Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3134362e31392e3135362e302f32342d3234203d3e20313336373837.roa
File: 3134362e31392e3135362e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: YW1YdLbL1EU8bfzgEGWdoxF5ndnfChbSryNmwH4l5bY=
Subject key identifier: EC:2B:D5:74:40:07:4A:09:D3:7B:20:8C:34:74:C5:6C:87:A3:31:5F
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 74616C79D3E886A93C06C98832231A9A0B54718F
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3134362e31392e3135362e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 22 Nov 2024 07:44:22 +0000
ROA not before: Fri 22 Nov 2024 07:39:22 +0000
ROA not after: Fri 21 Nov 2025 07:44:22 +0000
asID: 136787
IP address blocks: 146.19.156.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft
rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 14:57:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:61:6c:79:d3:e8:86:a9:3c:06:c9:88:32:23:1a:9a:0b:54:71:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Nov 22 07:39:22 2024 GMT
Not After : Nov 21 07:44:22 2025 GMT
Subject: CN=EC2BD57440074A09D37B208C3474C56C87A3315F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:86:ba:11:e2:75:97:da:28:76:56:0c:9e:fe:
b0:c2:e6:39:e5:d3:55:ec:b2:7c:cc:02:7c:b4:fa:
52:7a:b1:83:5c:a4:10:4f:10:d5:52:b1:1e:64:7c:
f7:47:36:c9:3f:cb:92:6b:04:25:c9:47:b0:10:cb:
67:a2:0b:b7:39:a3:62:da:a9:1f:dc:ce:3f:7a:d0:
02:ec:74:49:71:83:48:5a:f0:d6:5b:a1:60:15:0f:
2c:1e:d9:d1:5c:15:ad:72:7a:a7:d0:bc:da:97:e6:
1b:44:34:f5:1a:cc:e5:47:a6:6b:30:36:53:e6:33:
0e:c0:17:67:3a:63:3c:91:17:b7:ab:2d:69:e7:81:
37:e8:0c:78:ca:e1:b2:dd:3f:3e:51:d5:61:38:73:
6c:b2:ca:3f:2a:63:f9:b5:62:85:ed:0f:dd:f1:e4:
a0:03:cb:a8:48:c1:34:0c:84:a4:03:d3:2d:98:98:
4b:60:1a:6c:b4:d0:8a:cb:ff:8c:fa:1d:46:2a:e5:
af:b5:25:ab:0a:0b:85:4d:18:cb:27:a2:1c:6c:6b:
86:eb:81:b2:60:6a:5f:46:6c:9f:32:01:ae:87:4b:
c4:0a:4f:fe:27:65:c9:d6:a6:32:b3:38:df:aa:a4:
06:4b:d7:bf:a7:83:ba:37:39:18:ec:6c:28:88:78:
fb:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:2B:D5:74:40:07:4A:09:D3:7B:20:8C:34:74:C5:6C:87:A3:31:5F
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3134362e31392e3135362e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.156.0/24
Signature Algorithm: sha256WithRSAEncryption
91:c9:6c:2a:7a:36:e1:12:ae:b0:90:ce:96:58:5b:ae:99:58:
d9:85:83:82:76:83:5d:4c:8a:a6:46:46:37:3f:f4:9a:9c:40:
52:39:75:14:da:06:57:c4:6d:b8:58:55:c3:e8:1c:25:b4:b7:
8c:5d:e7:26:ca:e6:71:bb:92:bb:17:a3:fc:e3:74:82:11:75:
79:4f:d3:ba:f4:46:4b:9a:c4:2c:a2:b7:1b:ed:77:18:4b:21:
e5:48:c0:a8:4c:b8:0c:7b:31:41:da:f7:ad:79:a0:0c:41:24:
06:97:d6:45:1d:d1:ef:c4:07:8a:99:1a:77:c8:8e:d2:2d:65:
c6:1e:00:5e:45:5b:8d:5c:01:22:55:b4:e4:dc:6a:bb:fa:89:
6a:06:fa:28:c5:67:b6:7a:62:47:da:71:d5:23:83:c1:d3:19:
4f:f0:27:e5:40:0c:3d:ce:3f:06:40:f2:18:c4:be:5a:57:a5:
29:7f:6a:89:c9:4d:24:db:84:68:f6:df:11:e0:21:21:7b:99:
ca:25:59:c8:85:90:1d:46:fc:db:bf:df:65:09:b0:60:99:c1:
c9:f1:88:91:3f:90:71:45:38:c3:83:df:94:88:0f:13:23:ff:
bb:20:8f:3a:e2:49:57:ba:16:23:70:3c:9e:28:19:32:d4:f6:
a6:69:d2:21
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Nov 25 17:14:43 2024 by rpki-client on console-ams.rpki-client.org