Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/3139332e32342e3233352e302f32342d3234203d3e203630373831.roa
File: 3139332e32342e3233352e302f32342d3234203d3e203630373831.roa (raw, json)
Hash identifier: 3IIPnO8jnB/C9bfC+8H124jFOjjxVU8ltj/gUK5jsA4=
Subject key identifier: 65:D4:5A:B3:7F:49:28:76:FB:77:00:EE:9A:22:C5:19:2E:97:6D:F4
Certificate issuer: /CN=8c12b4273832b4156fe0092f6ae7e5b3ce23ad8b
Certificate serial: 2953951B229CB57922F02F1EDB191D551ECE1DA4
Authority key identifier: 8C:12:B4:27:38:32:B4:15:6F:E0:09:2F:6A:E7:E5:B3:CE:23:AD:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jBK0JzgytBVv4Akvaufls84jrYs.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/3139332e32342e3233352e302f32342d3234203d3e203630373831.roa
Signing time: Fri 15 Nov 2024 12:38:06 +0000
ROA not before: Fri 15 Nov 2024 12:33:06 +0000
ROA not after: Fri 14 Nov 2025 12:38:06 +0000
asID: 60781
IP address blocks: 193.24.235.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.crl
rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.mft
rsync://rpki.ripe.net/repository/DEFAULT/jBK0JzgytBVv4Akvaufls84jrYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:53:95:1b:22:9c:b5:79:22:f0:2f:1e:db:19:1d:55:1e:ce:1d:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c12b4273832b4156fe0092f6ae7e5b3ce23ad8b
Validity
Not Before: Nov 15 12:33:06 2024 GMT
Not After : Nov 14 12:38:06 2025 GMT
Subject: CN=65D45AB37F492876FB7700EE9A22C5192E976DF4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:88:d3:21:11:63:c8:e0:c4:94:2b:88:f1:e3:
25:2c:fa:27:79:fe:c0:72:d5:ac:dd:19:b6:28:97:
eb:2a:10:c4:18:73:27:79:c4:73:f8:ef:0f:7a:69:
b2:b4:e9:f0:71:81:7a:26:40:e7:a3:ae:7b:c8:56:
45:d3:e8:57:ee:a2:fe:d8:9f:6f:c9:e2:d0:e0:88:
51:f1:93:e9:6d:67:c4:df:d1:01:b6:b3:db:29:4d:
32:c7:c1:d5:0a:db:43:61:72:45:57:7d:a5:89:1d:
56:97:da:18:f3:11:17:67:86:77:df:29:35:e5:bb:
11:12:ad:c7:55:8e:1d:31:7a:9f:ee:2c:85:70:3d:
df:7c:24:78:f4:e1:37:9b:5b:33:78:ab:de:e7:47:
c6:da:75:91:80:5a:fa:e5:e5:53:16:97:4c:4b:6c:
b9:d6:d2:57:20:42:52:e0:11:db:13:b6:f6:46:b6:
f7:f4:ae:50:1d:5a:b2:1e:ad:5c:a7:56:a6:4c:b8:
72:13:85:82:a8:1e:4f:ea:d5:0e:d0:ae:45:5f:0e:
98:1c:c8:fe:5d:52:59:04:17:56:6f:fb:a3:d6:6b:
ec:d2:fe:00:b1:11:eb:f9:12:6b:98:76:e1:b6:22:
ce:42:65:34:73:55:3f:08:80:2e:3d:31:90:f9:b2:
2b:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:D4:5A:B3:7F:49:28:76:FB:77:00:EE:9A:22:C5:19:2E:97:6D:F4
X509v3 Authority Key Identifier:
keyid:8C:12:B4:27:38:32:B4:15:6F:E0:09:2F:6A:E7:E5:B3:CE:23:AD:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jBK0JzgytBVv4Akvaufls84jrYs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/3139332e32342e3233352e302f32342d3234203d3e203630373831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.24.235.0/24
Signature Algorithm: sha256WithRSAEncryption
08:66:41:85:fc:87:ad:61:90:e0:d2:b3:cd:c5:ca:6a:f7:59:
09:88:bc:a6:0e:9e:e1:da:c4:94:2e:f5:50:b6:e2:35:48:10:
1b:6d:73:29:a9:0c:f3:c1:7f:1f:ef:55:6e:2b:9c:65:e4:60:
52:bc:e3:68:bd:81:a8:9d:99:d9:c0:c4:5f:c9:50:fc:00:38:
20:88:61:10:4c:2b:45:9a:aa:32:9f:ac:06:6d:d9:d1:83:b8:
e4:f9:b5:ba:33:d7:97:0b:24:a6:36:82:d9:b7:4d:02:bd:36:
ce:55:d3:f7:c1:81:2b:ed:23:41:bf:7c:08:41:07:00:48:64:
90:7b:c2:5c:8c:8e:ba:82:09:56:7e:f9:f0:de:fc:30:fa:7d:
b0:c9:e3:52:67:3b:64:d1:31:ff:75:cb:25:f5:17:5a:a1:ff:
29:fa:b3:5f:b8:77:ab:85:a8:d6:cb:e1:db:b2:0f:ef:7f:53:
c9:a3:16:84:a8:44:94:74:8d:31:99:7a:d8:33:5c:bc:5f:5c:
4f:b6:4e:d7:d1:83:c0:a1:e0:57:3b:9a:98:ed:16:46:62:61:
41:90:f1:ca:80:e9:48:70:54:48:e1:8d:72:b9:61:c0:b0:3c:
7f:a8:e2:f1:f5:b2:09:1b:4a:bd:80:ff:c3:19:2a:fd:5f:49:
55:ff:a8:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:35:20 2024 by rpki-client on console-ams.rpki-client.org