Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/3134312e39382e37352e302f32342d3234203d3e20313439353032.roa
File: 3134312e39382e37352e302f32342d3234203d3e20313439353032.roa (raw, json)
Hash identifier: xtuCyeM7tNcZfkiSC4y3vGyb1Sw/OFu+2AZURoS377I=
Subject key identifier: 1E:A5:DB:E0:E9:0C:2A:B7:88:95:22:46:17:D8:C3:D4:F8:69:AA:81
Certificate issuer: /CN=0d059f10d18d00052c808eb8069f90d47e30564a
Certificate serial: 55134ECEC17C30A037FE377529B36B0EC9567ABC
Authority key identifier: 0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/3134312e39382e37352e302f32342d3234203d3e20313439353032.roa
Signing time: Fri 26 Apr 2024 13:05:16 +0000
ROA not before: Fri 26 Apr 2024 13:00:16 +0000
ROA not after: Fri 25 Apr 2025 13:05:16 +0000
asID: 149502
IP address blocks: 141.98.75.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.mft
rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 08:58:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:13:4e:ce:c1:7c:30:a0:37:fe:37:75:29:b3:6b:0e:c9:56:7a:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d059f10d18d00052c808eb8069f90d47e30564a
Validity
Not Before: Apr 26 13:00:16 2024 GMT
Not After : Apr 25 13:05:16 2025 GMT
Subject: CN=1EA5DBE0E90C2AB78895224617D8C3D4F869AA81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:62:2c:4c:d6:22:78:03:87:d3:f2:5b:eb:7e:
b7:bc:2a:e7:6a:85:9b:93:6c:53:c1:5d:4b:e7:e3:
e4:0f:cd:d6:e2:29:af:88:28:a6:7b:3b:19:a4:56:
a2:c9:c1:e9:a5:59:49:76:58:fc:50:94:f9:6e:b5:
65:1a:4b:07:28:9e:25:ba:17:bc:99:20:2a:51:92:
b0:7f:6f:72:38:8d:d9:16:6b:94:5a:35:b9:e8:2d:
f9:5e:a4:8f:68:65:2b:50:a6:29:4e:10:7d:23:b1:
02:6d:f8:9a:c9:da:28:ab:30:01:2a:e4:cc:36:eb:
56:f8:93:3e:ad:8f:ad:66:d9:23:1e:2b:fe:f0:c0:
53:02:ff:29:1a:b8:bd:a5:f2:35:d4:63:3f:a8:5a:
b4:32:99:21:4d:bc:6a:42:10:47:65:30:5a:28:1b:
79:8c:43:b2:f8:f3:36:38:04:38:9e:86:62:cc:b2:
bb:33:48:57:cf:36:56:ff:39:db:98:ae:30:81:18:
f2:a2:d5:6c:ec:a0:4c:fe:e6:a7:59:23:a0:a4:16:
e4:11:aa:76:d9:2a:58:e1:a9:84:e0:67:75:a1:33:
a8:3d:30:5c:b9:8e:2b:ec:b3:a6:27:0e:ff:27:ae:
0c:ae:a2:a8:f8:47:46:37:1b:a7:3c:77:19:72:9a:
2c:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:A5:DB:E0:E9:0C:2A:B7:88:95:22:46:17:D8:C3:D4:F8:69:AA:81
X509v3 Authority Key Identifier:
keyid:0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/3134312e39382e37352e302f32342d3234203d3e20313439353032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.98.75.0/24
Signature Algorithm: sha256WithRSAEncryption
38:b9:df:d3:a7:89:45:21:f2:23:a2:e9:36:e8:ad:eb:14:24:
1b:c6:91:ef:c6:19:f4:8e:0f:53:4d:18:b8:88:fa:be:1f:0f:
f7:69:cf:c8:e8:0b:81:7e:6e:41:a6:38:f8:a1:40:98:6e:eb:
59:60:5d:37:96:7d:c1:7d:52:e0:f9:49:4f:92:de:6d:89:32:
21:ae:e3:1a:10:85:a3:e5:bf:21:d7:d1:9c:35:50:11:21:b1:
62:d5:ea:6e:2a:42:3d:4a:5e:89:c4:38:7f:40:24:c1:9a:98:
e3:c0:26:c1:1b:2b:b7:7e:1b:81:66:6f:20:bf:7b:a0:d3:ca:
0e:f8:50:c9:5c:b7:c3:df:9a:43:af:2a:51:ae:20:b7:87:20:
6b:f9:a5:5c:98:fa:02:87:66:0a:4e:3f:16:a2:c5:e5:11:26:
94:ff:c6:6b:4b:2d:83:9c:24:54:51:e6:97:48:a3:8b:3e:64:
f4:76:c1:6e:23:23:a1:29:00:98:80:35:ef:53:fd:ed:f6:9c:
1b:9a:2b:43:04:d0:8b:27:be:19:ae:c5:d5:b7:a5:a3:a8:50:
a8:1f:39:ba:86:fa:d5:10:3c:54:30:11:5e:e0:97:00:d7:73:
f9:b6:91:d9:13:f2:f5:71:9b:19:96:91:30:73:1d:ca:c9:29:
5e:3a:88:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:59:28 2025 by rpki-client