Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3139332e3234362e3136352e302f32342d3234203d3e20323132383135.roa
File: 3139332e3234362e3136352e302f32342d3234203d3e20323132383135.roa (raw, json)
Hash identifier: 0MZOt4HvMas8BrXRUn7mmjJ49EnLYu2oo981CU8QmMY=
Subject key identifier: 8D:ED:13:D5:20:11:CD:E1:34:A0:F4:51:31:15:9A:28:48:80:AA:E1
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 46321B443D9C091D759BF7AC6F5C2B50E1B0B31E
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3139332e3234362e3136352e302f32342d3234203d3e20323132383135.roa
Signing time: Mon 16 Sep 2024 11:05:20 +0000
ROA not before: Mon 16 Sep 2024 11:00:20 +0000
ROA not after: Mon 15 Sep 2025 11:05:20 +0000
asID: 212815
IP address blocks: 193.246.165.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:32:1b:44:3d:9c:09:1d:75:9b:f7:ac:6f:5c:2b:50:e1:b0:b3:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Sep 16 11:00:20 2024 GMT
Not After : Sep 15 11:05:20 2025 GMT
Subject: CN=8DED13D52011CDE134A0F45131159A284880AAE1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:96:5c:46:e8:a3:77:d5:f3:c9:36:fb:33:2c:
e9:fb:1d:e7:56:8b:ef:24:dd:b9:d6:a3:f2:88:5d:
67:a0:fd:d7:4d:99:42:b2:c5:f7:50:eb:08:2e:02:
c9:c4:72:3e:fe:1b:cf:f5:9a:d2:ee:06:0d:4b:75:
d0:c6:8a:80:16:ab:64:44:ae:73:17:57:c7:4e:22:
a2:94:28:80:32:17:eb:25:ac:3d:d5:79:4f:00:98:
cd:c4:a5:7f:c7:3f:c2:81:1c:bf:e5:4d:f9:cc:28:
9f:90:74:c7:ac:87:4f:14:c9:e5:66:c4:60:c7:eb:
21:bf:37:7e:89:db:52:c4:06:2a:aa:d5:48:69:11:
23:6b:c3:dd:0f:ab:eb:41:0c:38:44:e0:d8:7f:ab:
14:b3:53:23:bd:37:00:7b:13:c0:51:65:0c:cf:45:
ac:4d:35:49:19:9c:f7:7c:1a:7c:12:f3:7c:74:5d:
a7:1b:0e:cb:2b:26:90:77:eb:29:b9:2d:3c:67:b3:
c4:ba:7b:a7:63:65:65:5d:a5:b0:c7:31:0f:f2:a5:
c1:c6:ac:da:15:c1:73:99:e5:87:ea:55:bc:54:e3:
8b:e1:a3:2f:6a:16:24:45:b1:75:02:77:a4:6a:9c:
13:16:dc:ec:ac:8c:0d:2f:ec:35:25:73:a7:90:df:
7d:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:ED:13:D5:20:11:CD:E1:34:A0:F4:51:31:15:9A:28:48:80:AA:E1
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3139332e3234362e3136352e302f32342d3234203d3e20323132383135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.246.165.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:82:30:32:05:53:e4:df:52:80:33:58:4a:a7:e2:d6:37:29:
6e:10:e6:9f:2f:36:f5:8a:24:6d:07:61:29:9f:0a:7e:e8:d0:
c8:14:4e:3d:04:4f:01:33:ba:d8:f6:3d:5b:fe:a1:5d:6f:32:
f9:6a:12:52:a9:ea:b9:e2:6c:73:b9:f1:f1:d9:ff:37:80:ba:
b7:fa:d4:b2:2a:f6:09:b7:99:a1:25:b2:cd:ef:dc:67:1b:2c:
17:e8:06:df:ba:6d:0f:63:b0:d6:49:54:d6:dd:24:5d:87:fd:
e5:4e:e9:57:ba:14:92:32:37:50:c8:06:3e:e9:5d:ed:f3:69:
4b:e4:e4:1b:37:b9:45:19:61:c1:40:4e:12:14:72:6c:3e:46:
c1:25:a3:aa:5f:d2:08:0c:e3:d0:a3:50:fa:de:b0:ff:51:85:
be:9f:1a:84:c7:7e:d8:15:f7:fd:b8:77:0d:b2:4a:69:dc:e8:
15:50:ae:f1:29:a9:8e:6d:67:3d:1c:57:cd:5d:b1:bb:25:c1:
b6:00:5b:a1:92:86:02:21:2b:07:4d:8e:fc:77:b0:c0:4f:60:
91:c6:8f:1f:a3:5f:f0:29:75:85:30:9c:9e:a4:f5:2b:b7:1a:
7f:c6:fb:6d:52:ef:5c:f4:ef:e6:2d:ad:98:33:b0:a9:d8:e6:
9c:8f:fc:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:58:16 2024 by rpki-client on console-ams.rpki-client.org