Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/3139342e3135302e3231302e302f32342d3234203d3e203631333137.roa
File: 3139342e3135302e3231302e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: E52y/G4yKZvAaVKMVU5zxFEx3TNOimX9nTLblYUtt3U=
Subject key identifier: 21:2D:33:BD:D4:B7:62:9F:A0:64:19:4F:8C:F8:A7:F8:F1:56:6C:7A
Certificate issuer: /CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Certificate serial: 7329B7ECEC47844E7CEF2D6DB36C1951C15EC752
Authority key identifier: 62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/3139342e3135302e3231302e302f32342d3234203d3e203631333137.roa
Signing time: Fri 18 Oct 2024 13:43:25 +0000
ROA not before: Fri 18 Oct 2024 13:38:25 +0000
ROA not after: Fri 17 Oct 2025 13:43:25 +0000
asID: 61317
IP address blocks: 194.150.210.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.mft
rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:29:b7:ec:ec:47:84:4e:7c:ef:2d:6d:b3:6c:19:51:c1:5e:c7:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Validity
Not Before: Oct 18 13:38:25 2024 GMT
Not After : Oct 17 13:43:25 2025 GMT
Subject: CN=212D33BDD4B7629FA064194F8CF8A7F8F1566C7A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:3d:f3:11:07:5c:fb:3d:6e:80:3c:8f:d4:46:
3f:0c:9f:70:63:91:1d:07:7e:ae:58:c3:48:2a:36:
a8:90:dc:d0:f3:bc:a2:d7:41:95:a0:88:32:95:41:
eb:9b:56:61:bc:e3:4f:b3:43:b9:14:a2:88:ce:a1:
c9:ae:f0:1c:8c:80:9c:91:9a:3a:5c:86:f4:cb:7a:
37:d4:cb:97:61:0f:fc:b9:8f:6c:00:15:4c:e9:18:
0e:d0:ca:f6:c0:5d:34:7f:6a:b2:aa:9f:28:0e:cb:
6a:fd:eb:a8:27:68:7b:3c:3b:b0:bd:34:a7:ec:b7:
1c:25:93:5b:a8:8d:3d:c6:a2:60:7c:6d:0a:f9:f8:
82:f2:2c:78:95:2d:66:e4:58:ad:b2:4e:4b:2c:72:
60:9f:da:07:28:d2:6d:3e:4f:5a:15:15:59:ee:44:
4a:46:07:7a:ff:ac:7e:75:7a:b0:75:23:07:15:d4:
d6:c5:20:f8:32:0b:e9:2b:fa:c6:f2:77:8e:cf:85:
00:21:14:b3:a9:f4:bd:4f:c1:0c:07:8c:3e:f2:f8:
83:a7:36:1c:c9:1c:54:40:f2:62:a6:8f:a0:ae:c8:
79:18:76:36:5c:6a:b2:93:15:5e:96:5b:1a:af:58:
c5:28:b7:e9:15:4d:18:7b:81:86:fc:83:23:d3:be:
7e:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:2D:33:BD:D4:B7:62:9F:A0:64:19:4F:8C:F8:A7:F8:F1:56:6C:7A
X509v3 Authority Key Identifier:
keyid:62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/3139342e3135302e3231302e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.150.210.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:36:39:35:ad:32:3a:bd:79:b9:64:e0:01:45:09:a7:e2:8a:
69:f6:64:dd:9c:c7:a2:dd:66:1c:b8:56:dc:b2:7f:ff:24:23:
7a:24:ba:f2:83:e8:42:be:91:ba:08:96:e5:ee:1c:7c:fe:0f:
34:0b:68:1d:70:60:ff:3a:97:d6:f6:7d:c4:1d:8e:b1:c0:3d:
70:6f:6a:02:0c:3f:7c:41:55:53:0b:1e:22:28:93:22:3a:7e:
d2:de:f9:0d:bc:74:f2:5f:37:2d:51:aa:19:39:8b:ec:6d:e9:
8a:0d:80:ab:33:ae:57:c5:4d:b7:1b:28:a6:9b:8b:24:57:f8:
76:80:f0:32:35:71:da:af:87:9a:74:3a:11:05:c5:81:c1:dd:
89:e4:5a:74:4f:c9:fd:a0:84:a6:81:3b:02:3c:7c:65:33:5c:
53:42:33:42:1c:a6:72:46:57:de:50:60:24:d1:e1:c4:3b:92:
4f:6a:3f:6a:f8:ac:6b:98:51:67:ad:9e:84:f6:0c:a1:19:8c:
e5:47:ba:2c:9b:de:a6:96:89:09:4a:bd:a7:8a:fc:30:99:9c:
92:a1:35:ed:42:41:e5:69:67:2b:fd:2a:75:38:c7:cc:52:8d:
55:2b:e0:86:4e:f4:6c:3d:92:0b:d9:f7:f8:fc:aa:5c:a2:7b:
fd:0c:5d:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 18:39:44 2024 by rpki-client on console-ams.rpki-client.org