Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/39342e3132362e3233332e302f32342d3234203d3e203438303730.roa
File: 39342e3132362e3233332e302f32342d3234203d3e203438303730.roa (raw, json)
Hash identifier: 2t1rBhnp/nx2NbYLLBT6459cj12qNkxF/Y+7pwb3JUg=
Subject key identifier: 16:99:A9:0E:49:14:DF:75:E6:47:89:A7:09:B3:92:C9:A0:AD:7E:78
Certificate issuer: /CN=98a87cad5b710890a9528f166f4202393824e6b8
Certificate serial: 66E6010BE987D3B376A9706CEAB0A5917F590934
Authority key identifier: 98:A8:7C:AD:5B:71:08:90:A9:52:8F:16:6F:42:02:39:38:24:E6:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mKh8rVtxCJCpUo8Wb0ICOTgk5rg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/39342e3132362e3233332e302f32342d3234203d3e203438303730.roa
Signing time: Tue 25 Jun 2024 15:49:17 +0000
ROA not before: Tue 25 Jun 2024 15:44:17 +0000
ROA not after: Tue 24 Jun 2025 15:49:17 +0000
asID: 48070
IP address blocks: 94.126.233.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.crl
rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.mft
rsync://rpki.ripe.net/repository/DEFAULT/mKh8rVtxCJCpUo8Wb0ICOTgk5rg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:e6:01:0b:e9:87:d3:b3:76:a9:70:6c:ea:b0:a5:91:7f:59:09:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98a87cad5b710890a9528f166f4202393824e6b8
Validity
Not Before: Jun 25 15:44:17 2024 GMT
Not After : Jun 24 15:49:17 2025 GMT
Subject: CN=1699A90E4914DF75E64789A709B392C9A0AD7E78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:27:59:79:ca:a3:bc:3b:12:82:e9:27:75:33:
2b:55:ef:45:5b:83:48:97:46:c9:eb:67:e9:5d:5e:
3b:51:fc:6c:cd:60:7f:27:d3:56:11:15:a0:75:23:
d8:06:35:8a:99:ac:33:c8:ca:e2:aa:8a:aa:8b:46:
17:b8:2b:e6:a1:23:78:98:81:82:bd:c0:06:6b:8c:
19:10:5b:db:2e:a6:11:51:49:38:15:12:1d:14:f0:
b5:2f:a6:a5:ca:81:75:24:5d:d6:d4:2e:c7:87:5b:
a2:ff:c7:b7:42:bb:77:ec:e5:cc:da:70:7f:e7:fe:
ae:a1:f4:e4:36:68:f8:f8:e0:4b:4d:25:61:7d:cd:
70:09:a0:0a:bf:4d:89:87:ed:ba:06:85:b1:87:1d:
20:8e:2d:2a:b6:cd:12:d2:67:d9:71:96:c6:79:f4:
fa:1a:90:59:78:8d:32:1d:fe:a3:c6:25:1f:41:6b:
c3:1d:d0:d2:ab:1d:33:63:8c:0f:2a:a5:12:1a:4c:
ef:80:d7:49:7d:85:86:5f:ad:bd:87:86:2f:f0:1f:
6f:54:a6:fe:80:43:22:1a:2d:30:82:e0:dd:38:2d:
89:c3:40:e7:20:13:47:14:1d:19:5b:b6:45:69:20:
a3:82:fc:6f:7a:8d:20:3b:da:a4:e3:09:83:9a:85:
ce:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:99:A9:0E:49:14:DF:75:E6:47:89:A7:09:B3:92:C9:A0:AD:7E:78
X509v3 Authority Key Identifier:
keyid:98:A8:7C:AD:5B:71:08:90:A9:52:8F:16:6F:42:02:39:38:24:E6:B8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mKh8rVtxCJCpUo8Wb0ICOTgk5rg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/39342e3132362e3233332e302f32342d3234203d3e203438303730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.126.233.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:0b:db:fd:b1:30:f8:a1:90:18:60:0f:fa:64:fa:0f:ac:0a:
f2:45:7b:bc:8d:14:a7:d3:55:a6:1f:39:8c:49:8f:11:ad:02:
5f:4a:f7:0b:29:18:47:12:97:a0:c7:11:6f:3a:76:db:6b:6a:
f8:c5:13:9f:85:06:92:78:a8:92:be:13:02:72:cf:f5:cf:86:
6a:02:6d:28:f7:ae:02:a5:4b:86:90:03:45:99:82:56:11:c0:
d6:38:67:d6:d1:cb:fa:5c:32:2f:76:ed:c7:74:8f:fd:90:4e:
75:76:87:ce:0e:e9:98:fb:ee:19:77:57:e3:a5:12:40:b8:d9:
d1:fb:dd:03:c8:25:cd:ce:7f:1f:82:fe:08:ba:71:e4:f0:0a:
c1:5d:5d:86:ec:ac:01:e7:ad:9a:4d:49:15:d0:63:69:eb:4e:
3e:bf:ff:e8:55:01:3b:9f:e2:29:2e:e9:4e:df:40:6a:19:a1:
90:03:9a:ef:a8:b3:43:84:b1:d6:2d:5d:fb:07:ee:d2:08:72:
ac:14:bc:36:ea:46:47:2c:20:6a:91:26:12:d5:9b:fb:dc:f0:
a5:0f:b4:28:53:4f:f8:f9:cf:5e:97:63:23:27:e9:d9:bc:1c:
fa:de:7a:12:6b:80:f1:93:f8:96:8f:32:96:f2:29:5a:a8:35:
90:51:4c:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:49:49 2024 by rpki-client on console-fra.rpki-client.org