Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/3139332e3234362e342e302f32342d3234203d3e20323035323230.roa
File: 3139332e3234362e342e302f32342d3234203d3e20323035323230.roa (raw, json)
Hash identifier: ENLrs+p0SOsAfJZ3GVp3P9JNTNI2oRs5NOD0bf9RV1k=
Subject key identifier: 71:4C:FB:3D:1F:84:91:75:E2:46:D2:0F:E9:01:CF:DF:38:6C:F8:9A
Certificate issuer: /CN=c79d02c618861ad45baf78ce39023cbcb494a7bf
Certificate serial: 3C1F5917253B34A15C185E5CC05E8F51124E5253
Authority key identifier: C7:9D:02:C6:18:86:1A:D4:5B:AF:78:CE:39:02:3C:BC:B4:94:A7:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x50CxhiGGtRbr3jOOQI8vLSUp78.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/3139332e3234362e342e302f32342d3234203d3e20323035323230.roa
Signing time: Fri 20 Oct 2023 19:10:18 +0000
ROA not before: Fri 20 Oct 2023 19:05:18 +0000
ROA not after: Fri 18 Oct 2024 19:10:18 +0000
asID: 205220
IP address blocks: 193.246.4.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/C79D02C618861AD45BAF78CE39023CBCB494A7BF.crl
rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/C79D02C618861AD45BAF78CE39023CBCB494A7BF.mft
rsync://rpki.ripe.net/repository/DEFAULT/x50CxhiGGtRbr3jOOQI8vLSUp78.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:1f:59:17:25:3b:34:a1:5c:18:5e:5c:c0:5e:8f:51:12:4e:52:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c79d02c618861ad45baf78ce39023cbcb494a7bf
Validity
Not Before: Oct 20 19:05:18 2023 GMT
Not After : Oct 18 19:10:18 2024 GMT
Subject: CN=714CFB3D1F849175E246D20FE901CFDF386CF89A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ca:e2:90:98:c5:85:9f:b7:c2:22:7e:b5:24:
38:64:dc:56:fe:7a:05:0f:0d:fc:a7:cb:fa:6a:b6:
f8:74:0e:29:4d:b9:0d:4c:53:b7:35:b4:67:60:48:
8a:cc:ac:7b:fe:57:a2:94:3e:b8:6f:b7:79:31:66:
a1:a7:11:ca:34:d3:ca:e1:3b:2b:c4:03:fc:69:f0:
18:a6:dc:7e:f2:a4:a1:81:d8:f7:71:e9:18:2d:47:
8a:68:20:1b:22:41:0c:b2:7b:b9:3d:2c:dc:2d:37:
89:98:f7:d4:14:e2:39:8a:a7:57:14:9b:81:b1:e0:
1d:69:3c:8f:d9:7b:c0:df:44:6b:e8:3a:2e:ca:52:
2a:98:dd:79:88:d3:3a:0b:7c:ef:ae:35:01:ca:2d:
3a:27:e5:ec:f5:d9:67:84:bc:bb:29:40:6d:ab:6d:
1c:56:31:38:58:3c:8a:41:a6:98:14:d0:e1:3e:6b:
80:16:11:a7:dc:28:cf:af:05:ab:d9:a9:58:1b:97:
c9:c2:20:1a:80:b9:30:04:12:e8:3a:29:98:1d:c9:
e3:52:de:1d:5e:dc:5c:16:55:ed:db:71:85:1e:5d:
00:82:88:19:73:2b:c3:1f:ea:cd:3a:6e:c5:66:6e:
d1:ec:b7:95:73:5b:f7:69:c0:62:f1:cc:39:5e:e4:
4c:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:4C:FB:3D:1F:84:91:75:E2:46:D2:0F:E9:01:CF:DF:38:6C:F8:9A
X509v3 Authority Key Identifier:
keyid:C7:9D:02:C6:18:86:1A:D4:5B:AF:78:CE:39:02:3C:BC:B4:94:A7:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/C79D02C618861AD45BAF78CE39023CBCB494A7BF.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x50CxhiGGtRbr3jOOQI8vLSUp78.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/3139332e3234362e342e302f32342d3234203d3e20323035323230.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.246.4.0/24
Signature Algorithm: sha256WithRSAEncryption
62:0c:f2:3e:bc:59:4b:ca:f4:15:48:44:9b:28:13:00:7c:22:
84:bd:90:ba:f4:ff:a1:d5:d1:4c:70:6a:d6:28:64:4c:99:06:
cb:8f:c1:d5:7f:be:2d:db:e6:dd:3e:68:6a:e6:73:8b:8e:49:
5e:f6:3b:0b:6f:0f:52:e5:6d:75:67:77:5d:cc:91:47:f9:ff:
9b:f2:b1:0a:bb:ca:72:89:20:85:7f:b8:3a:03:3b:71:70:20:
d7:a4:4b:92:2e:98:59:64:db:99:50:17:f3:da:c2:f0:db:bc:
5b:fd:48:43:2b:16:77:ed:24:16:c8:7b:f8:01:5b:81:f7:55:
0f:54:a0:3f:b8:1a:e0:fd:fb:26:11:92:6a:9f:84:47:e1:a8:
2c:1d:dc:2d:61:a4:3c:bb:8c:34:4e:30:45:76:b6:c0:db:45:
76:d0:f3:51:9b:5c:39:22:09:f8:49:62:53:4c:23:d8:70:fe:
16:7c:f6:99:e1:9a:2a:be:b1:e9:1b:3d:81:03:c3:e1:df:20:
6b:78:a4:1c:dc:56:d0:b5:9e:67:3c:82:bd:94:99:a3:71:ad:
15:fb:1c:34:66:e5:03:5a:9b:fa:13:32:d3:e2:2a:db:31:97:
6a:f1:e7:31:e5:99:95:e8:4f:8c:f5:22:a0:db:a5:33:87:16:
f2:e0:44:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 22:15:54 2024 by rpki-client on console-fra.rpki-client.org