Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3138352e39332e33342e302f32342d3234203d3e203631333137.roa
File: 3138352e39332e33342e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: y1nqD4NPfyu91xOp52PkVS0jOGsaJntayisrZKuH1Xg=
Subject key identifier: CE:7F:22:9A:9C:47:B3:E4:DA:10:47:D7:17:77:7C:F2:A5:BB:F3:65
Certificate issuer: /CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Certificate serial: 49D250BE5517D9AC22278685EBD378402FE6613F
Authority key identifier: DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3138352e39332e33342e302f32342d3234203d3e203631333137.roa
Signing time: Wed 09 Oct 2024 09:43:23 +0000
ROA not before: Wed 09 Oct 2024 09:38:23 +0000
ROA not after: Wed 08 Oct 2025 09:43:23 +0000
asID: 61317
IP address blocks: 185.93.34.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.mft
rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:d2:50:be:55:17:d9:ac:22:27:86:85:eb:d3:78:40:2f:e6:61:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Validity
Not Before: Oct 9 09:38:23 2024 GMT
Not After : Oct 8 09:43:23 2025 GMT
Subject: CN=CE7F229A9C47B3E4DA1047D717777CF2A5BBF365
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:4d:04:64:b8:93:a1:7a:c8:36:1d:ad:b1:77:
62:ab:1b:a7:0f:bf:35:86:e7:c0:93:c0:9a:31:86:
24:1a:9a:64:de:dd:6c:8d:0a:8e:b4:35:a0:43:b4:
4a:0f:1f:75:e6:b5:db:71:5e:30:02:a5:14:0b:f5:
ca:75:a4:3a:f9:d8:20:0e:ed:6e:b0:b6:59:6d:6e:
6d:27:8a:57:25:09:e7:e1:b4:ae:86:1f:42:19:f0:
cd:38:dd:24:54:b9:be:3e:a8:e0:33:42:73:9e:af:
4a:c1:83:f4:36:79:8c:f1:ba:02:8e:8e:62:61:70:
4f:c8:4a:64:1d:29:0a:ad:5a:ac:bc:b2:ef:83:dc:
3d:b8:50:ae:6d:1b:51:8c:4e:53:8e:88:52:b3:0d:
54:74:8f:4b:35:cf:97:06:ca:2b:49:a0:ca:80:59:
ad:3a:1e:52:be:83:b4:c2:09:cb:7d:46:4e:f5:02:
3e:28:11:6b:48:45:d5:8a:b8:f8:0e:ce:ce:be:a8:
9f:f0:ba:98:be:e2:0a:38:d1:94:80:74:c0:99:78:
2e:e7:3c:1e:ea:d5:7e:d6:f7:a6:77:8d:03:d0:52:
d6:e3:ec:b1:d7:b5:92:9c:55:47:8b:0e:87:b3:50:
42:e1:b1:6f:0d:48:45:66:44:bc:17:2a:4c:8c:59:
48:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:7F:22:9A:9C:47:B3:E4:DA:10:47:D7:17:77:7C:F2:A5:BB:F3:65
X509v3 Authority Key Identifier:
keyid:DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3138352e39332e33342e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.93.34.0/24
Signature Algorithm: sha256WithRSAEncryption
34:0a:93:b8:0f:bf:eb:52:19:77:a6:12:32:f9:6f:52:aa:34:
6b:a4:81:78:55:83:25:9c:84:75:1e:b0:4b:f0:a3:1a:07:dc:
74:e6:02:0f:cb:a6:34:25:91:d7:41:f0:e6:8a:59:29:52:37:
6e:fb:61:ae:8b:d9:40:cb:32:cc:93:1d:bc:08:35:85:fb:50:
0f:48:ec:00:59:98:c9:58:56:21:6d:4d:a5:14:b0:2e:7e:f3:
93:c0:b6:6e:8e:19:03:90:5a:3b:0f:76:28:b3:60:ee:a7:8a:
12:94:5e:c7:e5:06:df:0c:c6:0f:83:0b:7d:c7:6d:28:2c:fc:
6a:92:60:f7:4d:18:e5:13:11:ac:a0:7b:7a:de:d0:86:68:2d:
dc:03:ad:64:90:a2:16:ea:b7:cd:76:8a:d6:80:2a:16:93:72:
1b:59:f9:21:9a:62:4e:db:34:a8:8f:06:c1:15:4e:2f:8a:62:
77:34:16:54:56:5c:f9:81:80:60:6f:63:24:0f:f8:24:5f:5f:
f7:f5:d1:ae:66:a5:84:43:6d:17:a8:45:1d:97:f5:58:e1:28:
15:4e:e6:ea:38:13:49:33:fe:a1:d5:3f:85:55:be:86:4b:89:
4f:91:83:7c:59:7e:04:36:be:4c:d4:b1:5e:28:a2:2f:c8:78:
0d:8b:3f:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 14:22:19 2024 by rpki-client on console-ams.rpki-client.org