Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/3139332e32342e3233342e302f32332d3234203d3e203236373337.roa
File: 3139332e32342e3233342e302f32332d3234203d3e203236373337.roa (raw, json)
Hash identifier: zwbNlqaWVpi6z23tnypronH8MBkZcCNf+vOil7eXUr4=
Subject key identifier: 25:7D:BA:0B:95:39:3B:E3:41:71:74:C9:7A:92:77:26:4D:B9:34:A0
Certificate issuer: /CN=8c12b4273832b4156fe0092f6ae7e5b3ce23ad8b
Certificate serial: 3DD091F5EE38DD1BE2BC51A478ECCC9725065CCE
Authority key identifier: 8C:12:B4:27:38:32:B4:15:6F:E0:09:2F:6A:E7:E5:B3:CE:23:AD:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jBK0JzgytBVv4Akvaufls84jrYs.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/3139332e32342e3233342e302f32332d3234203d3e203236373337.roa
Signing time: Tue 27 Aug 2024 14:49:47 +0000
ROA not before: Tue 27 Aug 2024 14:44:47 +0000
ROA not after: Tue 26 Aug 2025 14:49:47 +0000
asID: 26737
IP address blocks: 193.24.234.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.crl
rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.mft
rsync://rpki.ripe.net/repository/DEFAULT/jBK0JzgytBVv4Akvaufls84jrYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Sep 2024 13:20:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:d0:91:f5:ee:38:dd:1b:e2:bc:51:a4:78:ec:cc:97:25:06:5c:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c12b4273832b4156fe0092f6ae7e5b3ce23ad8b
Validity
Not Before: Aug 27 14:44:47 2024 GMT
Not After : Aug 26 14:49:47 2025 GMT
Subject: CN=257DBA0B95393BE3417174C97A9277264DB934A0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:e0:04:af:61:43:dc:c3:ce:dd:62:00:67:ae:
c0:61:57:54:da:62:8e:7e:73:76:62:bc:b6:a7:fa:
5e:24:ee:d0:70:21:f1:29:40:97:c2:0a:e0:d3:5f:
37:1e:95:ea:39:e2:12:f4:5c:82:18:4e:e9:76:4c:
de:68:33:bf:9b:ee:e3:ed:ca:06:ac:fd:94:20:a3:
19:27:e4:36:65:df:58:3c:c3:d8:06:49:2e:d9:cc:
df:46:34:71:bc:8f:8f:d2:c7:6e:c6:1c:d3:20:dc:
b8:b7:e1:05:da:53:c5:ec:c9:7b:ea:cb:3f:5b:5f:
37:d6:19:62:c1:62:6d:e1:30:bb:b7:25:8e:5c:dc:
0e:4d:51:f1:5e:fa:2c:83:a3:e7:7d:cc:4f:f8:3b:
be:8b:4b:27:80:77:3e:d4:26:34:0b:9e:1b:81:75:
d3:84:59:5a:b3:da:47:81:b7:42:bd:82:02:f5:fd:
e7:b0:e0:b4:9a:5a:9e:63:e8:64:50:c0:06:40:ce:
f3:1f:55:75:b8:a6:06:95:7c:99:0b:be:11:9b:b6:
49:a7:a5:aa:95:5f:e9:b3:83:7b:1d:53:56:44:79:
43:11:d9:98:0a:07:e4:85:7f:fe:dd:7e:71:c7:ce:
f6:0c:e6:7f:64:cd:d8:f7:53:87:29:9c:1d:52:1f:
a1:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:7D:BA:0B:95:39:3B:E3:41:71:74:C9:7A:92:77:26:4D:B9:34:A0
X509v3 Authority Key Identifier:
keyid:8C:12:B4:27:38:32:B4:15:6F:E0:09:2F:6A:E7:E5:B3:CE:23:AD:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jBK0JzgytBVv4Akvaufls84jrYs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/3139332e32342e3233342e302f32332d3234203d3e203236373337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.24.234.0/23
Signature Algorithm: sha256WithRSAEncryption
43:50:f0:53:e5:d2:67:9e:34:2f:8f:ca:42:f1:d9:9c:6f:40:
dd:55:6a:d6:c4:5b:b5:56:52:56:04:f7:78:93:9e:72:38:55:
c2:85:90:12:4d:4c:d2:e5:d7:99:a3:e0:24:00:f1:9d:69:fe:
c2:57:ff:77:27:2c:70:8c:56:a6:9d:c1:47:ab:04:b7:21:bf:
5a:f7:ef:d1:7e:64:8e:e8:7e:ec:a0:93:53:46:b0:81:66:ba:
d0:13:03:3e:5f:7b:bb:8a:ad:d4:dc:c5:cb:61:26:89:6d:93:
2c:0d:e7:ca:44:a1:0e:a9:c6:a8:b6:3c:38:e2:84:f6:04:a8:
2a:68:cb:39:7d:ed:2e:17:a2:5e:06:eb:3a:f3:92:70:b1:b8:
f6:1d:3b:01:38:d9:76:5b:29:c3:84:ee:bf:48:50:2c:ac:5c:
b8:18:51:ac:6e:12:1d:3b:0f:85:9c:ce:07:26:e1:43:f7:61:
f6:9d:33:02:bd:61:4e:c1:42:77:77:38:da:ab:43:05:8b:63:
6a:8b:b9:58:36:21:44:c9:dc:43:c4:5e:ba:bb:21:71:71:66:
cc:ad:1e:18:19:0b:7b:09:97:80:cc:9b:4a:e8:e5:ff:35:5e:
e1:1c:cd:1d:38:74:5b:9d:35:a0:e0:f1:84:2c:de:c7:c6:d3:
60:11:9b:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 18 20:49:33 2024 by rpki-client on console-fra.rpki-client.org