Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/3139352e3138342e39322e302f32332d3234203d3e203631333137.roa
File: 3139352e3138342e39322e302f32332d3234203d3e203631333137.roa (raw, json)
Hash identifier: A1CjnV+NyDZwOVxdBcrWKwBSG1WxLzqze1hZgIjxST4=
Subject key identifier: 24:6F:3C:31:D7:DD:F5:10:FC:B2:4A:A7:AF:CD:22:51:10:C6:CF:2F
Certificate issuer: /CN=9f0d24c855eee00fe4abf3903c6e8fcc7083ed4d
Certificate serial: 31B18DF17906BE812CF32901209412D7B80C653D
Authority key identifier: 9F:0D:24:C8:55:EE:E0:0F:E4:AB:F3:90:3C:6E:8F:CC:70:83:ED:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nw0kyFXu4A_kq_OQPG6PzHCD7U0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/3139352e3138342e39322e302f32332d3234203d3e203631333137.roa
Signing time: Wed 22 May 2024 16:05:16 +0000
ROA not before: Wed 22 May 2024 16:00:16 +0000
ROA not after: Wed 21 May 2025 16:05:16 +0000
asID: 61317
IP address blocks: 195.184.92.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/9F0D24C855EEE00FE4ABF3903C6E8FCC7083ED4D.crl
rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/9F0D24C855EEE00FE4ABF3903C6E8FCC7083ED4D.mft
rsync://rpki.ripe.net/repository/DEFAULT/nw0kyFXu4A_kq_OQPG6PzHCD7U0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:b1:8d:f1:79:06:be:81:2c:f3:29:01:20:94:12:d7:b8:0c:65:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f0d24c855eee00fe4abf3903c6e8fcc7083ed4d
Validity
Not Before: May 22 16:00:16 2024 GMT
Not After : May 21 16:05:16 2025 GMT
Subject: CN=246F3C31D7DDF510FCB24AA7AFCD225110C6CF2F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:5a:52:bb:9b:f5:34:80:1f:bc:00:67:d5:8a:
f1:58:e2:d3:cf:8d:48:93:70:6a:f5:c8:79:05:d9:
fc:e2:c6:6a:c8:2f:5a:6a:23:af:96:e5:36:d9:7d:
6e:33:72:be:8d:b3:f6:a0:97:90:69:ef:f9:39:7f:
55:b3:1c:0e:42:c8:42:d3:77:0f:31:bb:f2:b4:b9:
0a:b8:e9:63:61:e9:32:e4:81:02:e4:b6:28:c9:fe:
31:b5:4f:e7:11:b2:5e:99:25:c2:05:44:2c:a5:f4:
7d:86:05:9d:bb:d5:4d:e4:13:67:66:4b:51:6d:1f:
16:21:0b:dd:8f:68:dc:bf:77:7b:0c:4f:ab:54:4c:
08:04:18:e6:24:af:b4:0d:da:43:ae:ff:73:96:98:
6a:dc:32:a0:c5:2c:27:26:8e:bd:a0:be:f0:df:fc:
26:bd:63:ef:75:38:2e:4f:90:72:a7:09:31:e8:f7:
4f:62:31:50:3e:62:1b:55:41:48:88:7a:62:84:d0:
86:31:f7:11:25:54:1a:02:10:50:e1:b2:af:2b:5f:
43:8c:c3:14:e8:f0:3e:fd:1e:81:bb:10:f4:11:94:
3c:a0:76:b9:10:ff:74:4a:c6:68:73:83:59:53:90:
c1:03:20:38:73:6f:8d:29:7b:3d:cb:a1:5d:28:6f:
2a:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:6F:3C:31:D7:DD:F5:10:FC:B2:4A:A7:AF:CD:22:51:10:C6:CF:2F
X509v3 Authority Key Identifier:
keyid:9F:0D:24:C8:55:EE:E0:0F:E4:AB:F3:90:3C:6E:8F:CC:70:83:ED:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/9F0D24C855EEE00FE4ABF3903C6E8FCC7083ED4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nw0kyFXu4A_kq_OQPG6PzHCD7U0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/3139352e3138342e39322e302f32332d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.184.92.0/23
Signature Algorithm: sha256WithRSAEncryption
28:48:d5:fe:c0:e6:c9:65:a6:cc:0e:e1:ea:c3:6f:a2:e6:c0:
e8:ac:d9:87:54:f5:27:48:76:9d:5a:c9:68:7a:df:3e:02:7e:
8c:14:df:f5:d9:54:a7:09:24:e8:a5:76:e6:38:f2:73:8b:cb:
14:ca:a1:c6:2e:7b:4d:31:08:d5:89:a8:95:b9:1f:75:88:d7:
7e:02:6f:aa:e1:ed:d6:e6:ed:26:bc:5d:dd:16:3f:11:02:d2:
a7:42:07:63:60:47:98:48:6f:2f:01:0c:ea:48:d0:8b:b4:fd:
b3:80:29:38:39:e1:c6:fd:ae:80:87:c3:10:35:aa:23:84:66:
8b:9e:35:5f:ba:cd:a5:10:a2:af:36:dc:70:85:4e:b0:0d:09:
4e:c0:8c:8a:d0:6d:8d:21:59:80:4b:87:29:89:11:7b:89:73:
91:fd:7e:3f:b9:9c:e1:ef:76:a6:e1:37:42:29:4d:b2:39:2b:
76:e3:52:15:ee:6c:02:fd:bb:ce:5f:32:c5:2a:ca:7f:44:d9:
12:94:e6:14:f9:e0:de:09:c3:36:bf:bb:ed:95:7a:84:3c:47:
1f:68:98:39:0c:72:d8:f3:ee:d7:23:6d:84:9f:ca:35:e9:ba:
d6:24:1a:15:c3:42:75:8e:bf:6a:2b:87:4e:2d:22:a3:c8:7b:
72:64:1e:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:58:16 2024 by rpki-client on console-ams.rpki-client.org