Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/3134312e39382e37352e302f32342d3234203d3e20313437323933.roa
File: 3134312e39382e37352e302f32342d3234203d3e20313437323933.roa (raw, json)
Hash identifier: fcI8Y/hP0xfU73msadrK8NkCxC2eyLoWuhQFLkF++Oc=
Subject key identifier: 76:64:D7:A1:0D:EF:F1:92:AC:0F:3F:FE:FB:3F:99:0F:4E:E1:9F:0C
Certificate issuer: /CN=0d059f10d18d00052c808eb8069f90d47e30564a
Certificate serial: 0ECFA51EE6E251A80A43674AFCD791119741199F
Authority key identifier: 0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/3134312e39382e37352e302f32342d3234203d3e20313437323933.roa
Signing time: Sat 27 Apr 2024 10:05:16 +0000
ROA not before: Sat 27 Apr 2024 10:00:16 +0000
ROA not after: Sat 26 Apr 2025 10:05:16 +0000
asID: 147293
IP address blocks: 141.98.75.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.mft
rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:cf:a5:1e:e6:e2:51:a8:0a:43:67:4a:fc:d7:91:11:97:41:19:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d059f10d18d00052c808eb8069f90d47e30564a
Validity
Not Before: Apr 27 10:00:16 2024 GMT
Not After : Apr 26 10:05:16 2025 GMT
Subject: CN=7664D7A10DEFF192AC0F3FFEFB3F990F4EE19F0C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:5c:e5:98:d6:88:c3:9f:1a:ff:73:ce:7c:1e:
35:46:05:94:f0:c2:25:60:60:5e:62:c8:72:81:09:
2e:d1:77:ef:9f:7d:93:66:ac:a6:07:6f:29:5f:5b:
db:b5:89:14:22:06:b2:d6:84:5c:30:b2:73:be:37:
aa:e3:54:d9:29:15:bc:2d:b7:d1:29:96:d8:2d:56:
04:6b:d1:02:4b:0b:c6:d3:dd:ee:63:f1:00:02:24:
31:52:6a:17:3c:d0:93:02:00:1d:ff:dc:be:f5:61:
d4:f1:e3:61:6a:c3:07:2c:05:75:ea:4b:ea:8e:fe:
5f:c3:cd:e6:6d:da:0e:0c:fd:d3:2a:52:c7:59:f3:
a7:a1:78:1d:32:00:32:33:f6:24:72:f5:12:43:9c:
aa:8f:35:9d:4e:ba:7b:6b:9b:eb:f1:ba:2b:46:fe:
2c:b0:58:1f:fb:e6:72:58:a9:6b:70:53:d1:e3:20:
87:39:28:63:63:bc:6e:96:bf:c5:78:1e:18:c9:0b:
0c:90:92:2f:1b:c3:ee:05:ab:de:28:90:e9:c5:bd:
f9:64:d0:a6:0e:f4:f3:28:aa:34:7f:6f:e8:45:e1:
75:e8:5b:af:b8:b5:98:f0:ae:ae:93:81:6d:f3:b1:
dd:bf:1b:9f:7f:a4:a6:3f:7d:88:c3:ae:82:28:19:
37:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:64:D7:A1:0D:EF:F1:92:AC:0F:3F:FE:FB:3F:99:0F:4E:E1:9F:0C
X509v3 Authority Key Identifier:
keyid:0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/3134312e39382e37352e302f32342d3234203d3e20313437323933.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.98.75.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:d1:20:4f:1c:e7:cc:06:4a:df:16:93:a8:98:b7:6e:60:3d:
b0:36:e8:64:32:a1:e5:bf:a7:49:b5:60:9f:6f:8b:be:ce:19:
6b:23:71:92:5b:a3:38:c1:1e:93:42:9a:9e:1f:7d:03:3b:2d:
40:d0:16:c9:4a:db:49:24:fb:52:28:a1:2b:91:d5:25:cd:89:
26:ef:3b:61:09:15:e5:47:53:7a:e2:e4:d2:2e:a4:a2:ab:9a:
3a:55:5d:16:da:27:60:9c:31:65:0b:d1:ab:1b:4e:ef:34:04:
80:b0:f0:7d:22:b9:f8:29:d6:c0:91:50:96:83:67:2a:3f:92:
20:cd:71:c9:6e:79:45:5c:ad:29:51:76:d0:26:c2:6e:51:ea:
e2:c2:02:85:df:e5:20:8d:e4:5b:09:d6:44:1d:52:2f:1e:22:
d5:08:a5:90:fb:a4:99:36:84:38:42:13:bf:b3:63:c7:b1:9f:
93:79:a6:bc:0f:97:c8:1e:ab:fa:08:0f:1e:6e:27:da:e7:93:
32:0a:0c:0e:af:23:d3:36:17:10:c7:6f:17:51:de:d6:0e:18:
c4:58:c2:f6:d8:a4:dd:7e:08:64:6f:f3:2f:c8:64:80:70:03:
45:a4:aa:09:f8:5f:c8:bb:2a:33:ec:b2:7d:d3:67:b8:8b:e4:
2d:67:87:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 07:03:46 2024 by rpki-client on console-fra.rpki-client.org