Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/33312e362e34392e302f32342d3234203d3e203232333633.roa
File: 33312e362e34392e302f32342d3234203d3e203232333633.roa (raw, json)
Hash identifier: 3U24w3tIPIYl8PitHTfMMnp4V+AMuaROtD8su4g8UrU=
Subject key identifier: EB:B6:FC:22:E9:47:E7:32:22:51:33:AE:B0:4F:72:DC:DB:BF:23:84
Certificate issuer: /CN=048af665bf8b186b70220759d26c578f40b5f3e3
Certificate serial: 038AABE64ABB898CAC07AAFDD9D8E60676FEC944
Authority key identifier: 04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/33312e362e34392e302f32342d3234203d3e203232333633.roa
Signing time: Mon 02 Oct 2023 05:22:22 +0000
ROA not before: Mon 02 Oct 2023 05:17:22 +0000
ROA not after: Mon 30 Sep 2024 05:22:22 +0000
asID: 22363
IP address blocks: 31.6.49.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.mft
rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Jun 2024 16:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:8a:ab:e6:4a:bb:89:8c:ac:07:aa:fd:d9:d8:e6:06:76:fe:c9:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048af665bf8b186b70220759d26c578f40b5f3e3
Validity
Not Before: Oct 2 05:17:22 2023 GMT
Not After : Sep 30 05:22:22 2024 GMT
Subject: CN=EBB6FC22E947E732225133AEB04F72DCDBBF2384
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:8a:2f:06:53:5f:48:12:d7:61:a3:82:dd:f1:
4f:05:7b:ee:4e:a6:d1:c0:e9:80:df:4f:5b:21:c1:
08:6e:47:e1:08:6f:54:dc:6c:97:73:73:36:b8:2b:
e5:1a:a3:a9:8b:18:7b:48:be:96:ee:f5:80:aa:ad:
c0:62:ad:5b:68:4f:76:0e:45:d6:ff:3f:1c:be:ee:
10:ea:05:53:0b:e1:b9:0d:aa:11:1e:ed:1c:7e:8a:
30:8e:8f:a4:f0:89:e2:42:8c:cb:a1:1e:0c:4a:b0:
41:49:c5:0e:7a:1b:e3:3d:f1:9a:15:ec:bc:3c:8d:
82:e9:25:e0:72:a0:ad:b8:2b:68:7d:7a:8b:b1:e0:
1f:2a:58:d4:d4:54:4b:65:78:36:fe:4a:af:8b:cc:
ca:cb:20:9f:eb:2f:b6:7d:90:d1:6f:6f:59:04:9d:
70:a1:2a:f3:0a:a5:13:c4:bf:f3:3a:75:b5:9a:ff:
24:7b:1a:83:6b:b9:4d:ed:41:88:0e:c5:2c:f2:95:
90:6e:66:54:20:53:b5:af:a0:43:4e:a2:12:fe:1b:
65:1a:82:0c:81:30:1f:2d:b3:b4:1f:26:46:14:ab:
91:3a:04:c2:07:91:ed:74:dd:41:3b:ef:76:17:d4:
1f:99:58:2c:be:88:d5:40:a5:bd:25:e5:c8:94:da:
5c:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:B6:FC:22:E9:47:E7:32:22:51:33:AE:B0:4F:72:DC:DB:BF:23:84
X509v3 Authority Key Identifier:
keyid:04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/33312e362e34392e302f32342d3234203d3e203232333633.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.6.49.0/24
Signature Algorithm: sha256WithRSAEncryption
70:33:13:c0:df:b7:54:dd:44:cc:eb:be:fa:44:5e:89:0c:5a:
51:4f:11:27:c4:58:eb:7c:46:ad:ff:a5:05:e7:97:8d:f5:b4:
43:4c:0b:b7:df:82:04:d2:65:1a:e5:2f:16:26:6b:ae:66:e0:
7c:4d:e8:25:9d:13:ab:bc:36:7b:eb:bd:cd:8d:49:9f:ee:79:
c3:7e:cc:c0:e2:f1:bf:6f:bf:db:f3:17:f8:7e:ce:70:81:1d:
8c:11:2e:2e:99:3e:19:a3:8c:76:4a:3d:1b:4e:1a:a1:b3:02:
2f:cd:3d:30:0a:90:52:74:1b:0a:0a:22:a6:3a:1c:e9:8f:03:
54:cf:3d:0d:10:a3:18:c5:fe:7e:41:11:19:74:79:9d:37:7b:
db:24:fb:90:be:ed:66:c5:7d:f8:30:cd:15:0f:8a:75:75:24:
e1:bf:8d:4a:ec:07:d6:ae:7f:1e:fc:7b:26:08:42:98:25:47:
ef:21:8b:17:48:2e:cb:c4:20:42:98:cf:2c:d5:0c:a7:17:ad:
1e:91:fe:dd:43:ee:49:37:6b:e9:47:3f:1c:16:9a:8d:d2:7e:
57:b0:f4:8d:d6:1b:9e:e3:39:6b:3e:58:74:c5:1d:99:16:f9:
67:db:52:4b:6e:b2:e2:2a:6c:34:1f:0e:ed:43:94:18:fc:9b:
81:0b:b4:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 31 23:54:56 2024 by rpki-client on console-fra.rpki-client.org