Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/3139332e3234362e352e302f32342d3234203d3e20343030383636.roa
File: 3139332e3234362e352e302f32342d3234203d3e20343030383636.roa (raw, json)
Hash identifier: Wpk5Hqxv2il+MQJFd0q1cSC9SeDw6QT0BxbMIVqGXA0=
Subject key identifier: 6C:43:0C:8A:19:B8:C8:C1:D4:50:4D:F3:68:46:E1:46:6D:9E:03:CC
Certificate issuer: /CN=c79d02c618861ad45baf78ce39023cbcb494a7bf
Certificate serial: 7A5D7481DDCEE245B6CF1884090DD32ED6FBF173
Authority key identifier: C7:9D:02:C6:18:86:1A:D4:5B:AF:78:CE:39:02:3C:BC:B4:94:A7:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x50CxhiGGtRbr3jOOQI8vLSUp78.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/3139332e3234362e352e302f32342d3234203d3e20343030383636.roa
Signing time: Tue 07 May 2024 18:59:19 +0000
ROA not before: Tue 07 May 2024 18:54:19 +0000
ROA not after: Tue 06 May 2025 18:59:19 +0000
asID: 400866
IP address blocks: 193.246.5.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/C79D02C618861AD45BAF78CE39023CBCB494A7BF.crl
rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/C79D02C618861AD45BAF78CE39023CBCB494A7BF.mft
rsync://rpki.ripe.net/repository/DEFAULT/x50CxhiGGtRbr3jOOQI8vLSUp78.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 19:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:5d:74:81:dd:ce:e2:45:b6:cf:18:84:09:0d:d3:2e:d6:fb:f1:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c79d02c618861ad45baf78ce39023cbcb494a7bf
Validity
Not Before: May 7 18:54:19 2024 GMT
Not After : May 6 18:59:19 2025 GMT
Subject: CN=6C430C8A19B8C8C1D4504DF36846E1466D9E03CC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d5:0a:12:e2:78:47:07:8e:35:41:eb:b8:54:
dc:03:56:9f:b5:1f:8e:3b:f2:fc:0d:af:e5:99:ee:
80:b2:b4:3a:eb:e4:36:f7:83:1c:09:7e:5e:5b:a0:
6e:fb:d1:65:a2:a8:0f:99:5a:75:60:4a:7b:71:c3:
41:55:ac:d2:1e:0a:73:a7:26:e9:92:ea:20:2c:72:
53:9e:5d:c6:7b:04:7c:56:43:2b:12:c9:ab:67:98:
53:98:cc:b2:8d:7d:72:f6:95:a7:2f:21:35:ae:33:
e5:c0:c4:64:cb:47:c7:d5:d8:a2:00:8c:26:5b:0f:
c3:61:25:24:b7:ae:aa:ae:12:8f:16:c7:db:bf:01:
5a:9e:42:7c:50:74:3b:25:a8:df:25:de:9e:27:61:
0b:d0:98:8c:7a:df:e9:96:63:9a:f9:86:c1:c5:0c:
e4:ad:5a:a6:95:31:fc:2f:f4:d6:0a:03:4e:b5:24:
8e:69:6a:b8:1c:15:d7:16:40:9f:ca:0f:a3:b5:0d:
45:bc:eb:1e:a5:db:79:48:e0:95:3b:df:0e:a5:e9:
4e:fd:4f:a7:33:ad:6e:39:c5:e1:4e:a3:c0:10:09:
ab:57:2e:ae:ab:06:01:c5:ef:b9:bc:a0:ba:24:46:
46:ac:4f:dc:2c:24:75:df:c0:9a:b1:34:36:12:46:
f3:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:43:0C:8A:19:B8:C8:C1:D4:50:4D:F3:68:46:E1:46:6D:9E:03:CC
X509v3 Authority Key Identifier:
keyid:C7:9D:02:C6:18:86:1A:D4:5B:AF:78:CE:39:02:3C:BC:B4:94:A7:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/C79D02C618861AD45BAF78CE39023CBCB494A7BF.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x50CxhiGGtRbr3jOOQI8vLSUp78.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/3139332e3234362e352e302f32342d3234203d3e20343030383636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.246.5.0/24
Signature Algorithm: sha256WithRSAEncryption
25:16:58:90:44:34:88:35:10:15:6a:1b:67:16:cd:d1:eb:76:
b8:71:34:04:e4:33:74:18:c6:04:0c:d8:05:15:9e:45:a5:f5:
d5:ae:ad:be:08:83:40:01:f4:9d:8e:99:7c:9d:71:11:1b:ff:
5d:76:e2:4e:38:9e:69:a3:47:65:80:46:88:1c:d7:b2:e4:c2:
59:23:3a:92:4a:48:32:c1:ab:1f:b1:d6:a4:62:a3:37:22:d0:
98:37:56:f0:51:6d:51:b7:ce:90:2e:77:7b:9f:0f:fc:e3:f9:
ba:be:e4:f4:5a:68:3a:77:bc:1c:f8:38:b5:cb:81:af:51:f1:
11:07:2b:f5:8b:a1:ba:e0:b2:df:36:3e:66:65:b3:b0:31:04:
a6:b1:49:43:44:dd:e9:fb:d7:ae:98:33:ef:2f:57:e9:28:3b:
f5:ff:35:19:74:b8:db:92:c9:6c:4d:4b:6d:a3:39:41:f0:90:
7a:74:bf:fb:03:58:b1:36:c3:d3:61:19:b7:76:19:3d:54:78:
3f:e4:af:9d:28:44:95:42:ed:35:fb:75:74:53:01:49:b7:db:
2b:c1:22:21:03:18:e2:02:29:f8:50:75:a9:f5:cc:73:bf:89:
bf:87:72:8d:1f:02:b2:5b:4f:5c:90:90:d2:16:47:3d:2d:b2:
dd:b3:4c:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 22:20:38 2024 by rpki-client on console-fra.rpki-client.org