Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/3139342e35302e3233332e302f32342d3234203d3e203535323836.roa
File: 3139342e35302e3233332e302f32342d3234203d3e203535323836.roa (raw, json)
Hash identifier: 7iWQUEGLo5gLno4ImCnE7rNFOzk03iEZ+kQK7Yzuosk=
Subject key identifier: 79:EB:4C:C3:F0:07:36:50:D5:69:70:76:65:30:7F:D2:CD:7C:65:37
Certificate issuer: /CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Certificate serial: 72CB724C4F5ECA74344F881FA7CB204B6888C151
Authority key identifier: 62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/3139342e35302e3233332e302f32342d3234203d3e203535323836.roa
Signing time: Wed 20 Dec 2023 07:05:08 +0000
ROA not before: Wed 20 Dec 2023 07:00:08 +0000
ROA not after: Wed 18 Dec 2024 07:05:08 +0000
asID: 55286
IP address blocks: 194.50.233.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.mft
rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 May 2024 11:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:cb:72:4c:4f:5e:ca:74:34:4f:88:1f:a7:cb:20:4b:68:88:c1:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Validity
Not Before: Dec 20 07:00:08 2023 GMT
Not After : Dec 18 07:05:08 2024 GMT
Subject: CN=79EB4CC3F0073650D569707665307FD2CD7C6537
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:15:a6:a4:bb:59:0c:87:5f:79:da:5d:9c:28:
30:7a:98:5d:0b:33:0b:79:8f:d3:20:e5:c4:b7:99:
17:f2:bd:5f:85:79:c6:56:22:87:76:71:3e:0e:78:
50:eb:2f:d8:26:61:a8:32:9b:de:ad:3f:12:43:18:
83:4f:2e:e0:a3:7a:77:70:60:4c:02:e5:29:a7:c5:
5b:88:da:42:b7:9e:09:03:52:56:e3:9f:be:9f:00:
cf:8b:97:3d:54:0d:40:25:0f:e1:38:45:fc:dc:12:
90:14:29:33:53:1f:29:dc:07:fb:84:f3:8b:9f:98:
6c:7b:44:0e:6a:3a:14:b4:67:50:99:64:8b:30:e6:
0a:6c:2c:56:dd:a7:27:a1:83:79:67:69:ab:2d:dc:
50:f3:f1:e1:b9:7c:56:f8:58:86:11:24:a5:00:8a:
05:08:67:cf:a8:72:f4:f1:cb:51:22:91:7f:47:61:
54:fe:0e:3e:b3:69:3d:8b:db:1c:d1:e7:92:d1:e0:
0a:22:f5:78:05:52:a3:f2:74:96:dc:e8:6f:3e:6f:
f3:5a:60:ee:58:e7:96:ce:51:8d:d4:45:3d:25:f8:
68:12:40:56:5e:cd:76:99:aa:33:89:4e:62:59:08:
81:4c:d7:80:40:6e:cb:10:83:b4:92:86:e3:79:58:
f5:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:EB:4C:C3:F0:07:36:50:D5:69:70:76:65:30:7F:D2:CD:7C:65:37
X509v3 Authority Key Identifier:
keyid:62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/3139342e35302e3233332e302f32342d3234203d3e203535323836.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.233.0/24
Signature Algorithm: sha256WithRSAEncryption
12:37:6e:8b:a8:7b:3e:46:ca:5f:9f:8c:34:d1:cf:c0:98:8f:
92:9d:34:61:28:65:ce:21:ae:99:5e:ab:bf:5c:b1:8c:89:24:
15:6f:d2:f5:c2:6c:ec:45:7f:c5:0f:9f:49:b4:45:28:52:69:
99:c2:aa:4f:40:bc:3e:0f:4e:cd:b2:b6:c2:6d:35:c6:e8:77:
28:d7:e8:ba:4c:59:1a:ad:e8:ee:05:9c:41:c1:9e:30:5c:e0:
16:d3:72:8b:26:99:6e:f4:27:da:81:77:dd:e7:52:0d:dd:fa:
e7:0c:12:40:9b:42:b1:e7:ff:be:d6:74:fe:37:90:b3:d3:55:
cb:a1:0f:24:47:5e:f0:9f:ce:c9:9a:78:b1:2e:a8:d5:7f:4f:
bd:32:1b:ab:ae:fc:63:90:2a:32:b9:49:14:43:b7:17:5f:50:
62:e7:7f:d9:58:c4:d4:60:6d:94:74:79:94:f0:0a:b0:bd:4d:
9e:ce:9f:ea:c8:48:51:19:09:4a:65:c6:3e:a5:52:76:9d:8b:
4e:1d:72:4c:8c:dd:11:16:d4:7f:8f:c2:17:e4:62:e8:5a:09:
48:90:b5:32:49:ce:fe:2d:77:f4:b0:73:ec:7f:7c:a4:e8:12:
e0:60:3d:62:54:68:12:51:5d:e2:2e:29:09:d4:e8:24:1d:45:
cf:6e:61:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 17:38:35 2024 by rpki-client on console-fra.rpki-client.org