Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3138352e3234392e3232342e302f32342d3234203d3e203437353833.roa
File: 3138352e3234392e3232342e302f32342d3234203d3e203437353833.roa (raw, json)
Hash identifier: pZNVIps6ENzHXkyeaDxVL/kzX+GHuV+Vxhlc+87SGnQ=
Subject key identifier: FA:53:FB:F2:17:62:8A:37:62:0E:E8:FF:2C:B0:E4:A8:16:24:3C:D6
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 349D12A9067A3B0DB8FCE088DE2B69EE92320464
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3138352e3234392e3232342e302f32342d3234203d3e203437353833.roa
Signing time: Mon 26 Feb 2024 08:53:41 +0000
ROA not before: Mon 26 Feb 2024 08:48:41 +0000
ROA not after: Mon 24 Feb 2025 08:53:41 +0000
asID: 47583
IP address blocks: 185.249.224.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 May 2024 20:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:9d:12:a9:06:7a:3b:0d:b8:fc:e0:88:de:2b:69:ee:92:32:04:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Feb 26 08:48:41 2024 GMT
Not After : Feb 24 08:53:41 2025 GMT
Subject: CN=FA53FBF217628A37620EE8FF2CB0E4A816243CD6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:89:f2:0a:2d:f0:20:52:e7:71:ca:a0:07:cd:
16:9d:f8:61:d4:97:50:c1:78:5a:91:e4:52:de:2a:
eb:30:67:27:a4:22:7c:d2:39:7d:0d:f2:f1:0d:c6:
55:e7:14:5e:f9:3b:1c:01:59:80:e2:79:e4:06:8e:
a4:cf:9c:a0:8c:87:73:7a:17:31:42:8e:3c:d2:7b:
17:b1:91:66:9f:b7:ad:62:f2:30:2a:c4:f7:13:65:
b8:7d:82:58:6b:ba:b4:51:4a:65:ac:14:8e:b3:ec:
42:ef:7a:ab:41:72:e8:e2:5e:f3:f5:7c:21:28:8f:
09:6d:68:68:6e:2c:bb:58:b8:63:6c:28:f0:ac:76:
54:47:6e:27:c5:ef:f2:00:2a:2f:99:40:1e:0a:66:
c7:cd:4a:00:d4:3e:4f:07:42:d3:41:5b:de:ba:1e:
8e:2d:1b:46:7c:67:cd:30:25:4a:18:5a:af:29:49:
c3:08:58:59:63:47:e2:69:8f:46:2e:4a:40:c5:61:
97:e8:87:9b:f7:26:f3:7e:8d:51:9f:af:a1:66:18:
8e:41:b8:5b:76:06:2e:47:79:b2:9f:07:57:6b:ad:
01:19:6e:a7:dc:87:2c:d5:15:2e:07:72:93:b8:3b:
a2:49:33:7b:d8:d8:56:3e:b5:a3:53:65:82:3e:84:
ea:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:53:FB:F2:17:62:8A:37:62:0E:E8:FF:2C:B0:E4:A8:16:24:3C:D6
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3138352e3234392e3232342e302f32342d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.249.224.0/24
Signature Algorithm: sha256WithRSAEncryption
02:19:de:26:56:10:a0:7f:97:33:ef:da:20:e3:a2:1e:43:4f:
71:b6:70:0b:71:c1:4d:96:bb:a7:b9:54:a8:7a:d8:87:ab:14:
9f:cd:a4:d0:fc:4d:2f:79:cd:db:b6:25:36:42:6d:a6:0c:68:
aa:c4:b7:76:ef:d1:05:48:cf:9e:b7:0c:85:cd:dd:e2:e1:6d:
47:33:d1:16:55:5c:60:40:78:0f:13:ac:0a:8e:b9:3d:07:dc:
02:29:5e:61:39:2f:b9:98:46:b1:55:11:82:29:11:35:9d:96:
a9:3b:eb:c0:e2:17:c3:01:ff:dc:79:30:cd:c5:38:1b:6b:9c:
ca:26:c7:64:9c:60:11:af:e8:47:88:ef:5f:73:d2:c9:f3:2c:
17:bc:bd:6b:7a:1d:7b:36:89:65:65:ef:75:17:e4:2d:17:7c:
4d:73:d0:d4:3c:2b:74:af:0e:fa:47:98:77:51:9d:d4:0f:cf:
8d:16:74:0d:0a:7e:d4:2b:5a:7f:54:52:e6:33:66:d1:da:b3:
c1:d3:28:f2:98:b1:97:16:da:d4:c1:10:ef:e7:bf:9a:84:eb:
50:2a:88:f1:b2:59:56:93:39:78:2a:53:06:4e:59:91:02:f3:
15:5e:a6:f2:53:36:50:f2:a9:df:e0:e0:e3:9d:63:a3:83:f7:
72:45:0f:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 23:46:05 2024 by rpki-client on console-ams.rpki-client.org