Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3139332e3234362e3136352e302f32342d3234203d3e20323136313539.roa
File: 3139332e3234362e3136352e302f32342d3234203d3e20323136313539.roa (raw, json)
Hash identifier: Knyqv2yIrZVjwlATqt0eqXM0GwY08t79WuW9NDxezcs=
Subject key identifier: 23:29:3E:2E:03:7D:D8:73:AB:7A:C3:4A:6D:F5:18:13:EA:5D:4B:14
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 7D98CB48EDEFBAEFA1999DE73152D924A1B5F2E1
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3139332e3234362e3136352e302f32342d3234203d3e20323136313539.roa
Signing time: Fri 04 Oct 2024 16:43:22 +0000
ROA not before: Fri 04 Oct 2024 16:38:22 +0000
ROA not after: Fri 03 Oct 2025 16:43:22 +0000
asID: 216159
IP address blocks: 193.246.165.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:98:cb:48:ed:ef:ba:ef:a1:99:9d:e7:31:52:d9:24:a1:b5:f2:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Oct 4 16:38:22 2024 GMT
Not After : Oct 3 16:43:22 2025 GMT
Subject: CN=23293E2E037DD873AB7AC34A6DF51813EA5D4B14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:18:af:f1:95:2b:a4:8f:1b:3e:b0:aa:48:2a:
54:eb:e6:16:a9:49:50:b0:37:d5:25:d0:4a:20:5f:
50:f1:fe:a4:dd:f7:8c:68:24:87:0f:2f:2a:b9:17:
f0:fa:fd:6e:6f:fc:57:98:58:ef:64:80:d9:5f:0e:
cc:6c:e7:c2:5c:43:b7:7d:d4:ed:ca:9c:09:72:ec:
56:e1:a7:b2:16:38:65:be:57:61:6e:f5:04:b4:54:
29:2e:69:8a:60:68:00:35:d4:87:59:5c:17:5e:cd:
18:18:bb:5f:34:5c:1b:56:17:f8:d7:bf:08:ee:51:
b9:08:5f:48:f6:b8:59:76:bf:21:36:1b:ac:05:8d:
97:6c:f6:a2:e3:c8:07:dc:7c:fc:74:b0:26:9b:72:
cb:11:b3:91:02:d5:9a:d8:e1:26:cb:84:d7:b5:78:
1b:27:27:59:fe:9b:eb:72:73:16:5f:7d:e6:72:de:
d4:81:7e:11:88:ef:bd:72:7d:ed:f9:69:03:37:a3:
9f:cc:61:a1:d2:58:d7:29:b5:9a:3b:a9:f6:ab:fd:
c3:3f:fe:f7:d9:c6:2a:86:3d:85:40:73:49:77:7d:
e5:98:57:4e:fb:25:32:2e:bc:00:b8:ff:8c:2c:83:
46:e9:f2:38:89:7d:14:d1:49:39:ef:74:7e:63:3b:
c4:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:29:3E:2E:03:7D:D8:73:AB:7A:C3:4A:6D:F5:18:13:EA:5D:4B:14
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3139332e3234362e3136352e302f32342d3234203d3e20323136313539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.246.165.0/24
Signature Algorithm: sha256WithRSAEncryption
17:71:f6:d8:27:8a:46:df:4b:64:8b:81:07:44:3a:ec:50:0c:
d8:19:1f:3f:b5:9d:ed:5c:9c:72:50:27:ae:85:05:88:de:b1:
c3:e2:82:25:a3:62:7f:10:61:4c:30:14:b7:46:10:48:bd:8f:
68:ec:46:95:98:97:cd:f8:1a:77:da:78:95:33:96:b4:87:c6:
3b:bc:8c:00:2b:2c:66:7c:ec:9f:76:a4:e0:38:dc:ae:98:3f:
ae:99:e7:18:9e:5b:46:c5:95:fb:14:ef:5e:66:fe:42:84:31:
66:92:6d:cb:a1:38:41:9c:9d:e6:62:5f:04:6f:a7:e5:9e:12:
56:92:60:de:0c:f8:0a:5d:9d:99:fd:23:4f:79:b9:96:0b:19:
e9:4f:a3:02:5b:c2:6d:e0:50:30:4a:4f:ab:17:34:d6:42:92:
0b:aa:b7:63:8b:ce:76:be:b7:e8:09:26:fb:0c:47:55:15:7a:
09:5a:3a:8c:a0:a5:eb:c7:4d:36:23:a8:60:9e:14:4a:6d:51:
98:a6:d7:34:c9:ef:73:b5:4d:19:8f:76:42:c6:d8:54:b5:37:
14:52:00:a2:50:c5:ec:7f:31:ec:84:80:75:8a:e5:fe:42:af:
0d:06:0c:86:83:ad:24:28:14:32:c4:fe:8a:b2:3d:aa:26:a2:
39:17:5e:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 07:52:36 2024 by rpki-client on console-fra.rpki-client.org