Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3134372e37382e34382e302f32322d3234203d3e20333936333139.roa
File: 3134372e37382e34382e302f32322d3234203d3e20333936333139.roa (raw, json)
Hash identifier: djKCZJcPG/sLzkKt1ajAYC/f9OCSasb68zHtn3tUe80=
Subject key identifier: CC:08:AB:CE:F1:39:C4:2B:21:A8:CA:6F:8D:F0:C8:9B:3E:6A:9C:B6
Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Certificate serial: 13CDD7E0D41E1D671229E2BF7203D09CFFF04BC7
Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3134372e37382e34382e302f32322d3234203d3e20333936333139.roa
Signing time: Mon 26 Feb 2024 08:52:44 +0000
ROA not before: Mon 26 Feb 2024 08:47:44 +0000
ROA not after: Mon 24 Feb 2025 08:52:44 +0000
asID: 396319
IP address blocks: 147.78.48.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:cd:d7:e0:d4:1e:1d:67:12:29:e2:bf:72:03:d0:9c:ff:f0:4b:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Validity
Not Before: Feb 26 08:47:44 2024 GMT
Not After : Feb 24 08:52:44 2025 GMT
Subject: CN=CC08ABCEF139C42B21A8CA6F8DF0C89B3E6A9CB6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:d7:80:ca:ac:d7:79:2c:35:14:5d:82:bc:00:
de:b8:fc:49:61:d8:e8:06:3a:a6:11:09:9e:95:64:
70:68:5c:26:28:55:e9:83:a9:e2:50:b9:02:57:d7:
27:80:ae:16:16:b6:31:df:11:0d:84:65:13:8c:e0:
5d:c4:03:52:e4:c1:81:fd:0c:e8:bb:29:94:1e:72:
d4:50:41:97:d3:de:cf:d1:79:dd:46:1e:a6:9e:d6:
bd:07:c1:60:52:96:14:2a:01:4e:fe:93:e6:7e:cf:
ed:19:c6:e4:cb:c1:a1:fd:54:68:d6:02:79:10:3f:
22:57:8b:a3:21:ae:8c:63:c0:35:4f:de:13:79:2b:
a5:08:e3:33:99:ec:82:0d:5c:74:9d:a9:62:0e:f9:
e7:2e:f0:75:08:72:41:21:11:96:88:84:e5:00:25:
bd:13:29:c4:c6:27:ec:4c:e8:9e:dd:5f:ad:c9:6c:
e9:48:8c:77:a3:6b:04:91:d1:12:0c:1a:72:6e:6b:
69:c9:aa:d3:22:0f:02:18:15:e8:52:52:a4:48:c7:
17:c0:85:2f:9d:63:85:db:87:e0:61:82:42:6a:8f:
4f:8a:e6:ee:0a:52:08:5a:c6:ff:6a:00:a5:43:1a:
b2:80:44:5a:97:61:24:ae:92:5e:41:df:f0:8c:41:
e9:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:08:AB:CE:F1:39:C4:2B:21:A8:CA:6F:8D:F0:C8:9B:3E:6A:9C:B6
X509v3 Authority Key Identifier:
keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3134372e37382e34382e302f32322d3234203d3e20333936333139.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.48.0/22
Signature Algorithm: sha256WithRSAEncryption
03:d9:70:01:2a:44:80:0c:2f:fc:87:eb:89:ba:11:44:84:8d:
54:3f:ac:0b:ac:88:33:58:b6:81:e1:10:61:84:ec:4e:2f:27:
98:34:17:84:33:2d:df:3c:01:b4:94:ee:c5:a6:e3:88:7b:6f:
2d:66:89:41:d9:13:62:8a:ef:91:77:cb:61:69:4d:aa:d2:cb:
98:b7:ed:73:db:65:39:4c:b8:94:44:12:f2:96:17:46:c7:c6:
30:a1:7d:0d:1f:c4:15:7c:af:67:1d:90:93:52:d3:95:ce:ca:
83:82:b9:38:b3:70:ae:79:81:23:48:e6:9e:8a:49:5e:92:2a:
cf:81:3c:95:27:32:d2:0b:2f:6c:21:9e:5b:d8:ae:8b:02:d6:
0a:f9:c9:50:4b:dc:2b:20:9c:57:44:aa:45:a0:5d:da:3a:28:
1b:67:65:71:1f:b5:d1:15:60:6b:2e:2e:7c:ab:73:69:75:99:
d6:49:53:05:0d:56:d2:e8:22:cc:80:6f:40:50:b8:f4:c4:cc:
12:c1:32:1a:cc:c8:74:04:09:cb:44:96:79:4c:4d:b7:95:a7:
fe:ff:df:7c:f0:48:38:66:6a:d7:c1:09:48:c2:a6:ec:30:3a:
09:5b:b5:6f:4c:3c:2c:f7:46:52:4b:f5:0b:66:41:f6:aa:83:
0d:95:94:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:05 2024 by rpki-client on console-fra.rpki-client.org