Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/3139332e32342e3233342e302f32342d3234203d3e20323133393837.roa
File: 3139332e32342e3233342e302f32342d3234203d3e20323133393837.roa (raw, json)
Hash identifier: oiVt8ohpGVjPObvoY8F5/4DdG/+vs7OwxK+iV8ozFOs=
Subject key identifier: 50:45:F4:DC:9C:56:49:AF:5F:9A:03:5B:A4:C0:9D:8B:81:D5:FD:EB
Certificate issuer: /CN=8c12b4273832b4156fe0092f6ae7e5b3ce23ad8b
Certificate serial: 78897F1E3EDE6F41C908F0CFA55B0C0CBD31387D
Authority key identifier: 8C:12:B4:27:38:32:B4:15:6F:E0:09:2F:6A:E7:E5:B3:CE:23:AD:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jBK0JzgytBVv4Akvaufls84jrYs.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/3139332e32342e3233342e302f32342d3234203d3e20323133393837.roa
Signing time: Wed 30 Oct 2024 06:30:43 +0000
ROA not before: Wed 30 Oct 2024 06:25:43 +0000
ROA not after: Wed 29 Oct 2025 06:30:43 +0000
asID: 213987
IP address blocks: 193.24.234.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.crl
rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.mft
rsync://rpki.ripe.net/repository/DEFAULT/jBK0JzgytBVv4Akvaufls84jrYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Nov 2024 05:00:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:89:7f:1e:3e:de:6f:41:c9:08:f0:cf:a5:5b:0c:0c:bd:31:38:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c12b4273832b4156fe0092f6ae7e5b3ce23ad8b
Validity
Not Before: Oct 30 06:25:43 2024 GMT
Not After : Oct 29 06:30:43 2025 GMT
Subject: CN=5045F4DC9C5649AF5F9A035BA4C09D8B81D5FDEB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:f5:ea:9a:d3:62:d5:e0:ee:c4:ac:09:d8:44:
2b:40:b3:eb:e2:ef:47:bc:15:ab:2e:e7:b7:d9:96:
a0:9d:75:b5:fa:0d:30:cd:96:c3:2f:3c:b1:62:3e:
0e:c3:7b:3b:a1:97:36:d6:61:74:d8:36:83:88:40:
eb:46:39:fe:83:c7:39:8c:47:27:8b:3f:4d:43:cf:
83:c1:d9:aa:b7:2c:33:9d:5e:f4:79:57:37:e4:4b:
f5:03:30:4c:a4:98:f8:52:9b:6c:05:8d:02:13:44:
b3:cb:0f:83:24:73:1b:f8:d8:c5:f5:e4:12:19:2b:
e8:da:2c:06:41:ea:ee:29:5a:18:97:9d:b0:e8:ac:
e7:93:99:55:5e:ed:86:cb:81:d0:f1:ed:59:ef:7b:
c5:8a:10:a6:61:f4:54:8f:ad:ec:a3:4c:ae:21:5f:
b8:98:f6:9c:46:35:d1:5a:b5:85:e7:fd:f6:74:27:
31:1e:7d:ea:1a:71:d6:b8:b0:21:1f:bb:b3:dd:96:
bc:a9:d7:44:65:b3:36:39:3d:e4:2e:ee:eb:45:6d:
e5:e7:28:2d:41:af:67:8b:0a:5d:dc:89:d2:87:e4:
f4:81:17:e2:d0:74:e0:bd:ee:c2:f4:95:e0:5b:db:
ae:cd:38:84:f1:0c:88:2b:48:75:1c:aa:12:e1:9c:
ef:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:45:F4:DC:9C:56:49:AF:5F:9A:03:5B:A4:C0:9D:8B:81:D5:FD:EB
X509v3 Authority Key Identifier:
keyid:8C:12:B4:27:38:32:B4:15:6F:E0:09:2F:6A:E7:E5:B3:CE:23:AD:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jBK0JzgytBVv4Akvaufls84jrYs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/3139332e32342e3233342e302f32342d3234203d3e20323133393837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.24.234.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:53:7a:29:62:b9:24:95:3f:b6:36:a5:64:34:64:90:48:05:
87:4f:11:f6:0e:a6:70:dc:40:94:95:fa:89:36:2f:b5:f3:a2:
56:a8:18:c5:a7:fd:a5:5c:09:31:ac:59:42:56:78:94:03:b0:
1b:c9:56:33:cf:af:ac:c9:06:12:1f:a6:ca:73:87:76:ae:99:
78:fd:f9:7d:4f:a9:93:fb:86:0e:d4:8a:38:55:09:bf:b3:d9:
d2:e1:e9:9c:b7:98:d3:d8:80:b6:e5:fe:dc:62:1f:f0:26:5c:
3b:02:a5:d6:6b:06:db:78:94:da:26:a9:1b:cd:75:a6:e2:8c:
1f:0b:6a:ac:39:62:50:55:8a:13:3e:0e:70:71:8f:d8:56:f4:
e1:cd:47:45:f8:cb:3a:47:3d:ba:e2:09:26:6a:3b:3a:e5:fb:
82:6c:d6:2c:d1:9e:e4:2d:a5:7c:40:78:f4:5f:ee:d6:aa:cf:
82:9a:0d:ac:9c:76:f7:24:21:e9:07:66:02:25:8b:f2:49:ec:
43:ac:f5:d9:eb:9f:18:d0:0c:f7:f2:96:0b:63:ac:69:9c:06:
31:eb:27:cc:3c:b1:48:bf:c8:62:2c:56:49:46:8f:7d:8d:e8:
05:53:02:d9:d5:fb:bf:44:cf:b6:46:53:79:93:f3:d3:be:31:
13:53:63:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 4 08:26:19 2024 by rpki-client on console-fra.rpki-client.org