Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/3134362e31392e3231362e302f32342d3234203d3e203437363739.roa
File: 3134362e31392e3231362e302f32342d3234203d3e203437363739.roa (raw, json)
Hash identifier: M40SLR/Dm1vkTS/MeclSMY0WW2cvfTYZdkCzs/rDLIA=
Subject key identifier: CB:38:A6:A6:DB:31:78:2D:14:45:BC:85:88:DB:6E:FC:4A:DC:97:1C
Certificate issuer: /CN=cefce449bea8deaedb1804dba25c584df5873dc4
Certificate serial: 138F20477FD924A8B7019B2F1F64A791F6A4E400
Authority key identifier: CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/3134362e31392e3231362e302f32342d3234203d3e203437363739.roa
Signing time: Wed 20 Mar 2024 19:58:05 +0000
ROA not before: Wed 20 Mar 2024 19:53:05 +0000
ROA not after: Wed 19 Mar 2025 19:58:05 +0000
asID: 47679
IP address blocks: 146.19.216.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.crl
rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.mft
rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 05:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:8f:20:47:7f:d9:24:a8:b7:01:9b:2f:1f:64:a7:91:f6:a4:e4:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cefce449bea8deaedb1804dba25c584df5873dc4
Validity
Not Before: Mar 20 19:53:05 2024 GMT
Not After : Mar 19 19:58:05 2025 GMT
Subject: CN=CB38A6A6DB31782D1445BC8588DB6EFC4ADC971C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:6d:ce:37:95:16:1c:f6:79:a2:72:76:d7:22:
d5:84:64:cd:6c:a0:f0:08:00:ad:2b:52:30:28:d4:
b5:93:bf:c2:e2:29:67:77:04:12:6a:b2:d5:56:81:
5b:39:17:31:f8:38:5b:96:76:23:6e:ee:12:21:c5:
36:5e:62:17:8d:14:0d:0c:f6:c0:74:46:0c:c1:7a:
9e:9f:a5:1e:a2:10:d2:fe:48:d8:d5:ce:c9:bd:66:
a4:d8:9c:c4:88:0e:0d:6d:85:35:17:a5:44:d7:a1:
9a:79:a0:2c:a6:a3:e8:e8:5f:97:04:7e:bf:42:cf:
78:e8:35:66:00:c6:a5:52:f6:4d:b1:8d:d0:40:97:
f9:e8:00:c0:ba:3e:dd:62:42:21:09:f0:af:f4:01:
06:90:b8:05:f3:69:36:20:89:91:65:66:26:36:e8:
34:8d:8a:cb:70:05:91:0c:ad:87:30:97:71:61:96:
72:82:c7:c3:f9:08:5d:c4:85:89:2f:4c:a7:f8:25:
6e:d4:3a:a0:9f:b4:7b:c3:23:d7:db:91:63:07:06:
8e:74:cf:6d:f3:31:7b:59:fd:2f:43:cf:05:dd:94:
7d:92:16:85:e1:24:a5:0c:f5:17:17:fb:fa:9f:80:
cc:99:0b:9c:f3:59:30:6b:55:b5:a5:60:24:b0:2a:
00:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:38:A6:A6:DB:31:78:2D:14:45:BC:85:88:DB:6E:FC:4A:DC:97:1C
X509v3 Authority Key Identifier:
keyid:CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/3134362e31392e3231362e302f32342d3234203d3e203437363739.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.216.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:4b:4a:17:58:aa:15:12:6a:78:3e:1d:40:4e:72:96:80:d0:
20:ed:17:11:9d:da:6b:a8:f4:67:c2:17:62:ce:63:ac:72:d7:
bd:b5:fa:88:03:99:5a:d9:89:d8:3d:32:42:dc:67:d8:83:d7:
b1:c7:49:09:52:7f:eb:99:27:bb:d4:cc:a6:52:a9:18:8c:a3:
56:c7:b6:b1:80:b4:83:49:b2:4c:d6:39:e1:bc:bf:87:3d:2a:
be:37:4c:27:e8:7e:18:bc:a7:8b:7d:9e:21:8e:8e:b3:32:2d:
b8:f5:6e:53:73:91:8d:cd:5c:81:df:30:ff:d6:e1:8a:fc:a3:
ff:3a:9d:c1:57:fc:2b:56:a9:0b:fe:60:92:ca:36:b2:28:f2:
43:d5:ca:0c:c2:63:af:4c:35:42:79:75:4e:ca:e8:a2:96:ce:
5e:72:a1:6b:c2:93:d6:50:b9:d7:a5:ab:28:15:d6:ac:5a:60:
f4:5e:0e:1f:6c:39:29:34:f7:34:dc:0f:ef:a5:cc:12:87:6b:
fb:b6:ba:37:8d:e7:a1:0a:97:cb:31:7f:08:80:49:88:db:a7:
bd:61:1a:67:a4:e2:ca:f9:0a:92:19:fd:e1:b1:da:c8:d1:3a:
1f:e6:68:83:f3:01:36:fd:6f:c5:ce:b7:50:4d:98:ff:42:c5:
9f:17:36:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 12:32:23 2024 by rpki-client on console-fra.rpki-client.org