Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/3231322e322e3233372e302f32342d3234203d3e20313939333933.roa
File: 3231322e322e3233372e302f32342d3234203d3e20313939333933.roa (raw, json)
Hash identifier: 3HK7N0SsftRB//6UjkiiXs9qnl38uoQ7KZnkAknILaM=
Subject key identifier: B1:78:EB:36:99:FA:FD:2D:FA:3E:BE:1D:26:F6:3C:1D:38:0A:29:AD
Certificate issuer: /CN=0d059f10d18d00052c808eb8069f90d47e30564a
Certificate serial: 191630FB02039A11C316DB808CCB077F9B326A48
Authority key identifier: 0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/3231322e322e3233372e302f32342d3234203d3e20313939333933.roa
Signing time: Wed 20 Dec 2023 21:01:04 +0000
ROA not before: Wed 20 Dec 2023 20:56:04 +0000
ROA not after: Wed 18 Dec 2024 21:01:04 +0000
asID: 199393
IP address blocks: 212.2.237.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.mft
rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 12 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:16:30:fb:02:03:9a:11:c3:16:db:80:8c:cb:07:7f:9b:32:6a:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d059f10d18d00052c808eb8069f90d47e30564a
Validity
Not Before: Dec 20 20:56:04 2023 GMT
Not After : Dec 18 21:01:04 2024 GMT
Subject: CN=B178EB3699FAFD2DFA3EBE1D26F63C1D380A29AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:47:45:2d:59:ed:90:e6:19:a5:03:04:72:dd:
12:af:e0:84:1f:1d:29:1a:12:21:44:b9:77:7c:24:
dd:da:23:00:e1:b5:6e:d5:9d:74:16:eb:4f:d4:44:
19:79:c9:0c:d3:11:60:b7:ee:ad:ff:26:6a:5a:7e:
8e:10:b7:15:6e:cb:5b:13:4f:53:78:4a:da:9f:d9:
03:c6:99:f3:0e:9a:b9:ab:22:49:a1:86:48:8e:22:
2b:a0:c9:49:4c:67:1c:61:a4:04:9c:e1:18:b1:5f:
7c:a9:d7:69:de:95:ec:b6:36:76:1a:eb:8e:8e:ee:
02:7b:d8:e6:d5:b5:e1:34:2c:65:80:58:cd:0e:7c:
30:ae:56:fc:7a:9f:b8:2b:9e:49:6b:28:5a:85:b4:
2d:2b:c9:02:ff:3b:61:88:aa:55:27:2e:6b:78:58:
85:1a:a2:33:1c:d7:34:cc:cd:b0:f0:b7:cd:18:fe:
a3:82:ac:6b:ff:b5:82:56:1c:06:16:7a:8b:c6:f6:
4d:bf:7a:ba:16:a8:8f:2e:df:be:af:c8:3c:69:39:
62:b7:88:37:36:a2:f3:81:ab:ed:0a:8d:ba:02:85:
5f:92:71:9a:79:67:77:61:34:c5:24:c3:0d:c8:df:
79:0a:d8:2f:62:59:9e:b6:e5:6d:da:d4:88:97:19:
7b:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:78:EB:36:99:FA:FD:2D:FA:3E:BE:1D:26:F6:3C:1D:38:0A:29:AD
X509v3 Authority Key Identifier:
keyid:0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/3231322e322e3233372e302f32342d3234203d3e20313939333933.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.2.237.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:03:22:6a:25:12:13:4e:a4:1b:4f:1d:2e:8e:2b:43:08:ab:
07:4c:0c:53:06:ab:d0:43:2d:75:1f:de:d7:ff:3d:58:e8:34:
e8:c4:99:4f:39:74:28:a4:f3:93:82:10:41:32:bd:aa:b6:c0:
d7:6f:bc:3a:f9:54:53:f1:08:76:a7:ae:53:f9:85:56:84:da:
69:ff:c2:78:65:96:a4:a8:bd:c5:32:19:ee:f5:22:2f:85:63:
db:80:64:7f:6d:f6:a7:3e:6c:13:bc:fd:76:c8:90:22:34:c4:
b2:9f:bd:bb:40:ad:8d:06:b6:40:dd:a9:03:99:64:f8:63:d5:
8b:e2:b6:f1:a6:75:e3:72:0e:df:68:da:d6:da:21:b5:42:18:
e6:9e:f3:b0:12:59:68:fd:bb:37:b1:7d:66:a8:cc:06:9b:5c:
ef:fd:44:50:8d:90:4f:1e:1a:d4:b5:9c:e5:d9:5b:3a:d2:6b:
4b:48:ae:54:be:aa:8a:5a:0b:47:6e:97:94:be:2b:a9:78:b3:
8d:c6:41:53:50:ee:95:83:80:5d:db:c2:c8:c1:c6:08:55:66:
d7:5c:d6:6e:ba:1a:53:0c:09:4a:ca:2e:47:35:3d:a0:a2:05:
55:ce:1f:83:e5:97:23:29:18:dc:8e:39:ab:b1:09:c9:32:b6:
fd:ff:f8:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 12 01:38:53 2024 by rpki-client on console-fra.rpki-client.org