Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/3139342e35302e3232342e302f32342d3234203d3e203631333137.roa
File: 3139342e35302e3232342e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: n1GzRZ/0jdjc9+WGEdgzo0IkvRnIp2RpSQ8rLAaLUuA=
Subject key identifier: 47:02:AF:25:76:E0:33:DF:20:80:C6:40:35:E7:5B:04:10:D2:C1:8E
Certificate issuer: /CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Certificate serial: 75CE5B600A3F466C0C920713E6917580CED26515
Authority key identifier: 62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/3139342e35302e3232342e302f32342d3234203d3e203631333137.roa
Signing time: Wed 20 Dec 2023 07:05:08 +0000
ROA not before: Wed 20 Dec 2023 07:00:08 +0000
ROA not after: Wed 18 Dec 2024 07:05:08 +0000
asID: 61317
IP address blocks: 194.50.224.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.mft
rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Apr 2024 11:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:ce:5b:60:0a:3f:46:6c:0c:92:07:13:e6:91:75:80:ce:d2:65:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Validity
Not Before: Dec 20 07:00:08 2023 GMT
Not After : Dec 18 07:05:08 2024 GMT
Subject: CN=4702AF2576E033DF2080C64035E75B0410D2C18E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:26:66:6d:aa:57:6a:03:a1:88:7b:5e:68:e3:
78:11:53:65:ec:ea:73:18:85:f8:d7:c3:8a:38:97:
b3:48:44:e7:01:b5:46:01:e2:14:4b:02:11:5d:82:
d7:f6:c1:f3:c3:fa:b5:e0:9a:14:d1:59:38:81:45:
b8:27:6d:5f:3c:28:9a:c3:87:bc:0c:33:cf:85:30:
c9:36:ca:a3:9d:e1:e8:07:c1:5a:d4:90:49:ce:04:
b7:cf:4b:63:03:09:61:b1:3d:81:a5:1a:4a:fb:ee:
4f:27:d0:98:6c:a3:e5:6d:41:2c:ea:43:70:31:2b:
7c:0f:62:38:ac:d2:5a:15:bf:40:9e:a0:77:0e:4b:
61:5d:b6:ce:4c:ff:8c:36:dc:cf:a2:e2:bf:0f:18:
cc:84:ae:5b:76:91:97:91:10:3e:dc:8f:a8:50:9a:
16:89:f2:c9:d7:ce:0e:02:7c:ec:03:20:f6:48:9c:
d9:0c:07:18:c8:71:8b:b9:cc:73:ff:22:d8:fd:97:
67:66:c3:fa:0a:ea:90:25:cf:7a:1e:86:c7:38:26:
31:9b:42:ec:db:d4:4b:42:27:af:29:ae:b2:54:b5:
c3:8c:e2:05:50:67:17:4a:c5:b4:53:c1:11:f1:3b:
ab:bc:fc:aa:dd:3c:df:9a:2e:46:7b:09:90:e0:fd:
58:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:02:AF:25:76:E0:33:DF:20:80:C6:40:35:E7:5B:04:10:D2:C1:8E
X509v3 Authority Key Identifier:
keyid:62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/3139342e35302e3232342e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.224.0/24
Signature Algorithm: sha256WithRSAEncryption
38:67:5e:bc:78:c7:d3:ca:78:ef:3d:5a:ab:42:5b:69:19:69:
66:f0:2d:0b:18:69:85:66:be:5f:93:d8:a1:af:9b:00:0e:e6:
a6:62:ea:47:79:27:30:cd:b4:9e:46:54:ed:1a:e1:9f:aa:c2:
3a:1e:e8:7d:36:c6:a9:30:00:c1:66:8c:94:f9:bf:76:eb:b7:
c0:ed:f9:9c:35:93:16:e6:01:7e:e8:83:68:c3:4a:2d:20:c8:
8b:ff:1b:ba:44:8b:a0:8b:2e:32:f2:fb:c5:22:a2:e9:20:6e:
91:19:ac:a6:67:85:2a:d3:94:8e:43:37:db:3f:0f:2b:3f:f9:
c7:28:b2:3c:79:8e:03:d0:65:83:13:35:ef:98:5b:24:95:2a:
cd:9f:a4:ab:75:84:1f:58:5b:a8:0f:e7:ad:39:11:45:78:91:
09:f0:6b:69:98:df:3d:85:0c:61:7b:aa:71:e2:e9:36:a1:87:
7c:44:ae:fd:aa:b5:98:71:89:fb:88:c8:b0:1c:6d:92:1d:a2:
08:c9:d9:a3:19:61:27:f2:b1:c1:93:ef:c6:1e:81:42:08:63:
5c:ee:a0:af:db:31:6f:db:5a:28:78:b1:bd:8b:14:ae:c8:42:
7f:9f:7e:05:21:3a:5c:c8:62:7a:72:94:9e:de:0c:5d:a5:ef:
f9:cf:1f:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 14:48:45 2024 by rpki-client on console-ams.rpki-client.org