Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139352e3230302e31322e302f32322d3232203d3e203437353833.roa
File: 3139352e3230302e31322e302f32322d3232203d3e203437353833.roa (raw, json)
Hash identifier: 90PqjCSjA15dh98nm+TuOoACjdj7sKgqCAsTGKCuUpo=
Subject key identifier: B9:F0:49:09:88:61:C7:42:53:E9:43:43:1A:36:2F:DB:8C:CC:B5:7F
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 2A1003293D432F3667DCC7B7DFEF0E836B571485
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139352e3230302e31322e302f32322d3232203d3e203437353833.roa
Signing time: Thu 23 May 2024 13:50:46 +0000
ROA not before: Thu 23 May 2024 13:45:46 +0000
ROA not after: Thu 22 May 2025 13:50:46 +0000
asID: 47583
IP address blocks: 195.200.12.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Jun 2024 08:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:10:03:29:3d:43:2f:36:67:dc:c7:b7:df:ef:0e:83:6b:57:14:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: May 23 13:45:46 2024 GMT
Not After : May 22 13:50:46 2025 GMT
Subject: CN=B9F049098861C74253E943431A362FDB8CCCB57F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:7e:05:10:dd:fb:60:52:6b:b0:c2:e6:b2:72:
f0:87:a7:17:c7:a8:97:93:4d:6a:41:f8:4f:bd:42:
f1:36:05:f9:75:ff:14:45:56:e7:f0:aa:84:ed:15:
78:e7:c7:71:1c:5f:97:91:0c:3f:35:3c:60:8d:1c:
16:b4:3e:58:f7:9b:b9:33:22:6d:5e:a8:25:eb:91:
6c:e7:6f:a5:e8:47:ab:c4:01:fd:89:e3:1d:b8:8e:
cf:5a:30:3d:c8:8b:bd:47:17:52:c7:60:48:14:81:
4d:f3:d7:44:d0:d4:58:2a:f5:18:ce:b3:8b:a9:de:
f2:b5:0b:91:3e:43:b4:7f:ec:8c:40:f5:33:4c:ab:
83:21:86:55:e8:57:1b:87:1f:c4:97:d0:46:18:6d:
d0:1c:ae:30:fe:25:7d:57:54:1c:bb:2f:b5:21:e0:
f9:cb:c3:6a:71:6a:ae:23:8f:52:ca:28:13:14:c1:
4b:f0:68:12:48:b2:31:06:a9:27:cd:fe:bc:4b:79:
c1:1f:6c:81:52:29:eb:15:83:3a:bb:92:39:32:21:
3d:93:22:77:4e:48:f2:ff:d9:c5:8e:92:e8:ef:cd:
7d:8f:a9:9b:a2:a8:c3:84:e3:60:0e:68:1a:8d:90:
37:df:ce:0b:37:f6:b6:fa:d1:53:dd:7e:1d:c4:fb:
de:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:F0:49:09:88:61:C7:42:53:E9:43:43:1A:36:2F:DB:8C:CC:B5:7F
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139352e3230302e31322e302f32322d3232203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.200.12.0/22
Signature Algorithm: sha256WithRSAEncryption
43:01:3d:09:03:45:f2:bd:2f:09:90:bd:b8:79:1a:37:7b:ea:
77:98:e9:95:49:9a:ef:3f:32:3e:e5:b2:bc:13:00:b4:a9:46:
96:c3:db:52:63:8a:ad:a6:8a:16:cb:ac:cd:a4:5c:ef:26:36:
fb:0f:17:a3:c2:63:b2:81:f8:77:05:f6:58:8a:03:b5:11:7a:
2d:c7:9a:8f:df:b3:b6:54:7a:c5:0f:45:af:71:7f:38:be:96:
02:c6:8d:0a:4d:8c:99:d3:6b:ca:5f:f4:0b:59:7e:32:dc:7a:
6f:ea:56:82:c6:b8:68:67:2f:a2:b7:d7:21:14:82:5d:55:76:
63:1b:26:4c:f5:a1:d7:c1:4d:bb:ed:fa:a4:d8:d0:49:50:92:
ba:e6:8f:db:b6:b2:5e:d9:2d:6a:f8:e3:3a:7e:b6:41:16:5b:
a2:2b:e1:f3:ce:96:1f:a0:97:f6:2e:66:62:91:55:b0:a7:b2:
aa:76:fb:9b:85:99:37:2f:f4:17:91:8f:9c:9b:84:c9:dc:84:
12:1e:0e:1c:16:6c:47:1b:8c:11:18:a8:6a:4f:cf:fb:78:d8:
93:72:94:10:7e:03:7e:aa:e5:c1:3c:04:cd:fe:ce:72:96:f9:
55:36:b3:ee:c0:03:a2:20:f3:13:f3:25:42:75:2f:27:71:8e:
b6:f3:1b:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 13 13:10:51 2024 by rpki-client on console-ams.rpki-client.org