Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS1030.roa
File: AS1030.roa (raw, json)
Hash identifier: 593rldqQdLsKjNSMGRtWY6bmaP1LM4qoHBIXJo12X+0=
Subject key identifier: 2D:AA:E0:4A:14:11:93:7C:5A:91:3C:4B:D8:C9:2F:11:6C:58:A9:5A
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 0D79B2859D8B7006E4426D02BAADAA69F3283D1F
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS1030.roa
Signing time: Tue 28 Nov 2023 15:05:05 +0000
ROA not before: Tue 28 Nov 2023 15:00:05 +0000
ROA not after: Tue 26 Nov 2024 15:05:05 +0000
asID: 1030
IP address blocks: 141.11.111.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.mft
rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:79:b2:85:9d:8b:70:06:e4:42:6d:02:ba:ad:aa:69:f3:28:3d:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Nov 28 15:00:05 2023 GMT
Not After : Nov 26 15:05:05 2024 GMT
Subject: CN=2DAAE04A1411937C5A913C4BD8C92F116C58A95A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:1b:28:0c:07:9b:b5:05:a2:57:25:78:31:2a:
04:08:c7:59:4f:31:31:01:30:bb:33:a3:f2:2b:bf:
e6:99:23:f2:55:98:4d:b6:e9:cc:b2:34:a0:bf:17:
3b:16:47:d8:84:85:8c:a4:d5:fa:ef:97:b3:33:26:
b8:f8:15:25:94:a4:85:c3:06:1e:30:ad:9f:2a:d0:
60:c4:17:9f:cf:65:0b:ae:55:25:27:34:af:35:e9:
bd:ff:bd:f8:37:fc:4f:85:40:ab:ae:bc:1d:fd:ce:
74:4a:02:55:58:58:13:d3:2c:60:5f:42:51:21:eb:
b6:c3:9c:de:89:86:68:67:ca:3e:41:53:09:cc:b9:
e1:e8:75:68:59:4e:3d:bb:2d:ba:94:62:6d:a7:8c:
81:9f:89:6c:7c:e4:4b:11:a3:91:86:98:22:86:b9:
db:85:c8:f3:25:e0:7e:eb:dd:30:c6:41:41:6c:b6:
8f:d3:8e:ef:a1:13:5c:a5:76:08:2b:17:c0:c7:eb:
5b:a3:5c:5d:a0:50:c2:1f:0b:fb:7b:a5:b6:58:44:
1c:02:0e:46:f9:e6:1c:75:45:75:68:05:23:fb:52:
5d:a6:d2:9e:77:14:3f:a9:a5:32:5b:8e:35:45:1c:
08:78:82:87:11:17:90:39:4a:93:8c:9b:78:16:e9:
ec:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:AA:E0:4A:14:11:93:7C:5A:91:3C:4B:D8:C9:2F:11:6C:58:A9:5A
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS1030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.111.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:b7:cc:55:df:84:38:14:eb:bb:93:fd:f2:15:da:7d:3a:bf:
36:2b:96:0b:90:26:32:a0:81:f7:ed:31:4f:53:16:2c:3c:4c:
99:74:96:9c:3b:1e:eb:57:8d:dd:35:6c:9b:d0:c3:9a:cb:db:
aa:16:27:8c:ee:0e:74:53:e7:a9:fe:9b:a3:27:b9:d2:6c:bd:
d1:b2:ba:89:90:76:d8:41:15:c3:f1:00:86:5a:01:b2:0d:b2:
f2:9d:f2:b3:d1:e4:2a:57:fe:8c:e1:5a:f3:d7:71:35:4d:9d:
ff:30:f5:df:1f:bc:15:e1:2a:71:73:ec:c0:a4:c0:2a:2e:4c:
db:5f:b4:b7:77:93:9b:cf:1a:37:a4:cc:b6:79:eb:b6:aa:fa:
84:2e:05:2e:d1:7e:dd:45:a2:8a:ce:0f:0f:26:b2:13:42:09:
09:c8:2d:ef:19:e4:a4:5a:20:47:2f:10:83:f2:b5:4d:31:bc:
2b:f8:cb:09:27:26:f1:cc:63:03:c5:b1:dd:ee:99:29:3f:b9:
b7:55:52:46:80:d4:e4:78:5a:b1:24:59:5b:2c:01:bc:72:00:
b5:18:3c:e7:b0:79:6c:1b:f5:d5:94:83:a4:2e:cb:a2:19:69:
7d:e4:f9:96:56:5c:93:20:38:26:38:ad:a6:38:3d:fa:d0:42:
0f:34:c6:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 14:38:07 2024 by rpki-client on console-ams.rpki-client.org