd:49:82:4a:8c:c0:fd:08:66:
ef:19:e7:cc:6d:fb:63:65:79:46:f5:f5:fc:cb:2b:
e8:29:c7:c0:ea:51:37:fb:00:e8:e2:38:7b:77:2a:
e8:cd:b6:bb:2f:45:67:34:23:19:83:d8:dd:ab:93:
7d:f5:85:f1:a8:29:b3:fc:f9:d3:1d:42:10:b1:21:
33:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:C5:7D:AC:88:B2:88:3D:F2:A0:1F:E8:28:35:F1:0A:4C:76:F4:82
X509v3 Authority Key Identifier:
keyid:06:DA:19:F4:28:5E:B0:4D:03:10:73:3F:4A:C0:01:07:B7:33:37:AD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/370be6cd-25d2-4f8b-88a4-b5109f49462d/1/06DA19F4285EB04D0310733F4AC00107B73337AD.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BtoZ9ChesE0DEHM_SsABB7czN60.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/370be6cd-25d2-4f8b-88a4-b5109f49462d/1/39312e3232382e3136382e302f32342d3234203d3e203439353831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.168.0/24
Signature Algorithm: sha256WithRSAEncryption
56:53:2a:6a:38:1b:35:b2:66:b1:ca:ce:1f:dc:ea:ee:9a:67:
e5:17:9d:95:cd:44:73:08:11:4f:25:cc:00:b7:a6:97:dd:ba:
a7:8d:5e:27:7f:44:39:22:1a:c3:87:26:61:04:c0:77:d5:d7:
e3:d4:51:d3:71:f4:89:c5:ae:c7:9d:0c:8f:ec:6d:ce:3b:08:
41:9b:63:34:a9:91:eb:13:94:2c:d5:3f:69:a2:8e:c4:fe:c9:
91:eb:4a:64:7d:f9:95:f1:b7:29:10:58:4d:82:0d:f1:8f:61:
04:ba:a7:aa:bd:6c:f0:11:b0:f5:d8:6f:13:5b:3d:1a:e3:43:
1c:d1:a8:66:a4:4b:38:68:b5:52:7f:10:88:1e:16:a4:3c:2f:
7a:92:8b:93:ab:7f:ec:cf:1d:c4:51:12:4a:d2:2d:b2:d7:f9:
9f:ce:0f:83:02:a9:b0:8f:d4:b6:14:92:f2:b9:9e:44:aa:e8:
8e:54:6e:86:9a:bf:10:6d:03:50:0d:ae:94:7d:26:4e:2a:9e:
37:3f:76:cb:76:3e:ed:0e:fd:2b:c4:10:dc:fa:d1:6a:20:5c:
df:89:9e:5f:fa:bb:20:34:b4:99:fb:dd:ae:74:14:08:95:db:
c9:86:fb:51:12:85:9b:e6:d6:45:24:98:2b:0c:9b:6d:42:cf:
e0:77:01:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 14:22:16 2024 by rpki-client on console-ams.rpki-client.org