Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3136302e3233382e33372e302f32342d3234203d3e20313437303439.roa
File: 3136302e3233382e33372e302f32342d3234203d3e20313437303439.roa (raw, json)
Hash identifier: epUdEENFbZ0IIcdchKNJS21IILTIbx/efybn9soT9Zs=
Subject key identifier: 96:19:F0:11:A7:FC:CC:33:9D:8E:A9:04:C3:80:AA:23:BD:ED:DA:B4
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 59744E0E364BFECE72A38F1FA882A651E93B82E9
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3136302e3233382e33372e302f32342d3234203d3e20313437303439.roa
Signing time: Thu 11 Jul 2024 18:50:00 +0000
ROA not before: Thu 11 Jul 2024 18:45:00 +0000
ROA not after: Thu 10 Jul 2025 18:50:00 +0000
asID: 147049
IP address blocks: 160.238.37.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:74:4e:0e:36:4b:fe:ce:72:a3:8f:1f:a8:82:a6:51:e9:3b:82:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Jul 11 18:45:00 2024 GMT
Not After : Jul 10 18:50:00 2025 GMT
Subject: CN=9619F011A7FCCC339D8EA904C380AA23BDEDDAB4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:a4:4f:78:9c:95:0f:70:75:9b:e1:cf:9e:24:
04:90:1c:32:11:7c:37:21:20:26:71:b6:89:a7:92:
a7:0b:99:db:44:6a:8e:bd:6a:13:40:0a:bf:61:28:
74:76:eb:67:be:48:79:bb:4b:1c:7e:ce:f2:26:34:
13:23:29:bc:2b:96:5e:db:57:e3:20:c0:42:4b:2e:
73:e4:c3:97:d7:b2:d0:6f:6d:c5:23:20:1f:6a:04:
2d:f8:76:78:72:a6:e0:d3:25:37:65:72:aa:c4:86:
71:9b:61:08:28:e1:0e:44:73:92:66:36:ac:b5:f3:
66:2f:1b:8a:5e:f8:7e:ff:1e:cc:88:c5:fb:29:23:
58:ff:a8:1c:9e:8b:aa:11:40:b7:39:c5:56:ec:5f:
ab:8d:d8:60:d6:ee:3f:15:ab:e1:49:cf:c0:96:95:
8d:fd:55:40:17:24:3f:fc:a5:60:f6:73:6f:a0:db:
96:a2:46:2d:4b:d9:c7:aa:5a:e8:c0:63:60:a5:c0:
e4:8e:c1:64:6e:80:e5:42:4d:5c:08:0b:cd:f0:e0:
a6:cb:ca:37:bb:c9:73:72:7d:91:77:7a:e6:d6:ff:
74:a6:ca:45:99:ef:49:4e:84:dc:0e:28:ff:62:f3:
74:ae:28:6e:0e:22:26:0e:f4:da:65:7d:a5:6b:f3:
a5:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:19:F0:11:A7:FC:CC:33:9D:8E:A9:04:C3:80:AA:23:BD:ED:DA:B4
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3136302e3233382e33372e302f32342d3234203d3e20313437303439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.238.37.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:de:46:44:19:53:16:08:11:14:fd:ab:db:58:6e:ca:41:4b:
06:ab:03:94:92:bc:66:7b:c2:d5:48:6d:76:b1:93:75:23:06:
6e:8b:dc:0f:76:61:3a:c7:fa:e5:f3:bf:e5:39:5b:01:ec:d1:
43:7a:90:2b:41:07:b1:0c:14:34:e9:f1:92:e8:fb:5e:66:dc:
73:0c:dd:f4:fc:78:cf:75:f4:eb:42:a9:71:a7:28:62:e5:78:
85:cc:d5:d0:ea:c9:b9:c3:35:38:d3:8b:a3:a6:82:c9:4b:7f:
8a:ce:44:59:13:3f:28:83:13:1b:7c:68:cb:64:d7:06:c9:0c:
b3:8d:21:6c:ea:36:82:bf:19:84:f6:3c:c5:1a:42:29:b4:cf:
a4:d0:9b:d0:db:25:9f:21:b6:25:d8:32:74:81:cf:10:52:1a:
3b:0b:c1:40:6e:c9:5b:ca:d6:7a:82:1d:ad:01:7c:a1:e7:79:
fb:8a:cc:26:1d:2e:da:49:46:25:a5:bb:9e:74:c2:e6:12:99:
91:e1:2d:1d:48:de:df:2a:b9:5b:6b:1d:b7:07:10:a3:44:4d:
3b:c7:9e:aa:99:36:05:97:fb:81:3b:f2:63:7d:16:a7:77:b1:
0e:29:1a:2e:9b:42:90:d6:4d:1c:2d:36:60:cb:45:c8:6e:7d:
eb:b9:6e:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:05 2024 by rpki-client on console-fra.rpki-client.org