Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/3139332e3234362e3130322e302f32342d3234203d3e203630373831.roa
File: 3139332e3234362e3130322e302f32342d3234203d3e203630373831.roa (raw, json)
Hash identifier: DsxMlBpnaDBCTZCwZ+4l21L/Mim9agw8EK48LHeXcxw=
Subject key identifier: B6:70:E1:4B:52:F0:E1:B9:67:61:D4:1B:54:AA:E3:B8:02:32:62:94
Certificate issuer: /CN=c79d02c618861ad45baf78ce39023cbcb494a7bf
Certificate serial: 69714E94CE4E0B8BE7837D5AD3ECDD28B6CCBD2F
Authority key identifier: C7:9D:02:C6:18:86:1A:D4:5B:AF:78:CE:39:02:3C:BC:B4:94:A7:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x50CxhiGGtRbr3jOOQI8vLSUp78.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/3139332e3234362e3130322e302f32342d3234203d3e203630373831.roa
Signing time: Fri 15 Nov 2024 12:38:07 +0000
ROA not before: Fri 15 Nov 2024 12:33:07 +0000
ROA not after: Fri 14 Nov 2025 12:38:07 +0000
asID: 60781
IP address blocks: 193.246.102.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/C79D02C618861AD45BAF78CE39023CBCB494A7BF.crl
rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/C79D02C618861AD45BAF78CE39023CBCB494A7BF.mft
rsync://rpki.ripe.net/repository/DEFAULT/x50CxhiGGtRbr3jOOQI8vLSUp78.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:71:4e:94:ce:4e:0b:8b:e7:83:7d:5a:d3:ec:dd:28:b6:cc:bd:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c79d02c618861ad45baf78ce39023cbcb494a7bf
Validity
Not Before: Nov 15 12:33:07 2024 GMT
Not After : Nov 14 12:38:07 2025 GMT
Subject: CN=B670E14B52F0E1B96761D41B54AAE3B802326294
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c7:f3:8e:31:24:83:d4:0f:a2:4c:8e:83:0b:
44:c9:cd:59:69:62:d1:d0:d9:f3:6a:01:0a:11:ed:
e2:93:e5:48:30:83:53:53:f2:7f:84:d1:10:1a:f2:
0f:fb:82:68:8a:b9:a2:d8:fc:e3:95:f8:7f:de:2f:
21:90:27:f1:de:15:37:83:76:ca:4d:48:48:9e:0d:
0e:b6:80:2e:47:99:97:81:4b:e4:fa:4d:d2:2a:00:
eb:85:32:10:31:c4:62:ae:95:99:b5:6a:1b:d3:3e:
d5:e2:dc:4c:d3:a4:78:6d:21:e5:4c:37:c2:78:0e:
d1:a1:16:94:aa:97:43:38:c5:4a:32:33:c4:71:70:
73:51:ce:b2:99:05:c5:47:4f:b7:27:ce:4d:7c:d9:
7e:97:cf:a0:52:c1:f2:8e:77:36:09:a0:12:0f:ad:
ca:81:0b:fd:eb:e0:23:b7:47:c1:57:b1:a5:ab:b5:
ef:70:ee:96:a6:37:93:4d:51:8b:bc:b0:80:3d:a0:
34:45:63:5f:85:69:7c:4a:6d:b2:ac:48:92:03:3e:
93:04:56:97:cb:58:72:4f:1b:e3:bd:10:66:60:23:
91:8c:db:2e:2c:54:c6:bf:ac:9b:8c:00:f6:6d:21:
59:74:33:e8:8a:9b:56:57:5f:05:0f:05:54:b9:41:
f6:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:70:E1:4B:52:F0:E1:B9:67:61:D4:1B:54:AA:E3:B8:02:32:62:94
X509v3 Authority Key Identifier:
keyid:C7:9D:02:C6:18:86:1A:D4:5B:AF:78:CE:39:02:3C:BC:B4:94:A7:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/C79D02C618861AD45BAF78CE39023CBCB494A7BF.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x50CxhiGGtRbr3jOOQI8vLSUp78.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/3139332e3234362e3130322e302f32342d3234203d3e203630373831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.246.102.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:69:4d:88:84:ff:00:0e:5c:ab:df:3f:d5:79:05:5d:11:dd:
3c:6a:56:84:e7:9c:d6:78:97:da:3f:4f:9d:38:c0:5d:92:48:
ff:be:c1:40:df:da:e6:ee:39:ab:b5:cf:85:23:f9:ae:11:d7:
47:07:ac:b5:4c:1c:e1:e6:9b:98:73:37:8f:39:0c:20:d5:0c:
f5:9b:eb:c8:59:6b:30:32:ac:6f:a5:37:94:74:78:60:1f:05:
69:d3:8e:2e:8d:32:22:b8:49:0f:68:f0:19:69:13:d5:75:18:
ce:a7:8e:ec:ef:37:b5:92:4d:15:2a:8e:2d:b0:dc:9e:d0:c3:
45:9d:e2:6a:1a:49:05:fc:01:6d:b3:b5:01:a2:ad:41:d3:5d:
ca:17:a5:34:6e:a4:55:49:7c:6b:ca:4f:15:ba:c4:da:e5:78:
ac:ee:58:f2:a7:ef:3b:e1:bb:41:b4:47:a5:28:71:5f:3e:f7:
51:24:30:1e:9a:2d:85:86:5f:64:cb:4f:d5:ca:cc:30:1c:02:
94:56:4f:b2:28:62:6c:a2:1d:79:00:3b:1d:a5:9e:12:2a:33:
f1:4f:13:59:56:10:b8:1a:66:91:f9:47:4d:11:90:ed:c4:ce:
8e:ae:35:51:36:a0:2f:1d:27:f7:5c:d6:17:b6:ab:57:3b:c2:
70:90:3d:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:35:21 2024 by rpki-client on console-ams.rpki-client.org