Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/3139342e3135302e3231302e302f32342d3234203d3e203239383032.roa
File: 3139342e3135302e3231302e302f32342d3234203d3e203239383032.roa (raw, json)
Hash identifier: ODBsEKdWbq9SBbjVUkTb8OhkM8+nV1b3ZyB0v2vCu/Y=
Subject key identifier: C6:F1:C8:B5:A3:FF:30:07:C7:AD:56:C1:D2:04:48:B6:25:B4:D7:EF
Certificate issuer: /CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Certificate serial: 3C0F7945297587AF1AE4E07E549C30421455FE93
Authority key identifier: 62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/3139342e3135302e3231302e302f32342d3234203d3e203239383032.roa
Signing time: Fri 18 Oct 2024 11:43:25 +0000
ROA not before: Fri 18 Oct 2024 11:38:25 +0000
ROA not after: Fri 17 Oct 2025 11:43:25 +0000
asID: 29802
IP address blocks: 194.150.210.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.mft
rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:0f:79:45:29:75:87:af:1a:e4:e0:7e:54:9c:30:42:14:55:fe:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Validity
Not Before: Oct 18 11:38:25 2024 GMT
Not After : Oct 17 11:43:25 2025 GMT
Subject: CN=C6F1C8B5A3FF3007C7AD56C1D20448B625B4D7EF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a9:6a:e3:1a:f4:35:ee:06:1c:4d:6d:5a:d7:
2d:b1:69:ef:78:c4:d6:04:72:34:2b:db:11:de:1a:
ea:6e:40:3b:26:c3:f1:00:cc:76:4b:ac:82:21:93:
2c:09:df:8e:64:7d:3a:b5:3a:bf:9f:80:9a:1c:4e:
f6:fd:25:1a:88:5b:7f:92:07:5b:6b:b2:10:6e:02:
e4:2b:44:76:86:47:43:ed:84:24:7a:01:4b:7a:d6:
50:b9:4e:0f:25:5c:eb:08:ac:b4:11:8d:68:d0:f5:
bf:59:87:d9:8f:39:52:24:3a:ec:f8:8e:9b:51:84:
b9:e2:c3:e1:a2:ec:db:84:10:e3:44:3c:93:c2:a7:
85:20:ae:c1:92:26:d9:ed:85:39:0f:27:d7:aa:8c:
7d:f7:ec:e8:77:9b:87:79:9b:0a:35:e8:e5:83:1c:
d5:f0:97:29:9f:8b:5b:66:b3:fa:20:6f:8e:44:07:
d5:3d:60:6e:af:8e:34:9d:a7:08:5f:d8:1a:a9:98:
58:f0:f0:ce:12:3c:9d:3f:70:77:ed:d5:65:ab:30:
8c:ba:06:26:e8:34:d7:90:1a:16:a3:dc:43:64:0f:
04:ae:ac:c7:93:48:17:a1:7f:cb:40:20:15:79:9f:
89:fa:0d:98:35:2a:f8:47:4b:4c:f3:4e:06:29:74:
82:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:F1:C8:B5:A3:FF:30:07:C7:AD:56:C1:D2:04:48:B6:25:B4:D7:EF
X509v3 Authority Key Identifier:
keyid:62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/3139342e3135302e3231302e302f32342d3234203d3e203239383032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.150.210.0/24
Signature Algorithm: sha256WithRSAEncryption
df:6d:5f:42:45:0b:31:cd:83:a1:e5:eb:52:68:25:bd:28:04:
c3:29:e5:61:37:7f:49:f1:32:2e:34:9d:55:ad:b2:2e:fb:28:
17:07:be:80:55:76:88:3b:4d:ca:d6:2c:aa:76:0a:93:66:6a:
0c:6d:e1:b1:f0:a8:7c:dd:ea:82:d3:e6:a2:0c:75:a1:23:45:
27:2c:5b:57:00:92:05:f9:eb:76:8f:86:e4:af:be:b0:8d:33:
46:52:dc:b8:76:7c:c3:6f:c6:2f:4b:c4:62:2b:36:0c:9f:0d:
30:04:08:37:69:2e:f1:4d:a2:17:d7:19:be:05:82:97:f4:8f:
1d:4a:cc:1c:92:16:18:86:2c:77:7f:21:65:2c:4e:f4:9e:4c:
4c:17:d3:92:4c:32:44:cd:26:94:12:75:d8:c1:e7:af:2d:eb:
d7:e7:6e:51:62:92:8e:0d:bd:c4:42:8c:c1:50:e5:03:e6:b6:
04:e7:24:4b:ad:ac:70:24:96:78:07:d0:96:09:8a:be:d1:46:
ea:43:a8:95:36:7f:98:a5:75:66:4a:63:4e:68:89:10:40:b8:
7b:72:8b:a8:76:d9:c4:3e:37:65:c7:e5:5c:52:93:08:8b:ef:
cf:f0:2c:e0:b4:a1:36:2d:20:4c:6b:a5:70:9e:70:1b:a0:97:
9a:f0:fe:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:50:40 2024 by rpki-client on console-fra.rpki-client.org