Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d2b0a202-e1f4-4f72-a6d2-e2b297ac2b94/0/3139352e3234352e3139382e302f32342d3234203d3e203538303631.roa
File: 3139352e3234352e3139382e302f32342d3234203d3e203538303631.roa (raw, json)
Hash identifier: 9YAWwBFuVoA8rtdYrYQp4TDh1e2kiQckI+n+cdlWt8c=
Subject key identifier: E9:2B:15:4F:49:64:C7:77:0B:A7:3E:75:CC:08:9B:FF:DF:F3:98:42
Certificate issuer: /CN=91a33711a470a1caf41284b368f40fd2bdf16f01
Certificate serial: 0EC4200EC596B6117C24BCCB67DC343C5554CA73
Authority key identifier: 91:A3:37:11:A4:70:A1:CA:F4:12:84:B3:68:F4:0F:D2:BD:F1:6F:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kaM3EaRwocr0EoSzaPQP0r3xbwE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d2b0a202-e1f4-4f72-a6d2-e2b297ac2b94/0/3139352e3234352e3139382e302f32342d3234203d3e203538303631.roa
Signing time: Tue 19 Dec 2023 10:30:25 +0000
ROA not before: Tue 19 Dec 2023 10:25:25 +0000
ROA not after: Tue 17 Dec 2024 10:30:25 +0000
asID: 58061
IP address blocks: 195.245.198.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d2b0a202-e1f4-4f72-a6d2-e2b297ac2b94/0/91A33711A470A1CAF41284B368F40FD2BDF16F01.crl
rsync://rsync.paas.rpki.ripe.net/repository/d2b0a202-e1f4-4f72-a6d2-e2b297ac2b94/0/91A33711A470A1CAF41284B368F40FD2BDF16F01.mft
rsync://rpki.ripe.net/repository/DEFAULT/kaM3EaRwocr0EoSzaPQP0r3xbwE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 04 Jun 2024 14:36:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:c4:20:0e:c5:96:b6:11:7c:24:bc:cb:67:dc:34:3c:55:54:ca:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91a33711a470a1caf41284b368f40fd2bdf16f01
Validity
Not Before: Dec 19 10:25:25 2023 GMT
Not After : Dec 17 10:30:25 2024 GMT
Subject: CN=E92B154F4964C7770BA73E75CC089BFFDFF39842
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:4c:26:e2:27:0e:6b:0f:2c:97:7b:ed:88:68:
cd:57:f7:c2:7e:85:4b:f6:d3:d7:6e:7f:cb:88:a4:
e9:7f:7b:cb:ac:e3:1f:e7:f6:c3:ec:f1:cc:68:f4:
ed:b4:25:46:b6:2b:20:96:70:1f:d1:0e:f1:45:2b:
92:c5:06:0b:73:b7:63:4a:a9:6e:68:d4:f9:1e:3e:
dd:cd:9d:75:cd:6d:34:4d:20:0c:ca:a8:9b:f0:78:
35:6c:61:d7:37:21:42:86:41:99:ae:c9:74:6a:02:
63:52:39:e7:52:35:c8:98:26:e1:07:2b:c5:54:b1:
57:7e:f9:34:9c:5c:d1:10:b8:96:16:8b:62:f8:f7:
e2:d9:9f:07:b2:48:cf:48:17:1e:32:e3:87:d4:48:
af:cf:b8:6d:6c:1a:df:8e:f9:4f:8d:e9:cf:ab:eb:
b2:da:55:ad:a4:01:3a:75:00:89:75:5e:1a:eb:de:
cd:4b:b9:db:ee:5a:e7:d4:b6:32:cb:c3:d0:46:2c:
69:06:b0:c4:fb:16:f8:f2:96:bb:b8:3c:b9:95:ba:
e6:2c:f3:83:b1:9a:d9:fc:80:55:5c:71:2e:3b:00:
51:d2:a7:eb:a9:3a:66:83:23:ff:e2:d1:09:65:9a:
7a:87:b2:2b:62:a0:ef:5d:43:59:b8:ee:77:73:51:
66:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:2B:15:4F:49:64:C7:77:0B:A7:3E:75:CC:08:9B:FF:DF:F3:98:42
X509v3 Authority Key Identifier:
keyid:91:A3:37:11:A4:70:A1:CA:F4:12:84:B3:68:F4:0F:D2:BD:F1:6F:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d2b0a202-e1f4-4f72-a6d2-e2b297ac2b94/0/91A33711A470A1CAF41284B368F40FD2BDF16F01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kaM3EaRwocr0EoSzaPQP0r3xbwE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d2b0a202-e1f4-4f72-a6d2-e2b297ac2b94/0/3139352e3234352e3139382e302f32342d3234203d3e203538303631.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.245.198.0/24
Signature Algorithm: sha256WithRSAEncryption
73:f1:4b:fb:5f:73:5e:16:e9:a3:f6:a0:ea:6f:90:1c:0d:0f:
0c:7b:26:80:b7:53:6b:48:ce:40:a8:5f:2d:c9:46:09:53:22:
0b:48:ee:5a:82:45:d7:2d:a1:fa:f1:22:ed:62:dc:37:1c:7d:
a4:11:c6:92:24:c7:3a:cc:a4:b8:f9:db:a4:49:b2:8b:cd:81:
fd:5c:38:0f:95:c9:fe:1a:04:47:a4:96:c0:1b:67:70:ea:24:
fd:25:6f:3e:78:e6:81:ae:fa:6b:1f:71:e9:94:c8:0a:36:7b:
93:f0:16:84:88:f6:ac:0a:29:a2:5c:bf:64:58:20:2c:23:79:
15:33:80:4e:a6:40:de:3a:a9:a2:b3:7f:c8:be:c0:17:f4:84:
1d:7a:c9:69:3d:88:db:ef:8e:f5:f5:bb:7a:5c:5f:bb:cf:27:
6b:03:6a:bf:67:00:bd:dd:01:f7:32:4e:a9:22:d5:d0:8c:55:
6e:8a:51:df:3b:71:b4:e6:57:1c:fd:37:9f:99:ac:a5:4f:8a:
00:52:0d:f0:3e:e5:e3:be:dc:80:b1:7e:9f:8f:48:3b:b4:2e:
4d:af:0d:21:50:e9:70:12:7b:c8:d9:2a:d8:59:e1:a9:ab:ee:
8e:45:df:3f:3d:5d:65:69:33:0d:6a:9b:38:c0:d3:d4:1b:10:
58:fa:32:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 3 19:45:42 2024 by rpki-client on console-ams.rpki-client.org