Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/3139342e3135302e3230352e302f32342d3234203d3e20333939363431.roa
File: 3139342e3135302e3230352e302f32342d3234203d3e20333939363431.roa (raw, json)
Hash identifier: +ittTHK2Y/PI4KOPhOv06kv7JsYpK4eqYdWUJIV9QvM=
Subject key identifier: 65:C0:81:39:12:A2:48:33:0F:8B:D8:1E:D5:7C:D3:72:17:30:A3:F5
Certificate issuer: /CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Certificate serial: 0629531387B534212EAB22F1F60DD38A1619D027
Authority key identifier: 62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/3139342e3135302e3230352e302f32342d3234203d3e20333939363431.roa
Signing time: Fri 04 Oct 2024 20:43:22 +0000
ROA not before: Fri 04 Oct 2024 20:38:22 +0000
ROA not after: Fri 03 Oct 2025 20:43:22 +0000
asID: 399641
IP address blocks: 194.150.205.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.mft
rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Dec 2024 08:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:29:53:13:87:b5:34:21:2e:ab:22:f1:f6:0d:d3:8a:16:19:d0:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Validity
Not Before: Oct 4 20:38:22 2024 GMT
Not After : Oct 3 20:43:22 2025 GMT
Subject: CN=65C0813912A248330F8BD81ED57CD3721730A3F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:75:c3:f2:57:2d:3c:e7:2c:ef:96:77:d4:e2:
38:7c:25:48:ea:34:27:c1:a2:e2:16:22:92:fd:83:
68:27:fd:7d:1a:01:5c:c4:55:17:99:af:42:bb:8f:
2b:2f:07:98:80:06:18:dc:f5:ed:f3:bc:25:7d:46:
3e:05:07:7a:20:33:79:4b:8e:c0:4d:9f:e2:db:07:
ce:c5:3b:4d:78:54:39:0d:d9:75:64:54:ba:f4:3b:
31:cf:74:c1:1c:5c:fa:21:8d:79:7b:63:a6:ae:61:
a5:49:ca:0a:26:91:43:00:47:5d:da:ac:55:77:f3:
a9:b9:f2:fd:5b:99:64:9d:c4:20:bb:e5:dc:1c:26:
fa:38:ee:a3:bc:5f:35:64:41:77:31:23:83:43:68:
4b:74:1b:6e:0d:5c:8e:bf:a1:1a:b1:4f:51:28:52:
9a:a9:d3:73:57:02:db:65:82:1d:24:65:1f:b8:40:
99:09:aa:c1:f7:bc:a2:99:9c:6a:82:78:75:2c:c4:
c4:81:f9:cd:4d:5e:2a:6a:3d:67:e0:4d:b5:5f:7a:
cd:b2:45:f1:d9:a9:55:e3:b7:7a:4c:b5:5a:ca:9e:
84:d6:41:81:1c:ff:35:77:99:53:68:39:6f:3c:21:
0c:f4:bb:67:a9:15:a8:21:ab:2f:3e:73:b0:50:40:
a6:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:C0:81:39:12:A2:48:33:0F:8B:D8:1E:D5:7C:D3:72:17:30:A3:F5
X509v3 Authority Key Identifier:
keyid:62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/3139342e3135302e3230352e302f32342d3234203d3e20333939363431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.150.205.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:1a:ed:ba:ee:6e:fd:cc:5c:69:ff:0e:28:42:cc:ee:b9:07:
05:71:b1:5f:03:69:51:52:18:61:7b:4e:81:b5:b2:a3:01:d0:
ec:3d:1d:ff:9f:2e:07:5b:a3:86:9c:dd:65:0a:60:30:7f:b3:
52:f5:03:13:3b:ed:8f:70:70:c5:34:47:33:be:68:ef:93:ec:
cd:92:29:28:57:41:30:08:69:15:c3:a4:d4:31:cc:b4:50:05:
82:58:7c:da:c2:a6:0b:e5:46:aa:b1:d3:45:ac:68:10:0b:8d:
30:57:0c:dc:d8:67:ef:9d:af:4a:68:81:d0:62:d9:a3:3b:2a:
c1:df:b5:39:13:17:b6:73:02:76:f8:1d:04:75:3d:14:e6:28:
50:74:77:b9:73:95:14:4c:76:25:c5:05:96:c6:23:44:d9:22:
f2:6e:93:0a:54:cf:b6:bd:6a:26:77:05:ff:f2:61:40:e0:e4:
09:8c:f1:aa:36:cd:0b:a6:3c:98:d7:90:3b:ad:c0:9b:24:65:
8d:5c:b9:d5:af:6a:19:21:0d:4a:f2:10:46:e5:0e:65:b7:ba:
93:6f:19:50:8d:f6:32:0b:ab:32:50:97:11:e5:c5:25:19:a3:
ae:e7:c1:9b:c6:7c:9d:a7:6f:c5:9f:32:ee:aa:09:06:95:fb:
e6:79:e0:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Dec 1 13:51:09 2024 by rpki-client on console-ams.rpki-client.org