Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/38342e31392e3136302e302f31392d3234203d3e203331313033.roa
File: 38342e31392e3136302e302f31392d3234203d3e203331313033.roa (raw, json)
Hash identifier: AJWT9Dw0MfA5kF1l1PxI5LAy1UFzq82jlfPy5WiZDqI=
Subject key identifier: 39:1A:64:B3:21:FE:34:E5:15:0F:FB:7B:BC:C1:8A:B6:E1:DA:E6:2A
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 4963AC9FB2650D67CD32E0B8342BFEF3869362E7
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/38342e31392e3136302e302f31392d3234203d3e203331313033.roa
Signing time: Fri 31 May 2024 13:51:54 +0000
ROA not before: Fri 31 May 2024 13:46:54 +0000
ROA not after: Fri 30 May 2025 13:51:54 +0000
asID: 31103
IP address blocks: 84.19.160.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:63:ac:9f:b2:65:0d:67:cd:32:e0:b8:34:2b:fe:f3:86:93:62:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: May 31 13:46:54 2024 GMT
Not After : May 30 13:51:54 2025 GMT
Subject: CN=391A64B321FE34E5150FFB7BBCC18AB6E1DAE62A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:2d:df:39:26:43:bf:97:55:01:19:2f:45:e0:
d4:7c:f4:ce:06:c8:4a:e9:55:0c:ff:12:41:e2:d5:
47:9b:44:f4:e4:29:9f:84:5a:7c:a9:a9:16:70:a0:
6e:29:df:3e:b9:d9:b6:0e:50:76:02:d0:2c:b0:d0:
33:09:71:6b:91:b3:e6:18:f3:c7:72:cc:72:ba:c3:
1a:1f:33:ab:16:c8:77:dc:14:67:42:9a:37:50:cb:
93:3e:05:54:01:1b:4c:47:86:9a:70:67:e6:d5:e6:
5b:2e:e7:0d:f3:1d:66:1b:12:8e:d3:fe:ac:e5:55:
81:b8:d6:63:9e:20:1d:ef:48:87:07:65:01:72:62:
52:34:04:30:1c:55:b4:f1:6d:87:5d:6a:81:95:fc:
b1:fd:52:79:28:8e:3e:94:dd:c6:42:ae:ce:f1:5d:
3b:3f:19:7f:29:b3:68:b2:8e:b6:00:7d:68:08:2f:
3f:e0:09:aa:78:a7:d2:e5:3e:d5:fa:82:92:33:53:
a5:69:ab:83:42:a8:a2:c6:10:bc:1e:c2:09:46:9c:
bf:2c:87:c6:c2:62:c8:04:b2:4b:86:32:bc:13:fa:
c1:6e:e1:8d:da:2c:25:51:a4:4a:cf:3c:ff:32:e4:
ad:1a:51:2a:99:88:20:71:1a:7e:af:63:c6:af:34:
6b:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:1A:64:B3:21:FE:34:E5:15:0F:FB:7B:BC:C1:8A:B6:E1:DA:E6:2A
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/38342e31392e3136302e302f31392d3234203d3e203331313033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.19.160.0/19
Signature Algorithm: sha256WithRSAEncryption
17:7a:6f:4c:e0:66:55:ea:ca:b2:33:32:f9:f3:d0:81:21:53:
eb:96:26:ba:a2:56:59:09:fa:1a:46:a6:be:ea:19:f7:c2:a3:
35:0d:b8:1c:eb:62:b1:7a:da:ef:3b:97:eb:3c:a1:da:80:c0:
8a:58:e1:51:81:42:72:67:5b:5c:87:7a:cb:80:eb:ba:fd:d9:
ca:66:c6:07:12:30:c9:76:35:34:67:ed:dc:ed:7a:cf:1d:73:
a2:21:de:f2:dc:6d:98:04:33:53:cb:fc:bf:67:fb:39:54:08:
fe:f5:b1:1d:76:50:69:68:53:7d:d0:47:a4:77:90:14:99:f4:
1e:8b:a1:77:fb:96:54:9d:3e:40:1f:37:91:08:0e:75:85:e6:
87:e1:06:18:5c:96:ab:67:90:2a:c8:dc:4f:47:08:40:38:54:
8e:dc:9f:06:36:77:6b:51:e3:91:83:f8:0f:49:42:27:51:90:
71:c4:58:47:ae:dd:a1:27:a3:8b:13:94:b3:6f:e8:8a:14:64:
67:62:c1:5f:b3:17:50:1d:e7:1c:e9:a0:e0:ef:3d:c6:0e:a3:
96:45:f8:b6:4e:7f:9b:50:27:d3:ef:dd:5b:3a:7e:7f:98:1b:
31:45:59:62:2b:ca:27:8f:ba:18:84:8e:e4:cf:97:48:bd:61:
72:82:f4:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:22:33 2024 by rpki-client on console-fra.rpki-client.org