Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3139332e3234362e3136312e302f32342d3234203d3e203631313132.roa
File: 3139332e3234362e3136312e302f32342d3234203d3e203631313132.roa (raw, json)
Hash identifier: tHx9hp1tidakUarA/ZRTu8j5COwPEOXL72js2i1T1Os=
Subject key identifier: 32:55:41:06:03:C1:5D:5A:ED:69:C5:A7:D8:E6:15:3C:06:B3:10:F8
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 5BC01CB9BE64F2A70A3E5345A143C9F1A13AAF44
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3139332e3234362e3136312e302f32342d3234203d3e203631313132.roa
Signing time: Sun 24 Nov 2024 11:43:28 +0000
ROA not before: Sun 24 Nov 2024 11:38:28 +0000
ROA not after: Sun 23 Nov 2025 11:43:28 +0000
asID: 61112
IP address blocks: 193.246.161.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 19:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:c0:1c:b9:be:64:f2:a7:0a:3e:53:45:a1:43:c9:f1:a1:3a:af:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Nov 24 11:38:28 2024 GMT
Not After : Nov 23 11:43:28 2025 GMT
Subject: CN=3255410603C15D5AED69C5A7D8E6153C06B310F8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:aa:f8:22:fd:51:c7:9f:72:ea:72:27:98:f7:
01:90:4d:8d:bb:6a:97:fc:fe:1f:6f:9f:01:2f:85:
73:b1:4e:43:3e:a0:bb:fd:91:b8:ab:6e:36:f4:76:
58:02:ce:f8:d7:15:85:6e:6b:74:2f:71:93:2d:80:
37:38:f7:93:eb:ba:36:f8:d2:c3:5a:d9:7b:53:e4:
8c:ce:ab:73:e7:a9:5f:05:05:f6:0b:55:4f:f1:ea:
e5:35:a3:02:71:5c:b5:a8:ee:b6:92:c1:a0:0d:1b:
22:88:41:2a:72:8e:93:9b:57:69:ee:5e:7d:0e:d6:
08:f2:b7:b7:df:1b:30:a5:9f:fa:e9:cd:b9:32:bb:
7e:64:ea:f2:af:dd:b5:6d:33:d1:3e:fc:1f:49:5d:
e1:9d:b7:2d:1f:98:91:23:14:2e:f5:2b:42:89:ba:
5b:0a:34:1d:5b:3b:63:16:bd:ab:0d:07:a4:c2:8a:
36:c5:c9:8e:00:b0:81:26:33:ac:dd:e1:a4:69:1d:
f5:1d:50:0b:0a:c1:f0:8a:51:ee:23:6a:9d:e3:4c:
3a:d3:82:6c:72:86:3b:b4:7f:42:f1:1d:60:bd:01:
db:03:b3:34:9d:1a:10:fc:43:70:83:f7:57:cf:9f:
eb:03:cd:6c:1e:77:6d:9f:6f:73:36:93:7a:fc:83:
a8:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:55:41:06:03:C1:5D:5A:ED:69:C5:A7:D8:E6:15:3C:06:B3:10:F8
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3139332e3234362e3136312e302f32342d3234203d3e203631313132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.246.161.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:5a:e4:f6:27:14:4e:32:88:be:2c:46:a4:19:cd:40:dd:5b:
3b:32:54:a1:ac:a9:9a:86:67:d4:67:37:7b:22:c5:d0:bb:b8:
b8:a2:a2:66:87:0d:2b:77:dd:27:79:67:85:83:07:ef:54:4d:
19:d1:3d:4a:0b:6c:2c:8d:d9:37:b6:9b:bc:4c:9d:6b:8b:69:
d5:e7:61:52:56:7c:1f:7e:bf:7c:1c:fc:9b:4c:40:fc:80:f7:
60:1a:f1:ac:de:2a:ed:39:e9:03:6f:e1:5d:70:75:56:49:6f:
63:cc:53:9a:bc:71:9d:d1:86:b9:9e:e1:f4:ac:fa:48:00:41:
0f:e3:54:7a:44:9f:6e:cb:d4:e9:d9:a0:0c:3e:a5:8a:94:4f:
84:8b:76:ba:a5:f8:03:ee:46:24:9f:ab:5a:3d:4e:d1:e6:a3:
3b:91:13:36:c6:cf:0d:b9:df:64:91:c3:01:22:8e:b2:9e:8b:
0f:f9:fa:e6:dd:cb:6c:bb:f8:ed:3d:0d:e8:33:a6:a7:81:1c:
5f:4d:48:7d:9f:51:9f:3c:12:97:d2:8d:ee:c6:23:e2:18:cd:
ca:12:d1:27:e8:f6:cb:06:59:27:98:74:f4:e2:d2:e9:bd:ee:
a4:07:60:f2:48:f4:85:16:49:cf:4a:9d:92:2d:60:51:3b:0d:
6e:3c:31:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 05:22:22 2025 by rpki-client