Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/33312e362e31352e302f32342d3234203d3e203630313137.roa
File: 33312e362e31352e302f32342d3234203d3e203630313137.roa (raw, json)
Hash identifier: jtY7yK7GSAyQ3xtgWbeBjoNRkAPQB8AkA3sQjFz6Ys8=
Subject key identifier: 8E:D5:C6:FE:78:F3:66:CD:75:DD:3B:51:2E:EB:2E:E0:0D:3B:F5:64
Certificate issuer: /CN=048af665bf8b186b70220759d26c578f40b5f3e3
Certificate serial: 2E10B73939479AF28D148301C702A5DF913B0F
Authority key identifier: 04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/33312e362e31352e302f32342d3234203d3e203630313137.roa
Signing time: Tue 06 Aug 2024 10:38:22 +0000
ROA not before: Tue 06 Aug 2024 10:33:22 +0000
ROA not after: Tue 05 Aug 2025 10:38:22 +0000
asID: 60117
IP address blocks: 31.6.15.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.mft
rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:10:b7:39:39:47:9a:f2:8d:14:83:01:c7:02:a5:df:91:3b:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048af665bf8b186b70220759d26c578f40b5f3e3
Validity
Not Before: Aug 6 10:33:22 2024 GMT
Not After : Aug 5 10:38:22 2025 GMT
Subject: CN=8ED5C6FE78F366CD75DD3B512EEB2EE00D3BF564
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:a6:7d:24:aa:35:50:00:5c:07:c8:6d:a5:84:
a4:f0:c8:8d:ed:14:7f:64:68:8b:dd:94:40:1f:80:
54:c9:e6:d5:1c:8e:c0:6d:c1:78:42:ee:5e:9a:77:
75:97:11:8b:30:fd:1e:80:19:b5:d8:05:65:41:a0:
37:e8:1b:a3:8a:44:2c:81:22:3c:49:d4:37:74:aa:
8f:3e:f1:c8:33:4d:42:0a:e4:3f:12:dd:27:ae:1b:
d1:9a:43:3d:78:4c:0f:4c:2a:99:f9:8a:29:d0:5c:
51:d8:66:b7:d4:14:76:d0:dd:20:d0:9c:af:99:5c:
ad:35:5d:36:1b:58:f6:72:fd:48:d6:c9:3e:f3:4f:
72:a4:49:7f:28:9d:dd:b4:a0:1b:06:ac:ae:8c:4b:
7b:3b:a0:54:fd:53:a7:95:12:41:05:36:61:0d:f2:
df:3a:31:8b:f5:0e:ec:ef:cd:9e:ea:63:2b:8e:57:
2c:5c:50:fe:99:6e:ee:05:e4:e1:cb:bc:b9:1e:25:
f0:ff:b8:ee:87:d6:7d:20:22:97:92:03:1b:44:2a:
85:e1:e6:0a:df:81:2e:4d:5e:b4:b1:a9:df:1f:58:
56:26:2c:d0:c7:15:79:86:76:fd:33:b5:50:15:78:
21:4f:81:8d:46:c3:92:c5:4b:00:02:36:ce:4a:8e:
16:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:D5:C6:FE:78:F3:66:CD:75:DD:3B:51:2E:EB:2E:E0:0D:3B:F5:64
X509v3 Authority Key Identifier:
keyid:04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/33312e362e31352e302f32342d3234203d3e203630313137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.6.15.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:08:27:bf:1a:0d:2e:b1:34:98:f4:08:11:61:8b:84:7e:4e:
93:25:7f:8d:43:0f:c0:ca:a5:f4:5a:32:52:44:b4:50:28:97:
66:23:8b:d8:24:0b:4a:63:ca:7a:40:e3:07:a7:67:d4:25:d2:
0c:fe:c7:fd:fa:4b:af:fe:fd:67:b6:22:7f:83:6d:9f:40:4d:
a6:5b:35:25:28:01:b3:5f:40:4b:f3:1a:45:37:05:29:8c:72:
b9:8b:30:67:32:48:9e:54:54:32:1b:5b:a6:58:24:2d:8e:4d:
51:e6:47:60:91:29:fc:2e:28:07:12:f6:1b:96:c6:b1:fb:0e:
34:95:2f:99:a8:db:b7:6c:a1:c3:36:28:0e:6a:de:2f:13:8a:
aa:b5:b1:02:53:e8:a8:3f:4d:3f:80:bd:1b:fa:69:e8:c6:b5:
4f:cb:b0:8d:d6:2b:e9:a2:57:e0:00:95:93:08:73:28:04:fc:
11:82:1d:9e:af:71:73:f9:81:05:18:ed:57:af:0d:c5:48:82:
82:14:53:06:c8:5c:7e:a3:2b:3f:66:06:a8:56:c9:5c:70:1d:
72:da:a4:ad:3c:7c:79:b0:72:e0:8d:2f:0e:4b:f8:d3:7e:da:
0e:4e:44:c2:6f:fa:48:d1:7a:ab:53:ac:66:fd:7c:20:4f:60:
10:c6:53:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 12:52:26 2024 by rpki-client on console-ams.rpki-client.org