Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3139332e3234362e3136342e302f32342d3234203d3e20323136333534.roa
File: 3139332e3234362e3136342e302f32342d3234203d3e20323136333534.roa (raw, json)
Hash identifier: VvPsf6A+Y3z20hhjgv/WfBX89x0YZvaDcrY+fdYI0Nk=
Subject key identifier: 2C:CB:F6:74:33:2B:8E:81:B3:95:CB:0D:C2:6B:B6:14:41:30:C5:3D
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 1CDAC60A8DEAE3D30B22A0D97CB1535E61855E2B
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3139332e3234362e3136342e302f32342d3234203d3e20323136333534.roa
Signing time: Sat 06 Apr 2024 02:55:26 +0000
ROA not before: Sat 06 Apr 2024 02:50:26 +0000
ROA not after: Sat 05 Apr 2025 02:55:26 +0000
asID: 216354
IP address blocks: 193.246.164.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 01:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:da:c6:0a:8d:ea:e3:d3:0b:22:a0:d9:7c:b1:53:5e:61:85:5e:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Apr 6 02:50:26 2024 GMT
Not After : Apr 5 02:55:26 2025 GMT
Subject: CN=2CCBF674332B8E81B395CB0DC26BB6144130C53D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:89:a8:6c:4d:65:35:08:97:62:50:a0:2f:49:
34:7f:7e:6c:94:fc:03:99:f4:6b:9b:56:ea:4a:92:
d6:47:36:c1:8e:c4:71:39:05:b7:b5:05:a8:c5:f1:
ef:a6:4f:d4:0e:25:6a:e5:2a:fe:10:61:70:20:ff:
32:7a:39:b7:e2:fa:99:d9:64:fe:30:6a:70:2c:39:
f2:f3:fd:d2:5f:7e:ef:50:b5:93:20:ca:c3:e2:a2:
66:f4:de:52:14:58:51:e4:ae:7e:b2:a4:a2:4f:17:
8d:a3:4f:ea:89:9e:5e:ae:7d:f2:fe:55:51:ef:20:
b2:de:6b:9d:c7:76:e7:d5:93:48:44:f0:4d:b1:8c:
8b:dc:49:e1:17:1c:f5:2d:bf:b9:cf:5a:53:99:94:
04:12:40:a7:eb:23:0d:22:02:b3:ae:df:87:de:37:
1a:90:bc:59:70:5d:47:77:b1:73:02:c6:d7:bf:13:
45:0b:0e:5a:07:35:82:0c:a5:d6:dd:e7:0e:71:41:
fd:b5:14:c8:35:54:c6:9c:da:c0:4b:75:4b:aa:5b:
fa:e3:6d:0c:5e:5f:7d:a2:a5:9a:c1:02:a1:af:9e:
43:f0:50:21:87:9d:10:48:6e:2e:8c:22:c8:ec:a0:
b4:a6:a5:94:96:89:c7:48:a8:9a:4e:e3:4d:c0:46:
f0:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:CB:F6:74:33:2B:8E:81:B3:95:CB:0D:C2:6B:B6:14:41:30:C5:3D
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3139332e3234362e3136342e302f32342d3234203d3e20323136333534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.246.164.0/24
Signature Algorithm: sha256WithRSAEncryption
90:58:f4:37:bd:e0:2d:f9:4f:ba:7e:aa:60:c7:00:ef:d2:cc:
26:c1:7c:ba:90:c1:e5:95:23:85:6c:d0:03:80:d0:6f:12:fa:
2b:8a:c9:4d:8f:3f:8d:ab:b9:6a:1f:57:92:c5:7e:72:7e:ba:
3f:ee:0e:eb:3e:d4:be:62:04:4b:1e:aa:e4:0b:7d:9d:1c:98:
66:0d:85:f4:44:7e:14:1e:57:9f:40:69:f3:22:93:90:66:6f:
08:4b:58:cb:0e:01:f3:3c:9b:21:a8:e9:06:75:73:e5:75:f0:
fa:08:21:8d:e2:53:02:c9:29:ec:bb:bc:fc:87:c9:f3:2e:e5:
67:34:84:98:b1:72:64:e2:f5:39:d2:cc:6f:a4:e2:a0:3b:dc:
f9:b7:b7:30:de:04:ca:8f:e3:0e:2e:35:36:ed:ec:16:62:b9:
aa:b3:1d:b7:b0:30:ae:93:8e:19:75:1e:6e:f0:ce:54:2d:5c:
52:df:fe:63:15:d7:fd:e2:bc:2c:af:2e:fc:fe:67:51:75:1f:
f5:b5:8a:f9:af:44:7f:11:e2:ca:7d:26:8f:53:d2:1a:c8:02:
0c:08:b4:c9:22:cd:2b:97:f0:af:3f:80:88:7d:95:80:cf:1f:
e2:dc:60:f6:15:ee:de:e2:2f:f4:ef:02:8b:32:fb:be:4d:09:
e0:33:c6:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 04:19:26 2024 by rpki-client on console-fra.rpki-client.org