Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e3134362e31322e302f32342d3332203d3e203531313637.roa
File: 3139342e3134362e31322e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: yfuA4eZ+dQowFMryiI7ow9fk0kz0ImXksDgvFWa3biY=
Subject key identifier: E8:A8:75:40:E8:3D:30:F5:25:2E:76:D0:98:99:A2:B5:AB:CF:5C:EA
Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Certificate serial: 4D1C89E142B523B78ED704EA24B0558338A46EC6
Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e3134362e31322e302f32342d3332203d3e203531313637.roa
Signing time: Mon 26 Feb 2024 08:52:43 +0000
ROA not before: Mon 26 Feb 2024 08:47:43 +0000
ROA not after: Mon 24 Feb 2025 08:52:43 +0000
asID: 51167
IP address blocks: 194.146.12.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 May 2024 14:34:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:1c:89:e1:42:b5:23:b7:8e:d7:04:ea:24:b0:55:83:38:a4:6e:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Validity
Not Before: Feb 26 08:47:43 2024 GMT
Not After : Feb 24 08:52:43 2025 GMT
Subject: CN=E8A87540E83D30F5252E76D09899A2B5ABCF5CEA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:27:3d:06:24:c9:7c:d1:6a:3f:a6:56:07:1a:
db:95:3f:a0:21:7e:e5:91:db:41:50:b5:e7:07:bd:
b6:31:24:60:d6:08:18:6f:0d:bb:7b:f7:f5:51:58:
fd:b0:b7:33:dc:2a:3e:f3:44:04:b1:68:ce:d9:75:
ae:e2:2d:34:e0:88:c6:7d:d1:cb:ae:2f:de:0e:2f:
dd:3d:20:91:1a:85:54:e1:96:a7:1c:93:59:5d:2e:
32:d7:dd:bb:81:d9:0b:0f:91:5e:f5:d2:4e:ee:b1:
b7:17:fa:ad:51:b9:8b:e0:dc:f2:ae:3c:bd:72:2b:
3c:ab:90:9b:bb:86:bb:98:b1:58:2d:f8:08:6c:4f:
c5:e8:bb:4b:ef:8d:ab:1d:9d:d2:a5:04:46:81:65:
9e:6f:e3:8b:9f:01:37:43:48:e3:76:eb:97:87:df:
2a:b2:37:55:21:95:c8:46:d3:39:58:62:5a:7e:40:
25:cb:15:fe:4b:fc:09:65:51:a8:71:9b:c1:98:06:
15:60:41:4e:d1:ce:fd:3e:eb:09:4f:9d:c2:09:c7:
2b:6c:9f:8a:cb:64:b7:8b:f4:b4:73:c6:c5:66:84:
29:f2:5f:73:04:b3:27:80:90:33:8e:2a:77:32:b6:
4c:09:72:09:ed:56:9b:20:b8:f9:aa:81:a6:28:0c:
f5:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:A8:75:40:E8:3D:30:F5:25:2E:76:D0:98:99:A2:B5:AB:CF:5C:EA
X509v3 Authority Key Identifier:
keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e3134362e31322e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.146.12.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:8c:ef:a2:45:13:f4:a0:1b:7f:31:d7:5f:42:b3:5f:6b:4b:
8b:52:43:00:23:d8:3a:39:a5:07:34:d4:88:de:a2:83:b9:56:
56:52:73:e9:fa:2e:a7:8a:fd:de:97:84:52:ef:d1:2f:6e:2f:
b4:30:72:cb:06:69:77:dd:94:b9:92:57:5f:36:ff:35:94:23:
64:a7:a4:da:d2:e2:4a:0c:3f:f8:6f:20:8c:85:08:e7:17:70:
c8:d6:03:c7:ab:cd:7c:b1:88:d6:50:2f:91:87:1d:d0:28:62:
00:b5:b6:5d:e7:bb:14:85:e6:8f:fb:78:3b:56:1f:9c:71:e3:
f1:5c:86:e7:75:e3:38:41:3c:19:d1:24:fe:61:5e:c5:fb:79:
98:5c:05:46:fc:c2:88:0e:8b:b1:1f:f8:cf:53:6e:81:f4:62:
01:be:97:db:3b:14:93:5e:f0:21:e6:cb:72:2c:8c:23:85:9b:
85:4d:dd:15:72:95:d6:bb:fc:89:24:6c:72:95:e0:37:c8:b1:
d8:4a:5b:44:e0:ef:29:4a:28:3c:39:59:2c:eb:71:ab:32:ed:
28:47:f1:7b:85:e7:34:08:67:0e:b9:af:a0:6e:9c:ef:65:c0:
41:10:84:73:90:d4:73:a5:4d:80:d5:4c:26:f2:ee:13:f2:62:
c2:e2:b4:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 16 17:02:40 2024 by rpki-client on console-ams.rpki-client.org