Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ac0e13d8-bfe0-4235-afb4-d53edfbacdd2/0/3134312e3139332e3232382e302f32342d3234203d3e203136323736.roa
File: 3134312e3139332e3232382e302f32342d3234203d3e203136323736.roa (raw, json)
Hash identifier: XoKxKCs3BEOFLSHgiCLlVnkwtYmTvJ1wBNBKD4ag8KE=
Subject key identifier: 3D:0F:8F:9E:CD:61:84:05:99:16:3D:60:1C:3E:04:85:81:62:73:A4
Certificate issuer: /CN=5ecb4cadbbadd500f49ca697d566a2761e017608
Certificate serial: 230651B222FDF842798BADE4CFCE5D7D3AB71264
Authority key identifier: 5E:CB:4C:AD:BB:AD:D5:00:F4:9C:A6:97:D5:66:A2:76:1E:01:76:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XstMrbut1QD0nKaX1Waidh4Bdgg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ac0e13d8-bfe0-4235-afb4-d53edfbacdd2/0/3134312e3139332e3232382e302f32342d3234203d3e203136323736.roa
Signing time: Tue 12 Nov 2024 06:26:51 +0000
ROA not before: Tue 12 Nov 2024 06:21:51 +0000
ROA not after: Tue 11 Nov 2025 06:26:51 +0000
asID: 16276
IP address blocks: 141.193.228.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ac0e13d8-bfe0-4235-afb4-d53edfbacdd2/0/5ECB4CADBBADD500F49CA697D566A2761E017608.crl
rsync://rsync.paas.rpki.ripe.net/repository/ac0e13d8-bfe0-4235-afb4-d53edfbacdd2/0/5ECB4CADBBADD500F49CA697D566A2761E017608.mft
rsync://rpki.ripe.net/repository/DEFAULT/XstMrbut1QD0nKaX1Waidh4Bdgg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:06:51:b2:22:fd:f8:42:79:8b:ad:e4:cf:ce:5d:7d:3a:b7:12:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ecb4cadbbadd500f49ca697d566a2761e017608
Validity
Not Before: Nov 12 06:21:51 2024 GMT
Not After : Nov 11 06:26:51 2025 GMT
Subject: CN=3D0F8F9ECD61840599163D601C3E0485816273A4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:26:c8:88:f2:68:08:29:49:d3:89:eb:69:19:
42:6d:28:f1:50:5d:fc:ad:1d:77:09:22:98:ed:a5:
63:92:80:45:72:0b:e2:d6:c1:94:d4:00:87:a7:0c:
a1:06:a4:40:b1:c0:94:da:2e:9e:dd:4c:3b:35:29:
3a:22:c8:1a:71:c6:2f:22:e0:3b:1a:f6:fe:4d:71:
50:33:8d:e7:d4:3d:34:7a:36:68:ca:1c:e2:52:d3:
fe:f9:62:ad:78:31:8a:3d:c6:1b:27:2f:28:ac:e7:
90:81:68:f8:6c:0c:27:3f:b3:19:58:47:71:4a:50:
43:f6:dd:97:08:26:4d:a1:cc:c4:63:39:3a:ec:90:
10:f7:90:79:43:27:f6:13:f9:f0:1b:5a:af:34:03:
64:47:e2:e6:d0:ba:11:a3:1e:f5:16:e2:8d:f8:de:
19:16:ef:a6:98:7c:af:bf:76:98:82:05:65:29:57:
20:d4:e7:50:3e:c1:91:60:ec:c4:99:13:7a:72:92:
08:9f:3f:fe:de:10:67:45:a1:d9:88:e4:86:69:67:
97:03:1c:ff:2f:83:8e:b6:b5:c9:f1:bd:7e:6e:6d:
fe:81:0a:59:7a:92:1e:ef:f5:54:d0:19:7e:cb:12:
eb:79:22:40:0c:cf:d1:c7:70:d5:51:7a:d6:37:34:
25:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:0F:8F:9E:CD:61:84:05:99:16:3D:60:1C:3E:04:85:81:62:73:A4
X509v3 Authority Key Identifier:
keyid:5E:CB:4C:AD:BB:AD:D5:00:F4:9C:A6:97:D5:66:A2:76:1E:01:76:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/ac0e13d8-bfe0-4235-afb4-d53edfbacdd2/0/5ECB4CADBBADD500F49CA697D566A2761E017608.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XstMrbut1QD0nKaX1Waidh4Bdgg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ac0e13d8-bfe0-4235-afb4-d53edfbacdd2/0/3134312e3139332e3232382e302f32342d3234203d3e203136323736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.193.228.0/24
Signature Algorithm: sha256WithRSAEncryption
26:a0:e8:e3:53:65:bd:f1:65:cd:da:63:35:fd:62:7a:22:01:
8a:84:eb:cf:2f:35:a3:37:ca:ac:c2:ae:d5:fa:90:6d:44:45:
0e:50:98:08:57:c8:bd:a9:44:36:5b:70:cf:e3:de:1b:b2:8e:
74:eb:2b:eb:60:e1:2f:a7:75:8b:4f:da:7d:64:f7:48:72:10:
a8:7a:ed:b3:ea:41:d2:ea:1e:40:79:77:f1:3d:3f:44:d4:c6:
e0:e6:85:5b:2f:d8:0c:2c:27:c8:e1:26:8a:56:37:71:24:dd:
81:9a:86:98:72:39:48:09:08:5d:64:63:d3:ac:1c:ee:b6:5c:
dd:f1:ad:4f:43:15:b6:a2:93:09:b1:01:b2:f0:ec:99:52:46:
a9:22:1a:e8:1f:5d:42:96:59:39:5d:7b:9f:24:31:9b:1e:6b:
b3:c5:46:d6:8c:0c:ea:4a:60:2f:0c:21:7d:7f:f1:43:3d:fa:
2b:e1:a7:30:a4:7f:43:0c:e8:f3:83:08:b9:38:f0:fe:0a:e6:
34:b0:29:69:38:9e:af:0c:a6:aa:bc:d8:84:6b:5a:95:1f:8d:
33:91:57:ee:be:f5:d6:f0:53:76:62:24:46:8b:87:9d:46:d9:
76:cd:3c:e5:39:aa:ca:a8:61:b9:c4:a6:34:87:74:6c:de:72:
d6:e0:58:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 06:41:51 2024 by rpki-client on console-ams.rpki-client.org