Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3139332e3136302e3234342e302f32342d3234203d3e20313336373837.roa
File: 3139332e3136302e3234342e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: DLOeLy1eox+Da+IO0Widy8iywrzsK4kFVlanfh5PVYc=
Subject key identifier: 1D:82:45:07:4C:EF:D9:01:82:41:DA:99:4D:F7:12:90:D4:6B:AB:AE
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 78CB7D6C74DBB252AFEA0631AEDADE02E11A85DD
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3139332e3136302e3234342e302f32342d3234203d3e20313336373837.roa
Signing time: Mon 26 Feb 2024 08:53:40 +0000
ROA not before: Mon 26 Feb 2024 08:48:40 +0000
ROA not after: Mon 24 Feb 2025 08:53:40 +0000
asID: 136787
IP address blocks: 193.160.244.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:cb:7d:6c:74:db:b2:52:af:ea:06:31:ae:da:de:02:e1:1a:85:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Feb 26 08:48:40 2024 GMT
Not After : Feb 24 08:53:40 2025 GMT
Subject: CN=1D8245074CEFD9018241DA994DF71290D46BABAE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:3f:e5:a2:84:33:96:3b:29:97:3a:e2:89:d2:
2b:e3:21:a5:b6:66:76:5e:98:95:a8:0b:27:96:15:
45:ce:7b:d6:d1:d4:68:ee:cf:84:be:76:59:0a:bd:
38:d2:9d:85:19:04:53:62:82:f5:9e:b3:1c:8f:95:
65:5b:84:06:fa:b1:cf:18:07:6a:f4:d0:c4:36:5d:
fd:9b:5a:ea:ca:cb:b5:87:9f:00:2e:40:5b:5f:7e:
e2:c7:e2:d3:d2:da:69:d0:79:0e:f6:59:08:70:db:
d9:9d:48:79:f6:fe:ee:c7:8f:9d:0e:42:77:56:20:
77:e8:82:4a:5e:fe:a9:a4:9e:95:01:d2:b4:33:5a:
b2:6e:49:ea:bc:8b:94:c8:ac:c1:8e:91:97:cf:3d:
18:54:8a:7e:bc:91:b7:50:c9:f3:b8:1e:9d:17:db:
71:b5:42:c8:ca:2b:e4:81:2c:27:d4:bf:70:65:21:
22:61:f8:61:2e:e4:f0:fc:2b:7f:76:ed:de:a4:09:
d7:84:4f:e4:91:13:42:54:f2:7a:85:fa:e4:16:cc:
49:aa:23:e8:5b:9f:a9:d6:1e:ae:a5:fa:64:4a:f8:
0e:3a:e3:b2:a1:5c:ac:01:75:73:0d:b5:d9:27:1e:
72:15:96:34:e1:cb:97:e0:9b:fb:ba:49:1b:4a:bb:
b1:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:82:45:07:4C:EF:D9:01:82:41:DA:99:4D:F7:12:90:D4:6B:AB:AE
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3139332e3136302e3234342e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.160.244.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:d2:f4:85:bd:f3:5b:41:ed:b0:c5:56:b1:fa:1b:e0:8c:9a:
3c:ce:a6:ab:f3:bb:de:5c:ab:c0:0d:11:49:40:0c:29:7f:f3:
8d:26:33:ba:f1:21:81:5b:a5:1b:47:cb:e7:7c:69:74:01:3c:
2c:cd:ee:21:1f:6c:52:ae:b3:86:64:f3:3a:73:a8:f6:c8:2b:
f6:45:68:6e:31:a7:cb:ce:9f:d8:9f:91:2b:71:b9:8b:2a:d1:
1a:d0:86:5c:6c:50:24:7e:83:2b:c7:fa:a6:1f:bd:72:d1:6a:
43:5e:25:2c:0a:45:af:51:31:37:80:83:94:12:b9:71:ad:24:
ed:6c:13:ce:27:f0:31:80:5e:6e:ef:34:fa:85:c7:72:c1:1c:
61:9f:9d:e5:38:f8:49:41:eb:bf:c4:9f:31:ba:4c:df:1e:ca:
64:08:05:ad:8c:10:05:5a:44:8b:41:bc:34:23:07:32:13:03:
ea:44:b8:a1:41:25:1f:2b:55:c6:46:98:9c:87:24:03:1c:de:
09:4d:9e:3b:6b:51:95:82:90:a7:d6:66:65:d6:e6:65:d7:09:
91:6e:d2:92:64:54:62:2c:db:b3:89:94:9f:59:bb:7d:1f:be:
65:9b:db:ea:42:31:ab:62:5c:f1:4a:86:bc:4a:eb:b7:94:2b:
fb:b6:98:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:05 2024 by rpki-client on console-fra.rpki-client.org