Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ac0e13d8-bfe0-4235-afb4-d53edfbacdd2/0/3231332e3235342e3137302e302f32342d3234203d3e203438363738.roa
File: 3231332e3235342e3137302e302f32342d3234203d3e203438363738.roa (raw, json)
Hash identifier: aWzsWkNz9PJPPmM8i0/IefYTbT3Y07R53lZGD0EHqrg=
Subject key identifier: 53:5C:99:58:58:3B:B0:74:FA:08:E9:FD:F3:1D:CF:E7:A9:91:3C:4F
Certificate issuer: /CN=5ecb4cadbbadd500f49ca697d566a2761e017608
Certificate serial: 38B2A86E0C5AC1445D2A9D01A3414579C0E5B45B
Authority key identifier: 5E:CB:4C:AD:BB:AD:D5:00:F4:9C:A6:97:D5:66:A2:76:1E:01:76:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XstMrbut1QD0nKaX1Waidh4Bdgg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ac0e13d8-bfe0-4235-afb4-d53edfbacdd2/0/3231332e3235342e3137302e302f32342d3234203d3e203438363738.roa
Signing time: Mon 11 Nov 2024 17:57:02 +0000
ROA not before: Mon 11 Nov 2024 17:52:02 +0000
ROA not after: Mon 10 Nov 2025 17:57:02 +0000
asID: 48678
IP address blocks: 213.254.170.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ac0e13d8-bfe0-4235-afb4-d53edfbacdd2/0/5ECB4CADBBADD500F49CA697D566A2761E017608.crl
rsync://rsync.paas.rpki.ripe.net/repository/ac0e13d8-bfe0-4235-afb4-d53edfbacdd2/0/5ECB4CADBBADD500F49CA697D566A2761E017608.mft
rsync://rpki.ripe.net/repository/DEFAULT/XstMrbut1QD0nKaX1Waidh4Bdgg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:b2:a8:6e:0c:5a:c1:44:5d:2a:9d:01:a3:41:45:79:c0:e5:b4:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ecb4cadbbadd500f49ca697d566a2761e017608
Validity
Not Before: Nov 11 17:52:02 2024 GMT
Not After : Nov 10 17:57:02 2025 GMT
Subject: CN=535C9958583BB074FA08E9FDF31DCFE7A9913C4F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:13:a5:51:ec:74:45:ab:1b:fe:4a:31:52:6c:
dc:dd:81:7b:55:4b:48:93:58:1e:e7:69:02:0b:ce:
08:0f:2d:23:a6:bb:73:e6:bb:3c:5d:dd:44:63:0f:
17:24:23:db:8f:76:ea:ad:91:d3:0f:1f:ac:a5:77:
23:1f:1c:6f:9e:09:f1:87:b6:20:2b:ec:69:45:48:
45:23:df:57:c7:36:55:52:a7:04:fd:c4:39:6b:80:
e1:c9:63:51:93:8e:08:3e:51:7b:63:5a:5b:40:41:
84:4b:90:35:97:20:86:40:02:e0:cf:e5:67:83:43:
ab:80:a2:47:59:bc:6a:a8:4b:b6:c1:94:e6:54:39:
94:51:4e:12:1e:77:06:14:7d:a4:18:e0:f4:bd:05:
1b:e0:50:2d:c0:00:f8:3a:4c:42:dd:b4:60:d8:13:
0a:2e:3a:c2:07:23:82:8d:7e:8a:62:ed:1b:19:66:
f7:a5:b6:58:1e:00:43:cf:f0:03:ee:d9:94:2e:41:
5d:60:0a:0e:7b:b5:55:b2:6f:55:a1:d3:11:1b:86:
5e:ba:83:31:3a:da:3f:27:36:cf:6a:6f:82:55:c3:
eb:92:14:e3:96:27:b2:bc:c4:be:58:2e:cc:9d:1a:
25:33:04:69:a1:99:ae:d4:97:81:73:50:58:2b:c2:
9a:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:5C:99:58:58:3B:B0:74:FA:08:E9:FD:F3:1D:CF:E7:A9:91:3C:4F
X509v3 Authority Key Identifier:
keyid:5E:CB:4C:AD:BB:AD:D5:00:F4:9C:A6:97:D5:66:A2:76:1E:01:76:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/ac0e13d8-bfe0-4235-afb4-d53edfbacdd2/0/5ECB4CADBBADD500F49CA697D566A2761E017608.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XstMrbut1QD0nKaX1Waidh4Bdgg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ac0e13d8-bfe0-4235-afb4-d53edfbacdd2/0/3231332e3235342e3137302e302f32342d3234203d3e203438363738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.254.170.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:38:6f:a8:e0:76:ba:dc:75:60:c3:0b:76:dc:84:66:67:a1:
90:7d:c3:61:c9:9f:3a:13:c5:5f:ce:b9:36:19:ba:a4:b6:b7:
ae:ac:50:54:01:96:17:4f:6f:7f:44:e3:81:9f:14:fe:1e:7f:
4b:92:14:6e:4f:67:07:4b:8c:d8:ca:e1:09:9a:06:a6:d3:00:
b9:c3:3a:97:a2:08:3f:a3:a8:09:23:2e:04:d5:3b:de:d6:ac:
3c:a9:84:5b:65:ed:da:85:a0:aa:5c:3c:ff:58:0c:e6:5e:0f:
2a:9b:99:9c:11:c2:ff:b2:7d:a7:e0:d5:32:41:a1:d1:fe:67:
cd:e2:22:25:34:ef:2a:04:75:40:79:c9:5d:11:84:de:66:86:
b2:46:23:3e:90:bb:cc:c1:23:1d:50:a3:d3:16:62:da:57:73:
d5:2e:35:3a:5d:81:4e:bb:19:3d:08:de:93:39:87:01:53:21:
ff:d3:5a:c2:df:a0:c2:4a:34:25:46:47:a7:d2:c1:5a:e3:03:
06:25:78:f9:31:67:5a:c8:da:ea:4e:46:2c:f4:79:c6:8d:9b:
17:cf:9d:80:2b:d4:37:23:67:4a:be:24:91:64:7b:bd:74:50:
f3:d5:43:6e:e2:e4:b5:25:e5:e8:38:b7:05:97:3d:56:be:b8:
ef:8c:91:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 12:18:36 2024 by rpki-client on console-ams.rpki-client.org