Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3138352e3139362e302e302f32342d3234203d3e20323039383534.roa
File: 3138352e3139362e302e302f32342d3234203d3e20323039383534.roa (raw, json)
Hash identifier: h6GKpeRGvs/rNAfuhBIgWESkiNN2YW8nxtLBO2bMi+w=
Subject key identifier: C3:3F:1A:F5:A9:24:4B:69:B2:41:A9:D4:F9:2E:58:6C:B9:AA:47:06
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 524C172C9C1F2ACCD9BDAC0EDD5A726411642553
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3138352e3139362e302e302f32342d3234203d3e20323039383534.roa
Signing time: Mon 06 May 2024 11:03:35 +0000
ROA not before: Mon 06 May 2024 10:58:35 +0000
ROA not after: Mon 05 May 2025 11:03:35 +0000
asID: 209854
IP address blocks: 185.196.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:4c:17:2c:9c:1f:2a:cc:d9:bd:ac:0e:dd:5a:72:64:11:64:25:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: May 6 10:58:35 2024 GMT
Not After : May 5 11:03:35 2025 GMT
Subject: CN=C33F1AF5A9244B69B241A9D4F92E586CB9AA4706
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:01:9b:fd:d7:8a:64:63:9b:c8:64:46:66:e6:
a0:47:84:28:8e:98:ec:ae:00:7b:72:35:e4:14:07:
06:de:ec:e9:1e:a8:a3:10:87:27:32:b6:39:d9:92:
26:29:94:16:7b:e6:f6:3f:8a:cd:6f:48:ae:d4:15:
75:b6:73:ab:44:32:46:de:d0:e6:42:35:ff:67:91:
00:cc:a6:68:a5:62:ba:ec:48:c5:26:62:e9:36:ea:
e4:86:1e:5d:d4:2e:aa:8f:dc:02:3f:82:70:5d:a2:
16:5f:46:64:00:b4:1b:4d:39:24:e7:53:0b:f6:3e:
61:eb:d0:bb:a9:c0:44:b3:2e:2c:69:50:93:55:6a:
04:c7:48:b8:3f:8f:e7:16:b1:b3:e6:0f:e2:76:8f:
f6:c3:8d:d9:e7:40:95:99:ca:8f:60:69:23:73:3a:
91:ef:d2:f6:39:14:ca:06:78:f8:89:28:8f:aa:f8:
9c:47:74:a3:56:a5:58:ed:9b:9d:20:99:f2:8e:a8:
f8:6f:75:61:e2:64:9a:de:5c:e3:a1:50:df:8b:e7:
36:e9:fc:4a:27:dd:71:fb:58:6c:98:ca:02:3a:ec:
70:25:ba:e3:bd:8b:41:bb:d0:53:d1:c1:be:ba:34:
00:fd:80:76:7b:02:09:43:eb:cd:de:4f:14:3f:c4:
8f:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:3F:1A:F5:A9:24:4B:69:B2:41:A9:D4:F9:2E:58:6C:B9:AA:47:06
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3138352e3139362e302e302f32342d3234203d3e20323039383534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.196.0.0/24
Signature Algorithm: sha256WithRSAEncryption
45:d1:c5:f3:73:e5:bb:33:5d:1a:1d:f3:22:7f:0b:35:7a:86:
ea:50:ca:eb:5b:9b:67:9b:76:60:a0:bf:68:52:2b:16:60:76:
cc:9e:29:3d:e7:39:37:b7:2a:23:8f:86:d5:8a:71:5d:a3:01:
88:4f:02:88:3e:56:59:62:16:5d:e0:0e:a8:75:c2:0e:4b:d1:
c4:e7:dd:e3:70:aa:1f:d8:13:66:ab:b7:f5:73:6e:09:4d:18:
ce:d8:6f:be:4a:c5:b1:91:b1:1b:98:dc:de:65:2e:c3:7a:00:
8a:11:cf:ba:e5:ae:77:50:2b:55:99:d3:3c:2c:39:3e:bd:6b:
40:06:67:05:cc:2f:62:21:87:6c:76:b1:c3:aa:fe:5a:54:03:
3b:b2:06:26:9b:bd:02:82:37:67:8b:da:bd:f1:f9:7f:35:95:
85:41:e6:15:57:c8:f8:33:f2:52:2d:c6:90:58:a2:8a:99:30:
1a:06:cb:77:ef:82:69:4e:12:75:22:df:6e:11:08:b8:c1:aa:
1a:13:49:1d:0d:64:19:86:94:d8:5a:5c:4e:3a:f5:50:a6:24:
75:3c:6b:8a:07:fc:c5:cd:bd:7d:db:ac:37:7f:e3:0c:07:2f:
3c:99:1b:93:be:d6:2b:78:d4:0b:f6:48:02:c8:f7:1d:6d:1f:
59:74:bc:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:05 2024 by rpki-client on console-fra.rpki-client.org