Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3139352e3231312e35312e302f32342d3234203d3e203136323736.roa
File: 3139352e3231312e35312e302f32342d3234203d3e203136323736.roa (raw, json)
Hash identifier: 1sUlb2zNWqWQgWU+mlqsqfe0HbN7mTyzHwlmceZ8bq4=
Subject key identifier: E7:0E:51:E6:28:C5:1F:A6:C4:11:FF:77:F3:E1:2E:97:EE:4F:46:B8
Certificate issuer: /CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Certificate serial: 59EF5CD7AB92FEA17A35226AB5ADB95ADC8D04EA
Authority key identifier: B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3139352e3231312e35312e302f32342d3234203d3e203136323736.roa
Signing time: Sun 10 Nov 2024 19:42:34 +0000
ROA not before: Sun 10 Nov 2024 19:37:34 +0000
ROA not after: Sun 09 Nov 2025 19:42:34 +0000
asID: 16276
IP address blocks: 195.211.51.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:ef:5c:d7:ab:92:fe:a1:7a:35:22:6a:b5:ad:b9:5a:dc:8d:04:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Validity
Not Before: Nov 10 19:37:34 2024 GMT
Not After : Nov 9 19:42:34 2025 GMT
Subject: CN=E70E51E628C51FA6C411FF77F3E12E97EE4F46B8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:36:f7:08:81:eb:d3:46:de:83:d6:4a:6e:72:
16:21:db:e7:fa:b6:72:8a:8d:22:b8:ae:ad:26:2b:
a6:f3:0b:5a:79:5b:b1:98:2e:7f:23:1d:d9:00:a9:
e6:ea:fc:cf:aa:0e:3b:c4:e6:47:8d:4b:ee:fc:f9:
ca:b8:1f:d8:8a:c6:8e:da:6d:07:0c:2c:e5:24:1c:
49:b6:4a:af:c9:42:8f:7b:ce:5a:86:d9:39:17:5a:
28:d9:55:e2:67:c9:08:e0:40:e0:c7:d8:92:b5:a8:
3b:6e:e7:b2:4e:37:ad:c9:ec:15:45:a5:de:f8:2c:
bd:7e:22:27:03:4a:fc:c5:a3:73:c6:85:84:9c:65:
21:a3:c8:17:13:2a:54:8c:f7:a9:75:07:2b:82:7f:
d7:fd:34:7e:dd:20:e1:8e:e6:5a:ad:25:90:eb:50:
55:36:0e:ea:77:5b:71:8f:00:0f:43:12:e9:6a:fd:
4a:fb:fc:97:a8:18:ee:2d:a0:75:20:6b:da:a9:6e:
9c:14:75:77:19:92:01:0f:0b:e7:d5:fb:60:ae:aa:
00:d3:bd:cc:eb:93:77:03:e0:fd:d8:30:21:1a:99:
ab:13:d4:b0:47:5c:02:12:b8:f6:d3:3e:d0:17:05:
e1:11:c2:7f:be:d1:65:62:47:00:c7:d8:f7:9d:7a:
74:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:0E:51:E6:28:C5:1F:A6:C4:11:FF:77:F3:E1:2E:97:EE:4F:46:B8
X509v3 Authority Key Identifier:
keyid:B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3139352e3231312e35312e302f32342d3234203d3e203136323736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.211.51.0/24
Signature Algorithm: sha256WithRSAEncryption
88:8e:62:b5:02:e2:d4:76:95:28:76:43:21:7b:50:fa:7d:d4:
b0:1f:23:bc:93:30:10:54:4a:61:50:31:37:0b:20:56:ab:79:
cf:06:dd:47:6a:2e:1a:5f:a6:97:7e:76:b1:b0:67:05:f0:e3:
4a:8f:a0:43:b9:55:bd:44:92:a9:20:46:53:bb:93:2b:28:77:
59:9a:fb:88:d3:32:a2:b3:a5:f0:e5:d9:c8:48:62:51:ea:61:
5a:06:ca:b3:f1:a6:3c:b6:f8:94:be:f3:98:1f:4a:28:cf:f5:
22:18:ed:3f:c9:5e:75:a6:28:ef:ee:36:8f:cc:ba:53:0b:71:
7b:7b:38:de:ee:38:26:4a:53:ba:5b:d9:98:fa:cb:3f:d1:c4:
d4:bb:fc:05:ac:de:7f:91:d6:e4:8b:b6:a8:ac:df:c7:ed:2b:
6a:c9:7e:eb:95:00:bf:a1:b4:84:31:2c:e4:15:68:39:8a:73:
87:74:0d:6a:a6:89:d5:66:e9:81:09:fb:d4:ef:93:32:1e:0f:
56:0e:9e:a7:4c:b5:e0:fc:18:bd:14:56:f1:e3:06:e7:38:f4:
77:c2:cb:45:c5:51:26:55:8f:e9:ba:ea:7f:f2:ec:6c:b2:eb:
e3:70:4f:93:1c:b8:34:38:3c:db:6e:cd:81:2d:5d:64:f0:b6:
b3:35:ce:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:15:43 2024 by rpki-client on console-ams.rpki-client.org