Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3139332e3234362e3136302e302f32342d3234203d3e2037303138.roa
File: 3139332e3234362e3136302e302f32342d3234203d3e2037303138.roa (raw, json)
Hash identifier: mnOhk9qVHZdudnnSQjVJtm1dlu2akYgW2xeQxmmNKrs=
Subject key identifier: 75:2E:7F:E6:18:50:83:D2:BC:87:19:DA:11:86:9D:C3:62:06:10:36
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 1C9BA7C4BDF9EAA8FC402AA78E4F08930A3D4AD2
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3139332e3234362e3136302e302f32342d3234203d3e2037303138.roa
Signing time: Thu 12 Dec 2024 15:53:48 +0000
ROA not before: Thu 12 Dec 2024 15:48:48 +0000
ROA not after: Thu 11 Dec 2025 15:53:48 +0000
asID: 7018
IP address blocks: 193.246.160.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 05:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:9b:a7:c4:bd:f9:ea:a8:fc:40:2a:a7:8e:4f:08:93:0a:3d:4a:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Dec 12 15:48:48 2024 GMT
Not After : Dec 11 15:53:48 2025 GMT
Subject: CN=752E7FE6185083D2BC8719DA11869DC362061036
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d7:83:fc:61:ec:8c:98:df:c5:d2:cd:b2:ec:
c7:aa:13:c8:24:6d:4e:62:3e:80:6f:a2:ad:65:cd:
53:55:8b:ab:a2:b3:df:d8:42:df:0d:06:7c:2d:1b:
0b:95:62:b3:33:13:d3:89:db:4e:16:ce:6e:71:7a:
96:f5:61:be:db:94:c5:1d:fe:fc:f0:c2:71:53:56:
bb:23:7d:3c:2a:1c:b8:af:3c:2d:6e:b6:f9:d0:24:
ed:f4:2f:56:3c:2a:6e:38:f3:75:8d:6a:dc:7e:bd:
f4:78:80:56:ff:93:d3:11:cb:20:9f:a2:17:64:0f:
84:7d:07:74:19:88:a2:96:0c:71:46:6f:a8:79:fa:
13:07:ab:3e:fc:0e:26:0f:5f:4e:f7:12:12:73:5c:
d5:cf:4d:ea:75:a3:59:8c:b6:06:ae:75:22:22:b0:
cf:ed:d0:fe:56:7f:2f:2f:15:13:1d:6f:bd:50:9d:
d3:7f:6c:62:79:c8:90:9e:69:27:fe:c9:94:f9:44:
8c:0a:5b:a2:f7:a7:81:ff:0c:ab:cc:7c:12:39:df:
2f:75:db:a7:02:15:52:73:bd:49:cc:5e:d1:fc:ff:
7b:ad:ae:92:30:f0:61:f6:bc:90:a8:b4:74:08:6a:
bb:7d:af:39:29:68:7d:ae:da:13:36:b1:3c:c5:cd:
98:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:2E:7F:E6:18:50:83:D2:BC:87:19:DA:11:86:9D:C3:62:06:10:36
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3139332e3234362e3136302e302f32342d3234203d3e2037303138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.246.160.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:90:4a:2b:a3:9e:54:d8:3f:83:e3:6f:df:8c:bf:07:89:f0:
8f:b3:26:76:f4:83:67:21:6a:60:24:d8:71:3e:d5:a8:8b:09:
94:5e:f8:91:bf:d5:23:99:d7:00:7c:f7:8d:f7:e3:80:94:d8:
a0:26:80:3f:d8:d4:5c:44:06:86:ce:c0:83:62:4f:4e:91:ee:
4e:07:bf:c3:eb:dd:2c:15:58:e4:e4:cf:7c:67:33:37:c0:a8:
2e:d5:fc:b6:1c:88:14:4f:67:2e:9b:6a:d7:39:0e:ad:f9:ac:
51:4b:ad:ec:a6:23:36:ba:24:ea:d4:8d:49:6c:a4:3a:b8:5a:
a7:d1:47:e0:d8:9b:d8:0f:22:fb:e6:92:38:a1:58:74:08:f9:
70:7e:81:76:da:fe:45:ed:72:94:b0:13:66:a8:0b:0c:03:df:
81:19:b0:12:cb:07:e2:6e:99:a0:55:0c:e1:c8:cb:5f:85:3c:
42:e6:3d:33:6e:4e:4c:14:cc:ff:b3:0b:82:97:45:3b:f5:a4:
b6:f0:7a:0d:41:2d:94:b0:55:cb:37:a0:bb:28:1f:c9:e6:9d:
3c:9c:d4:9b:70:69:c9:2c:40:46:69:bb:c2:af:ee:16:be:6b:
d3:d5:7e:71:30:ee:43:81:9b:8c:95:72:f1:f0:5a:37:aa:a1:
29:07:ee:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:44:53 2025 by rpki-client