Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/3134312e39382e37342e302f32342d3234203d3e20343030383130.roa
File: 3134312e39382e37342e302f32342d3234203d3e20343030383130.roa (raw, json)
Hash identifier: UwhghL4XQP91sYFLLuHb7MUcZXor04VjE9SS5bTDNGY=
Subject key identifier: EE:E0:7A:FD:9A:06:CD:C8:F7:13:E7:16:1A:19:99:6B:C9:FF:4F:7C
Certificate issuer: /CN=0d059f10d18d00052c808eb8069f90d47e30564a
Certificate serial: 07D8FC7DCB2E39FD3FE43A9F998B9EC17C157170
Authority key identifier: 0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/3134312e39382e37342e302f32342d3234203d3e20343030383130.roa
Signing time: Thu 04 Apr 2024 11:05:15 +0000
ROA not before: Thu 04 Apr 2024 11:00:15 +0000
ROA not after: Thu 03 Apr 2025 11:05:15 +0000
asID: 400810
IP address blocks: 141.98.74.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.mft
rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:d8:fc:7d:cb:2e:39:fd:3f:e4:3a:9f:99:8b:9e:c1:7c:15:71:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d059f10d18d00052c808eb8069f90d47e30564a
Validity
Not Before: Apr 4 11:00:15 2024 GMT
Not After : Apr 3 11:05:15 2025 GMT
Subject: CN=EEE07AFD9A06CDC8F713E7161A19996BC9FF4F7C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:1d:67:13:26:96:0b:53:4f:4a:a9:5e:48:84:
30:29:c4:fe:cc:b3:9f:a2:f4:21:89:3d:21:fc:f8:
96:3e:69:69:24:f4:d8:07:e5:68:f8:ee:5d:4b:b1:
96:01:d4:10:0a:92:be:30:d3:77:6f:5e:b5:d9:e2:
33:3c:fe:34:d9:b7:7c:93:0d:72:33:41:3b:de:3c:
8d:41:af:59:f0:73:7b:7a:0e:ad:68:50:ae:cd:0a:
a7:7a:11:63:35:a9:ca:d9:ba:82:3e:bb:de:06:1c:
78:14:79:b2:72:66:4e:64:0f:e7:f1:28:6f:cf:02:
61:82:e2:54:79:44:2e:68:16:48:77:7c:0e:80:c5:
21:a6:c4:3e:10:25:08:75:27:e8:cb:0f:52:10:62:
9d:e4:06:a3:ba:eb:81:83:61:0a:83:17:de:86:d2:
41:02:16:c0:44:f2:e2:5c:5a:b1:e4:a6:6f:16:cd:
2b:f5:26:fc:e5:14:f8:f7:d6:77:44:4d:46:0c:57:
b2:f6:0c:ac:3b:26:7f:ad:3d:38:a3:fc:9d:9a:1a:
35:cc:b6:d3:0c:df:f3:fa:71:b7:74:63:80:d6:46:
2c:ce:36:7a:3e:d5:0d:33:12:fd:de:a0:ff:12:98:
1f:8c:83:c1:11:9b:b7:a0:ad:db:07:bb:ca:9f:38:
3b:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:E0:7A:FD:9A:06:CD:C8:F7:13:E7:16:1A:19:99:6B:C9:FF:4F:7C
X509v3 Authority Key Identifier:
keyid:0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/3134312e39382e37342e302f32342d3234203d3e20343030383130.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.98.74.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:47:e5:64:0e:35:11:45:5a:3b:83:0c:6e:50:13:aa:2d:0d:
da:25:5d:99:ee:65:67:d0:a3:79:45:c1:dc:e6:59:e3:44:40:
12:4e:4f:7a:d1:e3:9f:47:d0:dd:90:d1:57:c2:61:8a:47:79:
5a:f9:fd:ba:36:47:0e:89:17:26:15:90:e0:5e:1b:e3:fc:80:
04:9d:c8:18:67:af:91:2d:ea:8d:89:2c:ac:e1:33:42:6d:55:
73:67:55:0a:bb:3b:be:75:b5:ba:ae:a0:da:58:b4:02:6a:2a:
d8:1a:9e:f7:c8:8b:2c:d3:77:6d:44:6e:49:a2:a0:0b:4f:7f:
92:0e:f9:36:6b:16:1a:7b:ce:8a:d2:96:5c:ce:c2:a1:f4:9a:
95:c1:b2:ec:cf:c2:3f:31:c7:be:91:3e:c0:65:a9:41:a7:27:
2c:e2:18:fc:02:cc:43:4e:46:85:a8:0a:81:f4:3b:d9:14:58:
70:0d:b1:b5:e0:8d:7b:63:b2:18:ec:fd:4a:a2:a4:c7:2b:12:
40:b2:8c:d6:47:42:60:65:da:6c:56:88:6b:d0:f8:c0:ca:81:
c5:bc:34:ee:f7:70:bf:59:b2:87:31:1f:da:9b:5e:ad:ea:31:
ed:4a:f4:b9:bd:67:e2:62:09:00:8c:ab:b6:23:84:ff:57:7f:
78:8b:59:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 07:03:46 2024 by rpki-client on console-fra.rpki-client.org