Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/3139332e3230332e3230342e302f32342d3234203d3e203439343638.roa
File: 3139332e3230332e3230342e302f32342d3234203d3e203439343638.roa (raw, json)
Hash identifier: g8GfxZyUsq5sAHB2Ct+7Z9GS7IIVHVNG2gaO8plmjSA=
Subject key identifier: 18:32:CC:C4:04:9A:23:F5:6F:57:39:F9:AC:0D:42:F3:4A:F2:D9:02
Certificate issuer: /CN=ed9edb2a15871785fbae38e23c38820dbfa2cca4
Certificate serial: 5874142E49DABF571C82605A5C0C2FCCBE40D1AD
Authority key identifier: ED:9E:DB:2A:15:87:17:85:FB:AE:38:E2:3C:38:82:0D:BF:A2:CC:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/3139332e3230332e3230342e302f32342d3234203d3e203439343638.roa
Signing time: Thu 19 Dec 2024 15:32:54 +0000
ROA not before: Thu 19 Dec 2024 15:27:54 +0000
ROA not after: Thu 18 Dec 2025 15:32:54 +0000
asID: 49468
IP address blocks: 193.203.204.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.crl
rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.mft
rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 19:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:74:14:2e:49:da:bf:57:1c:82:60:5a:5c:0c:2f:cc:be:40:d1:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed9edb2a15871785fbae38e23c38820dbfa2cca4
Validity
Not Before: Dec 19 15:27:54 2024 GMT
Not After : Dec 18 15:32:54 2025 GMT
Subject: CN=1832CCC4049A23F56F5739F9AC0D42F34AF2D902
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:1b:ac:f0:24:d7:90:e8:ce:0a:b7:74:bb:b5:
17:36:44:1b:83:d3:7f:86:9b:04:be:1a:09:99:c5:
86:02:d8:48:0d:3d:2d:48:6a:f1:1c:cd:10:02:05:
a8:4f:0b:4a:be:ed:e0:30:4a:f5:3a:f9:3e:01:0f:
86:ce:39:61:4c:3c:45:cf:88:d2:e0:c6:44:15:de:
67:19:50:c9:fe:13:05:3f:58:1f:1b:6b:6d:c7:1f:
c0:fe:68:3b:8c:f7:11:45:d3:f6:89:a9:70:ee:88:
d5:72:36:3d:0f:b0:a5:99:d5:50:1d:99:0a:02:31:
c3:d4:11:8f:04:c6:b1:2a:e5:fc:c3:95:ee:6c:3f:
4b:44:a1:fc:b2:9a:7e:df:cd:ce:cc:6a:46:8f:0f:
8b:91:18:f7:ae:64:f0:1e:3c:9f:61:1f:4c:b5:b5:
04:af:f9:6f:e3:ed:61:32:00:9e:64:6c:2d:ee:ba:
87:2b:fb:be:b0:68:6b:3a:ff:13:42:12:c7:76:00:
60:a3:8d:0a:c0:cf:d0:5e:0f:34:04:9d:76:92:5a:
b6:ce:0a:ab:79:1d:d1:ab:49:a1:ad:e6:25:77:5f:
82:a8:17:6b:2f:1a:7d:a4:97:59:a2:67:e0:40:61:
78:3b:43:8f:c6:34:a1:0c:c5:a8:1e:e8:ab:10:92:
cd:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:32:CC:C4:04:9A:23:F5:6F:57:39:F9:AC:0D:42:F3:4A:F2:D9:02
X509v3 Authority Key Identifier:
keyid:ED:9E:DB:2A:15:87:17:85:FB:AE:38:E2:3C:38:82:0D:BF:A2:CC:A4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/3139332e3230332e3230342e302f32342d3234203d3e203439343638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.203.204.0/24
Signature Algorithm: sha256WithRSAEncryption
16:ac:55:14:74:b2:1e:a2:0f:3a:c9:03:36:d3:85:59:1a:c6:
9c:c5:c5:02:99:1d:8c:7c:42:ec:d7:76:36:5a:e2:2d:4e:32:
88:30:34:82:2d:5d:58:7f:82:87:6a:f4:6a:fb:c1:de:aa:85:
c3:cf:47:0b:f6:34:99:03:1a:24:f6:2c:71:07:ed:a7:d1:60:
56:05:53:c7:e0:2d:0b:c3:75:c7:8d:19:14:d2:a2:5c:8b:1b:
26:82:6c:16:3b:39:89:02:1f:e9:17:ff:0d:c0:11:42:3f:b4:
ab:a2:7c:2c:aa:6d:a7:16:23:e0:77:14:6a:3a:74:d8:67:05:
95:44:c7:bd:29:2f:c6:e3:88:5d:91:bf:5d:c5:b1:2f:1a:5c:
06:ce:d9:7e:e4:43:04:d5:a9:60:36:80:63:78:d7:4e:95:29:
44:1e:9b:73:94:18:dc:dd:cb:0b:86:3a:dd:a5:a5:0e:55:70:
f0:d3:00:c8:aa:50:73:75:d0:71:04:97:65:83:1a:ba:f4:3c:
16:b7:4c:13:8c:27:e2:43:93:04:f6:13:18:46:f9:69:81:75:
9b:36:4b:4e:4a:eb:65:db:f1:3a:26:09:6a:11:19:80:9e:f0:
ff:3e:83:fc:52:c3:bd:62:f5:84:90:d9:15:a1:28:b1:f5:2f:
62:ab:9f:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:53:20 2025 by rpki-client