Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3133302e3138352e3131392e302f32342d3332203d3e203531313637.roa
File: 3133302e3138352e3131392e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: I+lTGovQfWnvRe3Yxf9NA5hAuPAC5zmix1SeU/ZDjws=
Subject key identifier: D0:FF:7F:2C:19:0D:D1:F7:A4:7D:65:CD:74:14:F9:24:AC:15:FA:24
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 499D1A9EA44B9466B6086264BF2B17C4247ADF03
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3133302e3138352e3131392e302f32342d3332203d3e203531313637.roa
Signing time: Mon 26 Feb 2024 08:53:39 +0000
ROA not before: Mon 26 Feb 2024 08:48:39 +0000
ROA not after: Mon 24 Feb 2025 08:53:39 +0000
asID: 51167
IP address blocks: 130.185.119.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:9d:1a:9e:a4:4b:94:66:b6:08:62:64:bf:2b:17:c4:24:7a:df:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Feb 26 08:48:39 2024 GMT
Not After : Feb 24 08:53:39 2025 GMT
Subject: CN=D0FF7F2C190DD1F7A47D65CD7414F924AC15FA24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:01:c0:fd:7f:86:2e:0f:b9:bc:dc:69:86:e4:
8e:aa:87:ea:81:a0:75:38:21:7d:99:a8:ec:94:86:
59:22:d5:d3:0e:06:e3:f4:66:b3:e3:e2:3b:61:40:
a8:ca:0c:22:ad:83:cf:27:1f:92:27:e6:4b:ae:83:
5d:d6:61:b3:08:c9:f3:db:f3:62:4d:7c:99:b4:90:
a7:ba:a0:52:e4:14:db:0a:51:49:1f:87:c3:94:8a:
e4:e3:d0:54:b4:cb:78:3e:e2:5b:3e:b6:30:cb:11:
fa:da:d1:7a:72:30:af:29:08:70:2b:49:f8:5e:71:
54:c5:b0:4f:a3:cc:81:24:d5:59:f4:e1:c7:d6:1e:
de:9c:31:7d:78:8d:06:3c:15:2e:8c:eb:5c:dd:8d:
62:2e:e6:ec:82:2e:38:c9:a4:b8:e7:1b:14:89:c0:
52:a6:55:6d:15:93:54:0b:46:1c:71:0d:70:c0:9c:
ab:1f:39:88:42:08:94:04:34:f0:d4:79:27:8a:03:
44:12:9f:16:25:e8:b2:05:7d:e7:bc:03:03:4e:bb:
c4:cd:3e:f0:9b:25:36:84:9a:97:b3:92:0d:ed:24:
0d:eb:95:85:f1:34:08:08:a2:6b:df:fa:4c:ca:b3:
fc:68:77:cd:1b:a6:5c:c0:d7:b2:71:98:54:62:35:
c5:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:FF:7F:2C:19:0D:D1:F7:A4:7D:65:CD:74:14:F9:24:AC:15:FA:24
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3133302e3138352e3131392e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.185.119.0/24
Signature Algorithm: sha256WithRSAEncryption
97:09:2c:db:e8:f9:cf:5d:18:f0:9a:20:48:0b:17:1d:6f:28:
8c:48:2c:4d:e0:72:a6:0e:ba:11:0a:c5:11:53:93:83:4c:29:
fb:97:63:51:17:8d:cd:85:11:8d:fd:e2:aa:34:d6:ac:a2:72:
d5:10:bf:f6:2d:5e:36:f3:67:4a:4f:9b:10:51:b2:56:87:5a:
f0:10:83:4e:46:d7:2b:69:7c:8f:da:c1:c0:ce:d8:68:2c:31:
8b:45:2a:e9:1d:08:7b:23:1a:70:5d:c3:6e:71:0f:7b:75:68:
d3:10:a2:60:3c:27:f7:b9:57:01:6a:ad:eb:f4:21:55:5b:c1:
28:85:22:26:90:99:de:e0:19:bf:71:f5:99:0b:aa:03:fa:39:
8c:ac:a3:db:1c:6f:47:de:ed:d1:8b:d8:24:6b:a0:d0:3f:ad:
47:9b:89:bd:26:e3:f8:74:5d:99:35:3f:e3:80:c9:74:2f:19:
41:63:39:61:e4:07:18:b5:f2:a1:c6:11:26:51:59:83:b0:35:
85:ab:62:79:da:e2:65:86:af:cd:80:41:d7:42:a8:28:e5:1f:
26:91:d8:16:14:a2:1f:a6:c5:47:62:45:0b:7c:f3:d4:f3:c9:
2a:1e:70:4b:0b:a3:8c:45:e2:b9:75:e7:76:c9:4b:92:bd:34:
96:6c:94:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:15:49 2024 by rpki-client on console-ams.rpki-client.org