Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3139352e382e34392e302f32342d3234203d3e203630343538.roa
File: 3139352e382e34392e302f32342d3234203d3e203630343538.roa (raw, json)
Hash identifier: lV0XILGs1QioGzSnLrP4YyMUiDRZ9hnyAG1qPrLmJBU=
Subject key identifier: 6B:47:AC:F2:0B:EB:10:72:C8:AB:79:C8:9A:20:00:5D:CA:AD:2C:54
Certificate issuer: /CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Certificate serial: 6D9B553649C64A03C87B7DAEEA26CC7D0CD98589
Authority key identifier: B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3139352e382e34392e302f32342d3234203d3e203630343538.roa
Signing time: Mon 03 Jul 2023 05:42:02 +0000
ROA not before: Mon 03 Jul 2023 05:37:02 +0000
ROA not after: Mon 01 Jul 2024 05:42:02 +0000
asID: 60458
IP address blocks: 195.8.49.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:9b:55:36:49:c6:4a:03:c8:7b:7d:ae:ea:26:cc:7d:0c:d9:85:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Validity
Not Before: Jul 3 05:37:02 2023 GMT
Not After : Jul 1 05:42:02 2024 GMT
Subject: CN=6B47ACF20BEB1072C8AB79C89A20005DCAAD2C54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:75:29:f8:04:3c:5e:24:b5:8b:7b:91:28:11:
00:15:92:24:43:2a:39:dc:c9:0c:cd:75:1e:b6:32:
0d:6e:ad:24:55:30:22:da:be:a6:6c:78:b6:a9:13:
60:84:ec:d7:84:6c:89:9d:e6:3c:86:1a:f4:cb:35:
b5:c7:c7:cd:3f:12:71:8c:47:65:e6:70:c2:ad:39:
10:42:dc:f3:45:3d:ee:0e:b9:5d:34:ef:99:64:29:
3b:7f:24:e9:31:13:ab:71:1d:74:e5:81:80:4a:83:
37:4c:07:a0:8e:1e:20:d0:79:f5:0a:53:50:2b:e5:
1c:94:cb:af:1b:e7:af:38:2e:64:7c:09:20:62:e5:
4b:e4:9b:25:c8:b8:0e:95:27:80:fa:39:db:e0:09:
18:59:ff:50:95:4e:8d:16:1a:15:16:2c:10:8d:a2:
d5:ea:3a:b7:c2:c9:c1:b3:d3:45:df:71:21:95:65:
7a:e1:d5:ea:16:0e:cb:52:ca:06:9b:b3:90:8c:84:
3b:fa:af:89:e9:58:6d:55:67:92:df:6f:42:f6:6c:
9a:02:10:a4:95:0a:88:f0:cd:e5:d1:cb:42:fe:d5:
31:19:5d:5e:c6:06:a3:64:45:4e:45:09:c6:78:0e:
8b:4a:60:52:77:51:50:1c:52:5b:79:dd:4f:26:1d:
66:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:47:AC:F2:0B:EB:10:72:C8:AB:79:C8:9A:20:00:5D:CA:AD:2C:54
X509v3 Authority Key Identifier:
keyid:B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3139352e382e34392e302f32342d3234203d3e203630343538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.8.49.0/24
Signature Algorithm: sha256WithRSAEncryption
52:64:5a:7a:69:7b:b8:6a:7f:f4:02:41:e6:bf:be:a9:30:07:
23:7f:18:8b:10:50:6a:19:f0:ad:3f:87:e6:b0:22:b5:94:0e:
2d:89:be:89:3a:b4:c0:f2:2b:39:f8:94:d8:c3:89:43:a7:79:
29:51:c3:6b:fd:26:1b:c2:c9:d5:d4:6b:bc:52:ee:76:c0:ad:
ff:ea:d9:05:bd:b2:cd:d0:23:3d:f1:c9:13:22:50:04:12:c0:
42:94:61:8e:bf:44:32:e8:63:13:f5:ae:b4:ca:f9:47:b8:0d:
3a:1c:0e:a0:59:b0:92:b9:be:6d:28:ce:bd:30:0f:3e:d1:00:
bb:f8:32:0d:77:b0:a9:ca:22:81:db:e1:62:dd:36:fe:7c:31:
b5:36:f8:07:f4:71:c8:8c:c5:15:77:64:93:30:f1:e9:64:90:
96:c5:f1:79:71:e2:92:58:8a:b1:7e:9c:1e:60:2d:50:30:80:
34:ac:07:90:09:2e:de:a1:9f:de:79:64:0a:1c:cf:2c:31:41:
5d:6e:1d:33:52:84:ea:65:21:7e:86:a7:cf:51:48:5a:9e:0b:
04:f8:eb:58:a5:93:47:a4:41:91:d5:64:8a:0b:9c:ec:4b:5e:
c9:3b:d3:18:02:3c:e4:63:94:f4:01:59:85:55:93:49:ba:ea:
43:f3:dd:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 01:02:59 2024 by rpki-client on console-ams.rpki-client.org