Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/3139342e3135302e3231312e302f32342d3234203d3e203630373532.roa
File: 3139342e3135302e3231312e302f32342d3234203d3e203630373532.roa (raw, json)
Hash identifier: 4Ou6n55CqRntyBog3HkXd9EZ2h/zH4GjbSazPw89qXA=
Subject key identifier: 7B:69:1D:96:9F:D9:9E:C3:6F:D8:83:94:78:26:00:6C:01:8A:F3:26
Certificate issuer: /CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Certificate serial: 52BDA30B117BE3D171ECBB2193F0AF30B37586B7
Authority key identifier: 62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/3139342e3135302e3231312e302f32342d3234203d3e203630373532.roa
Signing time: Mon 29 Jan 2024 15:45:48 +0000
ROA not before: Mon 29 Jan 2024 15:40:48 +0000
ROA not after: Mon 27 Jan 2025 15:45:48 +0000
asID: 60752
IP address blocks: 194.150.211.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.mft
rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 25 May 2024 20:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:bd:a3:0b:11:7b:e3:d1:71:ec:bb:21:93:f0:af:30:b3:75:86:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Validity
Not Before: Jan 29 15:40:48 2024 GMT
Not After : Jan 27 15:45:48 2025 GMT
Subject: CN=7B691D969FD99EC36FD883947826006C018AF326
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a4:8d:a0:a5:61:eb:49:cf:20:4b:ef:4b:91:
f5:07:fd:bb:e5:19:6f:58:71:e7:48:d3:a0:f7:76:
91:56:37:63:00:e9:00:40:21:d7:e2:a4:d5:6e:d9:
ee:41:5b:0a:bd:f8:5d:0f:c0:c1:bd:70:52:75:2d:
32:64:42:2c:5a:bd:02:3c:c2:68:f4:73:3f:c4:32:
9c:71:91:b0:71:a9:f2:96:88:af:ab:30:c2:b7:1f:
3a:0f:6f:1f:55:33:69:64:98:a0:59:1d:64:c6:a7:
f9:1c:0e:c1:52:75:81:24:22:1f:70:2f:83:b9:43:
8e:f3:e8:62:c2:35:01:14:8f:7e:ce:d8:36:ce:b0:
f9:be:2b:5f:45:2c:a5:96:a4:7e:b2:f8:67:cc:c5:
55:8e:bd:21:e4:4e:8e:44:50:e4:1c:0f:71:7d:fb:
37:4c:f4:c3:1d:23:18:e1:3b:0d:12:f8:ef:07:a3:
6b:a1:93:da:52:98:62:5f:33:d8:d8:96:e8:4c:cb:
11:07:89:a8:e2:98:37:f1:e3:2a:2f:7e:37:69:ab:
32:2d:50:dc:e4:b1:39:86:f7:cd:b7:e9:81:2e:d5:
b6:8c:ac:dc:39:73:79:19:22:1d:9e:ed:33:11:c3:
5e:7f:8f:6d:fd:d1:e8:db:b3:ac:0d:37:2a:69:ff:
d1:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:69:1D:96:9F:D9:9E:C3:6F:D8:83:94:78:26:00:6C:01:8A:F3:26
X509v3 Authority Key Identifier:
keyid:62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/3139342e3135302e3231312e302f32342d3234203d3e203630373532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.150.211.0/24
Signature Algorithm: sha256WithRSAEncryption
97:82:ce:4e:05:51:d2:7d:26:eb:d2:82:c9:75:5a:60:32:01:
11:1a:2f:76:2e:bc:de:61:87:42:8a:cb:c5:f6:4a:ef:f1:bd:
76:06:fa:60:b1:ee:53:08:1e:35:1a:76:5e:3c:6b:68:0c:df:
8b:81:49:dc:e2:ed:92:f9:b6:4d:f9:bb:49:32:18:43:5e:a2:
cd:25:a4:14:9f:ed:60:eb:05:13:9e:db:ea:11:cb:88:38:d6:
fa:70:2c:26:c8:7b:b3:13:f6:d6:80:5c:79:eb:5c:0d:b0:8c:
2d:1f:23:f0:21:55:88:45:f0:bd:89:36:a2:a1:37:49:a8:d7:
dc:a4:f0:ad:81:3a:48:9d:31:98:6b:57:0a:da:73:60:59:48:
d9:70:90:42:a5:36:71:cb:18:a0:4c:1b:a8:1a:66:9a:2f:0e:
7e:5a:2d:76:48:e9:74:a3:0d:ef:55:43:d5:c6:6e:25:57:a2:
ed:e3:59:f8:82:0e:d9:9d:50:a3:c5:4d:3e:35:ef:4a:36:d6:
25:a4:dc:02:b8:9a:f3:21:d6:35:60:10:ec:18:e6:e6:30:88:
61:eb:a6:32:20:52:3c:c0:6f:90:d9:83:0e:ef:a8:8f:e2:7c:
07:c0:74:cf:54:50:34:26:d8:f6:df:3a:6b:7b:ae:69:c0:47:
96:0e:56:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 25 05:08:22 2024 by rpki-client on console-ams.rpki-client.org