Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3139332e3234362e3136342e302f32342d3234203d3e20323136333534.roa
File: 3139332e3234362e3136342e302f32342d3234203d3e20323136333534.roa (raw, json)
Hash identifier: DhR0rCB43xZV8+sw/Gai3ZpMGktTM4lItfN2VRWPZCc=
Subject key identifier: 0A:B7:07:EE:E0:43:48:0D:FB:AA:23:3B:23:58:18:9F:20:B1:C5:55
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 6022F37D2FD8419423E944329E0233B6BFB4B0D1
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3139332e3234362e3136342e302f32342d3234203d3e20323136333534.roa
Signing time: Wed 07 Aug 2024 11:40:39 +0000
ROA not before: Wed 07 Aug 2024 11:35:39 +0000
ROA not after: Wed 06 Aug 2025 11:40:39 +0000
asID: 216354
IP address blocks: 193.246.164.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:22:f3:7d:2f:d8:41:94:23:e9:44:32:9e:02:33:b6:bf:b4:b0:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Aug 7 11:35:39 2024 GMT
Not After : Aug 6 11:40:39 2025 GMT
Subject: CN=0AB707EEE043480DFBAA233B2358189F20B1C555
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:cb:28:2d:32:6c:22:ad:96:d8:8d:07:b0:9c:
cb:8a:c3:06:e8:98:fc:0d:24:c1:04:27:fc:18:09:
23:76:db:b0:7f:42:e3:ba:22:4a:fc:a1:7c:d4:be:
75:96:74:94:d4:01:68:39:fb:e3:19:5d:d1:39:41:
36:00:5c:31:3d:54:06:46:f5:0b:31:00:a1:6a:d6:
26:b6:7a:23:47:96:99:0a:04:28:3b:d0:62:a9:cc:
ca:b4:64:ae:b5:87:48:82:b9:06:a8:50:c7:13:c0:
f2:0b:14:cc:dd:c7:b3:95:16:5e:14:e3:87:2e:7e:
ad:ec:24:cc:7d:92:73:88:e8:80:3b:b0:27:ee:7b:
34:9c:8f:e7:61:fe:35:68:fa:7b:be:89:39:d7:58:
2d:a4:dd:e1:a8:35:f7:4d:44:48:da:42:33:4e:a6:
5a:ec:49:91:20:fe:9c:7d:cc:04:30:9a:22:b7:5c:
a8:47:7d:1b:dc:f4:d3:3b:4b:41:9f:2e:84:d2:bd:
6a:48:41:e3:b2:ff:3e:1e:00:94:05:af:c3:31:59:
29:0d:22:db:aa:96:d6:53:9d:a3:8e:7c:e1:5b:ae:
da:46:fa:f2:d9:9a:ac:9d:84:aa:8b:70:64:07:5e:
ec:be:93:6d:52:f8:ad:a0:91:dc:55:a1:a6:a6:4a:
2c:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:B7:07:EE:E0:43:48:0D:FB:AA:23:3B:23:58:18:9F:20:B1:C5:55
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3139332e3234362e3136342e302f32342d3234203d3e20323136333534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.246.164.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:70:16:30:a2:d0:bc:11:57:c5:76:7f:1e:bc:66:17:88:c8:
19:fc:1a:77:50:a3:b2:ad:74:a3:d8:f0:83:c1:86:0d:96:3e:
a6:24:ce:63:41:76:9f:26:47:b6:43:53:3e:53:1c:8b:dd:80:
8b:25:66:75:af:30:32:05:86:a2:43:78:da:e3:da:13:11:7b:
43:cc:23:60:1a:dc:03:92:8e:ed:b9:75:e5:96:e0:dd:8a:dc:
36:7e:b8:2e:26:fd:0f:fa:b3:33:e0:00:54:6f:3f:bb:e6:74:
06:1a:04:ef:7d:15:52:fc:a9:41:af:7e:29:5c:44:de:d3:35:
b5:a2:be:db:c6:eb:ab:d3:a1:35:81:a3:17:cb:4f:2c:ce:29:
25:e6:71:ca:af:2e:93:08:a1:76:7c:69:61:f5:14:01:29:16:
d6:59:64:a1:00:04:30:0d:1c:7a:b2:d1:cc:19:fb:80:be:58:
4a:7a:98:f7:78:23:c8:f6:31:d7:74:dc:3c:ce:33:5e:0f:b7:
c9:c7:b6:7e:42:57:5a:a2:66:9c:25:c8:1d:84:07:f7:f4:1d:
3c:be:99:40:1a:62:fc:0c:db:81:44:21:f4:13:a2:fe:21:7f:
90:70:63:11:5b:30:5a:f3:9d:5a:4a:bc:ae:64:24:33:7f:62:
f3:bd:09:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:50:40 2024 by rpki-client on console-fra.rpki-client.org