Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/39342e3132362e3233362e302f32342d3234203d3e203438303730.roa
File: 39342e3132362e3233362e302f32342d3234203d3e203438303730.roa (raw, json)
Hash identifier: U7ZpZq92KRjLluBChNmcNbVK0yuDCFIu2VYYNCvyYhE=
Subject key identifier: DB:B8:29:CC:0A:07:E6:F9:66:F6:B2:12:F3:B9:CF:7E:27:DD:7A:4E
Certificate issuer: /CN=98a87cad5b710890a9528f166f4202393824e6b8
Certificate serial: 579F7AD6E6841ACDD6583D053F415D237F86F074
Authority key identifier: 98:A8:7C:AD:5B:71:08:90:A9:52:8F:16:6F:42:02:39:38:24:E6:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mKh8rVtxCJCpUo8Wb0ICOTgk5rg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/39342e3132362e3233362e302f32342d3234203d3e203438303730.roa
Signing time: Tue 25 Jun 2024 15:49:19 +0000
ROA not before: Tue 25 Jun 2024 15:44:19 +0000
ROA not after: Tue 24 Jun 2025 15:49:19 +0000
asID: 48070
IP address blocks: 94.126.236.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.crl
rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.mft
rsync://rpki.ripe.net/repository/DEFAULT/mKh8rVtxCJCpUo8Wb0ICOTgk5rg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 21 Nov 2024 15:27:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:9f:7a:d6:e6:84:1a:cd:d6:58:3d:05:3f:41:5d:23:7f:86:f0:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98a87cad5b710890a9528f166f4202393824e6b8
Validity
Not Before: Jun 25 15:44:19 2024 GMT
Not After : Jun 24 15:49:19 2025 GMT
Subject: CN=DBB829CC0A07E6F966F6B212F3B9CF7E27DD7A4E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:3d:63:87:34:21:65:03:44:54:39:7a:3a:e4:
b0:50:bc:84:4c:f7:fe:51:dd:90:ab:00:eb:71:d3:
e3:b6:23:33:55:7b:4c:b7:fc:24:a5:be:83:d5:5a:
64:78:37:3f:9d:9e:a1:de:7c:1e:93:97:ff:fd:2c:
13:31:36:0e:fd:98:50:7a:47:4b:ab:c8:f4:0a:bd:
83:90:90:b4:70:5e:ef:10:0c:8f:12:5e:97:9e:67:
e9:61:51:18:79:fd:d4:a3:70:a2:fc:47:31:aa:94:
0d:1d:5b:ae:6d:36:64:71:ee:0c:83:20:b4:f3:a4:
ca:4c:66:7c:4f:2f:c6:03:4a:48:08:f7:98:1d:dc:
da:e4:03:c2:a0:43:56:03:a4:ae:82:71:29:e7:23:
52:6b:5b:9c:dd:91:f1:f0:fe:fc:0e:d4:30:1e:be:
a3:bc:19:dc:1c:7c:e1:06:98:ee:96:6f:d8:db:33:
51:62:a8:df:79:50:cd:3f:aa:64:a9:e4:da:b5:c5:
17:1c:8a:ed:cb:9d:ae:c3:2b:be:03:23:00:32:f3:
87:3e:25:39:3f:80:09:27:b3:7f:54:0b:59:5d:35:
1f:7f:00:70:2f:99:b8:ac:80:e6:db:d4:9f:82:00:
50:e7:df:60:f3:25:3c:31:14:fb:a0:3d:8f:5c:e4:
09:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:B8:29:CC:0A:07:E6:F9:66:F6:B2:12:F3:B9:CF:7E:27:DD:7A:4E
X509v3 Authority Key Identifier:
keyid:98:A8:7C:AD:5B:71:08:90:A9:52:8F:16:6F:42:02:39:38:24:E6:B8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mKh8rVtxCJCpUo8Wb0ICOTgk5rg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/39342e3132362e3233362e302f32342d3234203d3e203438303730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.126.236.0/24
Signature Algorithm: sha256WithRSAEncryption
53:87:35:82:f3:4a:01:58:a8:8a:8c:79:db:1e:b3:f1:ce:25:
60:92:74:e9:29:18:34:54:b1:b4:88:5b:ac:59:1c:6f:61:e3:
d3:b2:3c:0e:03:62:a4:a6:f0:f1:a1:f5:9a:58:8a:36:eb:b5:
92:52:8e:8a:bf:0e:4f:0c:4b:23:39:6d:06:e8:ae:5d:56:a4:
e6:da:a1:54:de:9b:2a:20:a9:d5:e1:79:d1:70:ee:2d:9e:f9:
0f:50:d1:f0:47:da:7d:9b:ea:36:45:cd:79:e3:a8:34:f6:91:
df:f9:e1:51:b7:eb:d9:70:7c:e2:6c:81:0b:ff:9a:e3:77:88:
f1:db:00:6e:a8:f1:0e:0f:ef:dc:c7:b9:b0:bb:d2:b3:9c:e3:
fc:b4:9c:ff:43:a7:68:bf:68:28:26:8f:81:38:fa:03:56:43:
a3:53:63:ca:21:9b:78:43:51:53:5c:7d:46:6a:d1:2a:84:65:
d8:64:a1:71:79:42:97:cb:56:d6:1d:88:5e:91:61:21:30:a0:
74:49:2b:dc:c7:2b:8a:8a:2f:2b:e0:03:5e:29:8a:c5:5b:32:
03:7c:58:87:00:aa:24:a4:aa:c4:12:dc:8d:f3:57:1e:af:b4:
ea:7f:7a:da:4b:22:f7:8a:bc:58:b2:14:fa:5f:03:a1:9e:9c:
d3:0b:a9:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 20 22:20:31 2024 by rpki-client on console-ams.rpki-client.org