Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/3231322e3130322e3131342e302f32342d3234203d3e203438303234.roa
File: 3231322e3130322e3131342e302f32342d3234203d3e203438303234.roa (raw, json)
Hash identifier: 920SqtpoF5VgrWwlE7dciLlvDdDpVV27LUhHTL2XiyM=
Subject key identifier: FA:6A:DA:95:94:8F:B4:9A:0C:E8:B0:82:BE:07:C0:B3:22:E2:10:23
Certificate issuer: /CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Certificate serial: 702F40F049514AD01076711DE12E20B87F5FBB6B
Authority key identifier: 8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/3231322e3130322e3131342e302f32342d3234203d3e203438303234.roa
Signing time: Mon 24 Jul 2023 05:05:59 +0000
ROA not before: Mon 24 Jul 2023 05:00:59 +0000
ROA not after: Mon 22 Jul 2024 05:05:59 +0000
asID: 48024
IP address blocks: 212.102.114.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.mft
rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 07 May 2024 20:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:2f:40:f0:49:51:4a:d0:10:76:71:1d:e1:2e:20:b8:7f:5f:bb:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Validity
Not Before: Jul 24 05:00:59 2023 GMT
Not After : Jul 22 05:05:59 2024 GMT
Subject: CN=FA6ADA95948FB49A0CE8B082BE07C0B322E21023
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:4a:c2:ef:f1:56:6c:8e:47:0e:4b:fe:dd:0b:
b7:06:78:1d:53:d4:9b:25:ec:ab:d8:e0:04:fd:39:
e1:09:83:a7:62:eb:82:96:2c:7a:a7:a1:21:ee:5e:
91:78:29:e4:ab:c6:b5:20:3a:73:51:2c:af:fe:db:
4f:62:53:bb:42:0d:ef:73:a8:3b:2e:fc:8d:61:03:
9f:79:bf:de:a2:b5:c7:27:69:70:f8:fc:87:54:d9:
b9:f4:82:5c:95:b2:04:0f:96:9a:a5:e7:4b:42:84:
48:f6:e4:4e:f4:af:45:da:85:4c:b2:14:c2:84:f6:
fe:d8:e0:93:af:49:eb:9f:b6:41:73:f7:ec:63:81:
d9:51:0d:06:68:cb:dc:c7:94:4e:50:d9:c4:c8:d4:
5f:19:f5:e0:ff:35:b1:fb:79:e2:ac:7b:1a:3b:2b:
fc:17:18:c3:0c:83:23:ef:40:f9:fd:af:81:20:10:
71:91:bf:a3:98:e9:1f:71:09:29:3a:de:8b:51:d2:
5d:99:c8:aa:86:21:19:f7:eb:d8:7c:8b:6f:34:b9:
d9:1d:cb:68:fb:35:be:55:45:fd:b6:0a:3f:bd:6e:
c8:08:7a:fd:5a:b1:17:60:47:80:57:8d:61:37:c7:
40:37:a0:27:33:3c:84:98:43:94:ad:6c:32:a7:31:
8f:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:6A:DA:95:94:8F:B4:9A:0C:E8:B0:82:BE:07:C0:B3:22:E2:10:23
X509v3 Authority Key Identifier:
keyid:8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/3231322e3130322e3131342e302f32342d3234203d3e203438303234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.102.114.0/24
Signature Algorithm: sha256WithRSAEncryption
17:e7:39:a8:d6:f4:19:c7:73:6e:ff:f5:66:87:84:f8:85:c0:
a6:58:1e:2a:3b:d7:88:ba:bc:2c:17:75:e7:dd:10:31:1f:14:
83:fd:31:3a:10:e3:27:63:e2:cd:0e:92:b3:15:7a:e5:57:3d:
e1:63:c6:87:a1:4c:e9:94:77:f1:82:70:c3:c0:99:9b:2b:33:
4b:04:62:41:e4:8d:68:50:42:17:d5:ba:12:18:b4:54:06:ea:
8d:4e:24:f9:2e:91:f0:ad:58:b6:e6:ca:7a:6d:65:ba:d9:dd:
e6:2f:c8:12:02:db:f4:56:8a:df:a9:a3:c5:eb:16:91:72:a1:
61:b2:27:f4:44:4a:d6:5e:c6:32:5e:a1:36:f6:5d:84:e9:65:
a0:c6:79:d5:fa:2f:a2:0a:cb:05:ad:c0:d4:b9:54:86:8a:3e:
fc:09:9c:fa:fd:0c:74:6e:e6:05:e1:1d:54:ee:eb:9c:e8:71:
ea:08:8d:5f:71:b9:cb:bf:80:85:42:f9:29:f3:37:dd:4b:ed:
07:73:47:06:ba:13:74:3c:1f:62:b5:0e:4c:98:b1:92:ba:83:
35:9f:52:66:07:8c:e4:4a:78:6d:89:b0:6d:a3:5b:e3:59:ce:
ea:bc:33:61:90:3f:ee:25:2b:15:00:c1:db:c3:df:45:f3:d9:
ea:ea:02:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 01:14:08 2024 by rpki-client on console-fra.rpki-client.org