Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139352e3230302e31322e302f32322d3234203d3e203437353833.roa
File: 3139352e3230302e31322e302f32322d3234203d3e203437353833.roa (raw, json)
Hash identifier: JFrM67UmVde/wQ8lo6jtUMPjbEsyeF/FZJM/XwZ6f4Q=
Subject key identifier: 00:50:BA:72:2C:1C:D8:9C:43:0E:BA:B7:C1:D6:AB:FE:7C:B1:A4:9E
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 720D3958ADBB5EF79AA51E38CAD476BEC62E153D
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139352e3230302e31322e302f32322d3234203d3e203437353833.roa
Signing time: Thu 13 Jun 2024 10:41:03 +0000
ROA not before: Thu 13 Jun 2024 10:36:03 +0000
ROA not after: Thu 12 Jun 2025 10:41:03 +0000
asID: 47583
IP address blocks: 195.200.12.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:0d:39:58:ad:bb:5e:f7:9a:a5:1e:38:ca:d4:76:be:c6:2e:15:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jun 13 10:36:03 2024 GMT
Not After : Jun 12 10:41:03 2025 GMT
Subject: CN=0050BA722C1CD89C430EBAB7C1D6ABFE7CB1A49E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:fb:5e:00:38:7d:1b:5d:a9:89:59:26:45:f0:
4a:6f:85:b5:6f:8b:c4:44:48:1d:02:c4:a8:f6:d1:
04:20:d3:29:41:5b:c8:62:1c:97:1a:75:f4:3b:5f:
2d:c3:fc:1a:dd:2c:13:1a:b8:b5:37:11:56:3b:80:
e8:a2:9f:8a:ac:16:31:db:2f:52:09:96:12:bb:2c:
02:e3:01:d2:8f:84:12:5c:f5:59:63:25:ba:0d:1f:
4c:3c:7a:73:26:2d:8b:6f:7d:bc:6f:a0:a1:c9:55:
1a:5e:64:c8:f2:26:48:1f:08:2f:96:0b:36:62:97:
a1:af:0c:5b:be:7e:48:44:50:cf:26:4f:a6:8b:eb:
18:6f:02:a4:74:da:ea:fa:e3:be:66:b2:81:12:8f:
d9:59:f7:3b:d7:a9:70:23:27:79:7c:67:be:58:13:
7d:07:04:e0:74:a3:c4:06:e3:c8:bd:82:bb:39:94:
1a:36:7d:76:6c:fa:24:ea:bb:cc:a9:5c:8e:77:02:
a7:12:a8:69:15:4e:20:0a:a5:ec:51:13:37:1f:54:
99:f1:30:f8:a8:e0:5e:5f:4c:40:d3:b2:c3:e2:8c:
71:c4:0f:52:ec:3d:d3:7e:19:65:0b:fd:21:a0:22:
40:13:3f:ad:ba:68:f4:95:d3:37:ef:a8:55:a3:69:
00:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:50:BA:72:2C:1C:D8:9C:43:0E:BA:B7:C1:D6:AB:FE:7C:B1:A4:9E
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139352e3230302e31322e302f32322d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.200.12.0/22
Signature Algorithm: sha256WithRSAEncryption
9a:28:9e:e8:5a:80:4e:91:81:bb:68:a7:9d:20:95:3f:53:24:
7e:e4:cb:1e:69:e4:24:44:85:6e:79:fc:7a:f0:47:03:a1:78:
17:53:5c:2f:b3:a2:ae:1d:9f:f0:9d:80:31:ec:82:02:11:e2:
e0:06:c7:2b:16:46:be:e2:de:79:ca:ac:19:ee:36:56:cd:9d:
2e:8e:92:09:15:d0:83:29:6f:43:d6:94:b8:08:a1:99:41:7c:
41:71:c7:e0:10:9f:5d:3d:b3:dc:00:c4:07:b3:f9:12:02:18:
94:1b:5b:85:99:9b:20:71:20:02:b5:88:49:53:d0:3d:dc:71:
0b:37:89:5b:ca:03:40:41:ff:de:62:f6:fb:34:c8:66:ba:a3:
e5:e9:7e:7b:6c:93:d7:49:58:16:a7:0c:d3:89:76:32:ee:2a:
46:eb:5b:b7:16:1c:e6:24:fe:30:5f:a7:b9:8b:ce:e9:0e:0d:
a8:45:00:8d:40:95:23:ca:a5:ea:3f:9d:b2:bf:60:3b:d2:de:
c8:00:82:66:e3:7f:82:25:5d:74:e4:c4:51:ae:a8:1b:5b:8f:
69:3b:bd:22:4e:80:e9:51:10:79:b7:9c:ab:66:37:3c:14:d6:
ae:8a:f2:0b:22:76:1e:6e:59:7b:6a:e6:e9:24:2e:56:09:37:
d0:67:95:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:15:48 2024 by rpki-client on console-ams.rpki-client.org