Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/3139342e35302e3233332e302f32342d3234203d3e203336333532.roa
File: 3139342e35302e3233332e302f32342d3234203d3e203336333532.roa (raw, json)
Hash identifier: Z5BhvkDe9Ds/Ly48LBJuyPq4vDupbmIwulpgQWhUSUk=
Subject key identifier: 6F:06:12:A0:59:D0:F3:2D:BE:0A:C6:69:5D:77:0D:B6:AF:8F:A6:6C
Certificate issuer: /CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Certificate serial: 7CB76C7EB07B4BA7B861309065EA9DA3DABC9491
Authority key identifier: 62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/3139342e35302e3233332e302f32342d3234203d3e203336333532.roa
Signing time: Wed 20 Nov 2024 07:43:28 +0000
ROA not before: Wed 20 Nov 2024 07:38:28 +0000
ROA not after: Wed 19 Nov 2025 07:43:28 +0000
asID: 36352
IP address blocks: 194.50.233.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.mft
rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:b7:6c:7e:b0:7b:4b:a7:b8:61:30:90:65:ea:9d:a3:da:bc:94:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Validity
Not Before: Nov 20 07:38:28 2024 GMT
Not After : Nov 19 07:43:28 2025 GMT
Subject: CN=6F0612A059D0F32DBE0AC6695D770DB6AF8FA66C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:4e:13:21:3e:a9:91:96:a7:0d:5f:b6:64:db:
0f:fb:d8:46:1d:49:35:83:79:64:ae:8a:cf:99:92:
1e:eb:4c:d5:f5:19:5a:0d:65:cf:b1:00:2b:c8:2f:
08:3e:75:16:c0:be:9c:65:6b:c8:c3:6e:88:29:57:
34:9e:a2:9c:7b:6b:4f:90:f2:78:54:d2:68:32:b1:
82:7b:df:c5:af:a3:ec:35:46:e5:c2:9c:ef:d6:df:
e7:db:29:e9:e7:7d:bb:3c:a1:6f:5b:ba:b5:e3:92:
a8:69:24:f3:8e:13:16:fa:1b:07:dc:38:81:36:04:
ba:10:43:05:33:f2:40:2a:ed:90:35:7d:a7:95:75:
43:3e:51:64:12:fd:1d:5c:9a:2a:ec:be:0c:2b:eb:
17:0b:9c:7d:4e:ba:32:54:66:ee:cf:b1:2d:99:4d:
05:cb:9d:01:97:7a:06:d7:f7:61:cf:fb:11:ad:66:
ec:f3:65:db:15:1f:f4:70:ee:b0:92:55:f3:83:b4:
13:51:24:49:6d:70:12:cf:b2:df:d3:e6:46:ef:4d:
48:34:4a:58:53:02:d7:b4:ac:5b:20:8d:b3:a7:4e:
65:44:7c:a9:02:a1:93:01:3a:d5:16:e0:09:fe:30:
25:03:a4:9a:55:a3:19:7a:9a:87:8d:9e:d4:9b:d8:
3c:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:06:12:A0:59:D0:F3:2D:BE:0A:C6:69:5D:77:0D:B6:AF:8F:A6:6C
X509v3 Authority Key Identifier:
keyid:62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/3139342e35302e3233332e302f32342d3234203d3e203336333532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.233.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:7f:86:30:0f:ff:77:05:ff:8a:46:74:bb:cc:4a:6d:3c:a2:
c7:f5:78:35:03:1b:d9:6e:f0:af:29:d3:33:ff:c4:28:b3:ce:
69:2a:ee:ed:47:79:a8:82:0d:f1:2b:61:da:09:da:54:e9:85:
84:fc:f4:4e:23:1d:78:f8:88:48:f9:5d:6d:69:57:00:0f:10:
9f:c1:c4:4e:29:7b:6c:a0:9b:d2:ab:5b:5b:66:e4:81:77:47:
91:08:27:c1:a5:0d:13:2c:9e:ef:cb:62:1c:10:03:bb:72:71:
60:a5:aa:96:8a:ce:57:43:86:05:95:ff:dc:c1:3f:d3:2e:2b:
09:0a:fa:f9:86:d6:27:6a:53:53:6e:e3:f4:6c:f7:f9:16:5f:
3e:fb:62:8b:75:51:e4:d2:dd:06:93:51:8d:77:ed:79:cf:3d:
77:87:18:72:81:bf:7a:50:05:07:2c:58:2a:2e:b0:85:b7:fb:
c2:76:39:c7:d2:72:b2:96:fa:7b:2e:77:16:c7:34:0f:66:a4:
76:c6:62:9e:d7:19:66:22:d9:ae:e1:ab:d4:2a:eb:f4:12:42:
75:eb:c9:9b:fb:94:1a:bd:de:34:65:62:d3:05:04:d8:00:9d:
c4:50:0d:5b:64:e8:88:28:5b:ad:9b:1a:66:1f:7c:f2:cb:db:
98:de:d3:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:50:40 2024 by rpki-client on console-fra.rpki-client.org