Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3134372e37382e3133302e302f32332d3332203d3e203531313637.roa
File: 3134372e37382e3133302e302f32332d3332203d3e203531313637.roa (raw, json)
Hash identifier: 5wIKIMoX6/9p2yKnNAJxoCoAcwholmhAmgFlqY7O7ZE=
Subject key identifier: EC:81:45:0B:17:04:C4:E6:D1:C3:60:05:F0:1F:6C:1A:BA:7E:DD:F1
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 4DC3F7C51E65C935D96B5F7D961FFB6807D859E8
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3134372e37382e3133302e302f32332d3332203d3e203531313637.roa
Signing time: Wed 22 May 2024 12:51:29 +0000
ROA not before: Wed 22 May 2024 12:46:29 +0000
ROA not after: Wed 21 May 2025 12:51:29 +0000
asID: 51167
IP address blocks: 147.78.130.0/23 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:c3:f7:c5:1e:65:c9:35:d9:6b:5f:7d:96:1f:fb:68:07:d8:59:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: May 22 12:46:29 2024 GMT
Not After : May 21 12:51:29 2025 GMT
Subject: CN=EC81450B1704C4E6D1C36005F01F6C1ABA7EDDF1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:6d:31:83:9f:58:5a:d1:90:72:2c:69:07:6a:
91:1c:32:da:ba:27:50:66:e8:07:48:7b:12:4c:b5:
a8:0c:b8:ba:16:23:c6:c0:0e:e5:99:43:e5:84:c9:
4d:fc:2d:5f:e9:4a:c0:41:b6:5a:a3:d1:5b:71:ef:
81:a6:a9:99:92:8c:96:11:3d:4c:92:53:67:75:6d:
dd:3c:e5:d2:71:66:bd:b7:1f:d1:ea:fe:01:57:33:
d6:31:d0:84:33:d4:6c:8c:3c:db:4e:8c:96:b0:7b:
a9:07:cc:4f:bd:ea:aa:7d:10:8d:5c:da:63:28:2a:
a0:48:31:cd:af:7f:9a:e2:8e:81:13:f6:32:7d:cb:
ba:8b:91:92:82:7c:ac:bf:a8:1f:cb:35:b6:91:a0:
4c:7b:fb:ba:79:c9:6d:9a:18:08:9b:0c:f9:69:62:
43:07:f0:c9:e0:d7:4e:09:dd:e3:74:49:b8:3b:11:
9d:c2:11:00:61:1e:68:3c:90:4e:47:8f:e8:54:7b:
69:38:d0:c6:f1:74:d8:e6:d7:cf:a9:af:44:34:7d:
e9:24:52:4c:4c:1a:77:3d:64:1e:21:91:49:9f:f1:
af:07:e8:21:72:c1:eb:9b:7b:f7:d2:c7:40:66:60:
5a:83:26:f9:5a:fc:8a:40:5b:da:05:ae:76:ec:26:
92:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:81:45:0B:17:04:C4:E6:D1:C3:60:05:F0:1F:6C:1A:BA:7E:DD:F1
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3134372e37382e3133302e302f32332d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.130.0/23
Signature Algorithm: sha256WithRSAEncryption
74:07:94:04:8f:75:8e:2d:c8:54:86:01:cb:1f:9d:a9:f3:d8:
23:7b:7e:47:ad:ec:31:6e:b2:95:be:0f:df:4e:09:a8:47:e6:
be:66:d5:95:c9:16:e9:74:02:75:b8:52:c2:08:44:99:0a:fb:
19:fb:27:57:d7:97:05:ac:0e:97:fc:77:48:5e:eb:87:b2:65:
f7:50:b7:95:f1:aa:d1:c8:06:f4:df:16:e0:bf:d5:82:a9:fb:
58:04:e1:cc:3a:71:05:be:6f:4d:07:90:b4:2a:0a:5b:7a:d0:
d5:43:ed:3d:b4:bd:90:94:54:5b:90:3b:eb:57:58:17:fa:12:
57:16:76:88:6d:f0:d1:d7:8e:65:93:de:7e:8b:57:42:0b:c9:
70:68:29:40:de:ff:00:63:44:b5:1c:46:06:df:b5:4f:47:97:
26:41:0c:b4:16:84:d7:32:97:c3:ef:30:1b:f0:b6:55:c7:31:
1f:8a:7c:c3:be:f6:a2:da:45:ae:16:f4:18:4c:3a:e6:cd:c3:
be:2e:6e:58:24:ba:63:43:48:b4:1f:c3:85:0f:e7:97:2d:5b:
fd:cf:94:64:7c:09:c2:fb:73:50:df:90:1b:d2:9c:7f:95:30:
ed:f0:87:fe:ae:bb:dd:e1:97:4b:6b:03:06:96:d2:ef:33:69:
4d:01:17:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:02 2024 by rpki-client on console-fra.rpki-client.org