Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3139332e3234362e3136352e302f32342d3234203d3e20323132383135.roa
File: 3139332e3234362e3136352e302f32342d3234203d3e20323132383135.roa (raw, json)
Hash identifier: X7/aTKaQDtBAUHdF11knfu0vTMr6yZkG3ip2nL85PEQ=
Subject key identifier: D2:56:4D:32:CB:2A:38:8D:79:1F:8C:FF:0B:54:19:19:74:FD:D7:24
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 05A4A6FEC2610F53918E8DDC2A47C0838E833A69
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3139332e3234362e3136352e302f32342d3234203d3e20323132383135.roa
Signing time: Mon 16 Oct 2023 10:30:45 +0000
ROA not before: Mon 16 Oct 2023 10:25:45 +0000
ROA not after: Mon 14 Oct 2024 10:30:45 +0000
asID: 212815
IP address blocks: 193.246.165.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 04:53:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:a4:a6:fe:c2:61:0f:53:91:8e:8d:dc:2a:47:c0:83:8e:83:3a:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Oct 16 10:25:45 2023 GMT
Not After : Oct 14 10:30:45 2024 GMT
Subject: CN=D2564D32CB2A388D791F8CFF0B54191974FDD724
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:0f:11:f4:4a:53:8a:5d:c4:78:44:8a:66:08:
de:17:fa:0a:87:dc:49:ba:0a:cb:43:7a:e4:e8:3f:
88:d1:b6:8f:60:1c:02:99:92:82:fc:47:73:6f:1e:
9b:63:b4:79:97:f9:4e:8b:38:67:3b:0b:7a:0b:03:
32:00:df:a9:43:69:82:ef:ba:32:cc:aa:0f:1b:95:
46:c9:de:b7:0c:b0:06:b0:15:af:0f:ee:70:45:79:
7a:8a:6a:67:05:e8:de:bf:92:d4:e6:ee:15:8d:84:
08:43:4d:b2:e7:0b:33:75:2f:8b:8f:9e:b4:30:b1:
61:90:a0:0c:8f:65:86:0d:46:61:8d:6c:a6:d5:76:
83:38:78:1d:76:94:b1:c0:10:75:18:12:d6:5b:41:
20:84:bf:b8:7e:a8:bb:da:23:87:70:b6:fa:f0:e4:
04:07:a5:07:62:c3:12:8c:8e:34:cb:ed:c1:35:76:
a7:62:e7:30:4a:c4:bb:b2:97:94:8a:26:15:cf:de:
83:ad:dd:21:4b:8f:fb:02:f2:3e:96:8a:88:fb:04:
f3:f8:5f:0e:a5:10:d3:a5:cf:d6:fb:bf:a4:eb:fd:
63:f4:08:95:26:49:4d:f8:9d:01:9e:15:41:21:b0:
30:e1:53:65:c0:82:d6:72:94:10:12:7d:8c:5c:28:
8e:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:56:4D:32:CB:2A:38:8D:79:1F:8C:FF:0B:54:19:19:74:FD:D7:24
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3139332e3234362e3136352e302f32342d3234203d3e20323132383135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.246.165.0/24
Signature Algorithm: sha256WithRSAEncryption
64:0f:a3:f0:f3:99:02:83:4b:2d:10:a1:89:d4:fc:f1:12:4b:
6e:94:a6:83:a7:6f:51:fb:06:38:17:f9:62:70:a7:13:d9:87:
94:f6:1f:57:83:49:e2:6a:db:40:4b:51:37:da:0f:b1:da:08:
bb:4b:ef:b7:c9:7c:36:a8:78:ed:05:a6:e2:6f:cf:d0:be:3c:
be:00:18:3c:5b:77:0c:49:88:23:a4:92:06:0c:e8:3b:9d:4a:
ad:3a:71:d4:18:22:3c:9f:6f:d4:11:3f:96:20:4d:35:ea:3c:
51:6c:a6:7b:81:83:c1:49:5a:84:76:2d:64:64:22:ba:e4:2b:
7e:7f:57:96:b3:f8:e5:e9:fd:02:6d:dc:02:d8:4e:00:21:e3:
f8:bc:8e:29:4c:1b:32:8a:71:2d:c5:0f:e6:26:59:36:87:04:
78:f8:f3:ec:97:d5:a0:94:34:3d:51:42:55:48:21:fa:ed:86:
6f:fa:60:a6:8f:49:48:14:bc:2b:6c:ff:12:23:1f:a4:57:ee:
4a:ef:0a:3f:a2:e1:02:3d:f8:e8:b6:6b:8c:dd:30:e4:42:c4:
97:be:4d:52:31:71:56:d3:78:8d:f9:62:2e:46:d2:e7:32:2e:
10:33:f7:3b:f8:e4:6a:39:ad:70:00:c3:3b:5b:fc:36:82:6b:
01:79:27:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 10:32:49 2024 by rpki-client on console-ams.rpki-client.org