Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS14618.roa
File: AS14618.roa (raw, json)
Hash identifier: 7peP1FNBDoQJHlStFsCCoWx0TooewpcgrEelxN9ht6Q=
Subject key identifier: 26:39:4D:18:5E:06:AF:E8:78:3B:3D:21:36:13:AC:A9:18:06:B8:4E
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 1409CE22BB64015E8B0601D716F7BFC23B8E7D9E
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS14618.roa
Signing time: Sat 09 Mar 2024 20:25:10 +0000
ROA not before: Sat 09 Mar 2024 20:20:10 +0000
ROA not after: Sat 08 Mar 2025 20:25:10 +0000
asID: 14618
IP address blocks: 141.11.12.0/22 maxlen: 24
141.11.119.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.mft
rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 02 May 2024 14:46:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:09:ce:22:bb:64:01:5e:8b:06:01:d7:16:f7:bf:c2:3b:8e:7d:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Mar 9 20:20:10 2024 GMT
Not After : Mar 8 20:25:10 2025 GMT
Subject: CN=26394D185E06AFE8783B3D213613ACA91806B84E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:6f:43:25:c5:61:5f:a3:a9:18:c6:e8:c6:a3:
a0:6d:c2:3d:b4:1f:3b:4c:13:c3:7d:4c:e3:ac:ce:
3e:ad:0c:44:f2:ca:71:ca:9c:fb:dd:bc:be:81:9a:
78:d8:17:d3:34:bd:cb:7d:75:1d:f5:53:68:29:7d:
cc:52:0c:9d:2a:f9:16:e6:a2:68:30:3b:68:d0:7b:
97:ee:d0:fb:0e:e5:83:61:7e:01:c8:5d:78:06:89:
75:0a:c7:f5:51:c4:64:3f:8a:de:8c:e6:2b:6f:c4:
10:cf:14:73:00:ab:32:75:86:9c:25:7b:27:92:2f:
82:4e:87:1a:d9:db:87:72:97:94:1b:ae:18:38:7c:
ec:2d:f6:1c:2a:d8:03:66:e4:d8:45:9f:1b:28:0f:
1d:83:24:43:be:bb:87:c4:e3:91:06:57:75:52:c5:
e3:52:f4:ba:eb:03:58:f6:3f:cd:4f:c6:44:eb:21:
5c:a2:a5:0d:2d:f2:bc:ae:08:bf:f0:0d:a9:ee:29:
9f:cc:4e:0f:22:40:d2:cf:ba:2d:21:31:45:b6:f8:
9d:3d:ed:c2:96:bf:e6:de:b2:31:91:01:a6:d1:47:
87:48:fd:04:f5:14:18:2c:55:9f:79:d3:02:99:4d:
df:73:03:77:99:fc:87:c5:12:58:eb:5a:24:d5:86:
77:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:39:4D:18:5E:06:AF:E8:78:3B:3D:21:36:13:AC:A9:18:06:B8:4E
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS14618.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.12.0/22
141.11.119.0/24
Signature Algorithm: sha256WithRSAEncryption
62:77:31:ff:b3:7c:8c:68:84:e0:5e:0e:c5:bc:81:c0:79:aa:
b2:99:f5:92:23:5c:58:5c:cc:3f:c6:bb:1d:92:2c:b6:ab:b3:
8f:5b:e6:4b:de:f0:01:38:ca:22:30:43:19:5d:1e:3c:6d:3b:
68:72:8e:2b:7e:b8:8a:35:13:5d:5b:d0:2e:21:bb:59:f4:fc:
74:d0:61:22:e0:6b:11:70:1f:b1:7d:08:62:8f:63:84:6f:4f:
26:98:4c:b2:84:0d:1f:bb:bc:21:0f:c7:bc:cf:c0:42:6e:05:
75:f8:e5:d9:19:4c:f7:cc:d4:28:f0:d3:7e:a6:8b:b5:2e:b8:
50:7c:4c:d3:57:8e:6e:ed:e8:d4:18:32:39:40:32:f6:8e:eb:
69:db:52:f1:be:d1:8a:2e:40:74:0f:df:b0:8a:e5:13:c7:f6:
41:6b:aa:a5:e5:1c:2d:be:e7:69:32:72:e4:c4:16:74:f5:40:
b4:5d:0d:af:e4:b6:e8:93:36:4b:5f:7f:5e:56:95:59:ae:e5:
55:ec:1e:dc:7f:73:6c:2a:5b:4a:a6:50:87:b0:83:e3:c4:67:
66:81:78:8e:95:fd:44:5f:63:64:25:7b:60:99:07:26:4c:5b:
b0:8a:7b:8b:e1:e5:5f:cb:33:fe:78:f4:0b:ae:42:2e:82:0b:
71:0c:c8:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 23:23:15 2024 by rpki-client on console-ams.rpki-client.org