Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/33312e362e34362e302f32342d3234203d3e20333937363330.roa
File: 33312e362e34362e302f32342d3234203d3e20333937363330.roa (raw, json)
Hash identifier: cQeZu+uzWZKVHn9H2kStxQmDxlktUPAOfP0BX00UTLY=
Subject key identifier: 91:08:DD:B7:3D:BE:38:78:95:A4:E0:1D:A2:6F:3D:E2:D9:04:C0:CA
Certificate issuer: /CN=048af665bf8b186b70220759d26c578f40b5f3e3
Certificate serial: 65A023F78CE7614C30F213B99FAD1020B9294323
Authority key identifier: 04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/33312e362e34362e302f32342d3234203d3e20333937363330.roa
Signing time: Wed 06 Dec 2023 15:38:21 +0000
ROA not before: Wed 06 Dec 2023 15:33:21 +0000
ROA not after: Wed 04 Dec 2024 15:38:21 +0000
asID: 397630
IP address blocks: 31.6.46.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.mft
rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:a0:23:f7:8c:e7:61:4c:30:f2:13:b9:9f:ad:10:20:b9:29:43:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048af665bf8b186b70220759d26c578f40b5f3e3
Validity
Not Before: Dec 6 15:33:21 2023 GMT
Not After : Dec 4 15:38:21 2024 GMT
Subject: CN=9108DDB73DBE387895A4E01DA26F3DE2D904C0CA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:02:25:e4:09:c1:2a:8d:93:4a:c8:12:94:4a:
d6:5a:4e:8a:fc:49:2e:77:ae:c7:99:9a:79:a7:78:
9d:88:4e:91:4c:c5:c2:dd:f0:f1:ea:c0:b5:07:d8:
46:cf:08:73:cf:97:5a:db:a2:85:7a:ef:3b:d7:a5:
4a:59:71:36:48:dd:c3:39:1c:36:0f:0e:f1:ea:eb:
b9:37:26:cd:2c:be:db:85:ec:80:ee:27:e0:76:a4:
86:b5:6b:e9:a7:0c:cb:f1:0c:a0:ed:30:23:2e:8f:
ab:82:e2:b4:b3:e9:65:54:39:42:d4:98:09:47:c5:
83:18:96:d6:aa:b4:96:24:41:e7:35:21:25:b5:27:
9a:31:63:bc:8b:9c:b1:9e:12:6d:13:94:44:ed:41:
96:d6:49:a5:89:69:31:0d:72:be:39:21:64:8e:db:
f3:24:f9:47:6f:d4:b4:eb:3b:e1:70:81:50:d5:a8:
18:66:53:7f:5b:e3:cc:d2:eb:a4:f0:69:14:93:1d:
3c:b8:e6:e9:99:36:53:49:73:53:f1:ba:a5:64:57:
c1:99:eb:31:40:79:fd:a6:b2:18:36:af:c9:cf:c3:
56:ef:b2:dd:b8:92:8e:1b:c7:61:8c:44:e4:07:ba:
80:f2:b8:b8:d5:8b:4c:68:94:c3:51:cf:84:ea:fe:
fb:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:08:DD:B7:3D:BE:38:78:95:A4:E0:1D:A2:6F:3D:E2:D9:04:C0:CA
X509v3 Authority Key Identifier:
keyid:04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/33312e362e34362e302f32342d3234203d3e20333937363330.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.6.46.0/24
Signature Algorithm: sha256WithRSAEncryption
05:18:fb:cb:1b:f0:51:87:fa:f6:9c:10:e4:5d:d1:da:70:1c:
65:9d:5f:19:61:02:db:d1:be:c4:63:ec:fe:e4:da:ff:a8:07:
05:ee:e5:d7:0e:cc:d8:28:20:50:57:55:fc:5b:59:1c:13:44:
62:34:79:97:c9:d9:99:d6:4f:12:2e:48:78:f6:4c:ca:47:29:
d6:78:9a:13:47:51:6c:ee:d5:11:a1:e5:2c:cc:53:db:78:b8:
d9:e6:c8:22:bb:9c:fa:2b:27:a5:3e:ce:77:38:6d:97:73:09:
2c:0c:6c:d5:47:6d:f0:93:c0:0a:e3:ba:04:de:5c:91:1a:a6:
18:69:fd:92:1c:4a:06:37:a8:79:f1:8d:6c:31:4b:6d:99:9f:
95:f5:04:b0:ab:52:87:92:fb:f1:43:3c:aa:90:8d:f9:85:1b:
93:eb:bc:88:f5:4c:28:e1:dc:cd:70:b7:9c:36:48:f9:65:96:
ae:06:78:26:8b:31:51:1e:63:c9:db:85:6f:fa:10:9d:3a:72:
b2:d1:55:31:ee:53:c9:61:02:51:16:5e:e6:03:de:51:ba:48:
06:7e:78:79:9f:c7:00:8d:02:85:9e:7a:74:ec:75:91:fe:16:
e0:47:45:2a:22:6e:7c:d7:f6:18:cc:81:36:48:68:f1:5b:3a:
16:d7:9b:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 11:42:50 2024 by rpki-client on console-fra.rpki-client.org