Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3139332e33322e3137342e302f32342d3234203d3e20323031333431.roa
File: 3139332e33322e3137342e302f32342d3234203d3e20323031333431.roa (raw, json)
Hash identifier: kx+/VesZy1rFZkKSUbFV6Q+Fi4QJPxmpiBLSbZ4Jtjs=
Subject key identifier: 0D:CB:B1:12:E8:B2:02:8C:76:77:B3:9B:6D:64:FF:80:F7:C0:08:16
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 74172E712F43D205114A2A07F5F92336FCDD7E7F
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3139332e33322e3137342e302f32342d3234203d3e20323031333431.roa
Signing time: Mon 26 Feb 2024 08:53:41 +0000
ROA not before: Mon 26 Feb 2024 08:48:41 +0000
ROA not after: Mon 24 Feb 2025 08:53:41 +0000
asID: 201341
IP address blocks: 193.32.174.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 May 2024 20:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:17:2e:71:2f:43:d2:05:11:4a:2a:07:f5:f9:23:36:fc:dd:7e:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Feb 26 08:48:41 2024 GMT
Not After : Feb 24 08:53:41 2025 GMT
Subject: CN=0DCBB112E8B2028C7677B39B6D64FF80F7C00816
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:03:b5:6d:b1:dc:2f:75:fe:d9:a8:38:96:16:
d5:c4:d6:c0:26:24:03:60:4f:39:dd:87:d1:41:b8:
20:c4:1e:ec:db:b4:0e:a4:de:72:de:19:92:02:69:
04:07:a6:be:15:0f:41:a5:28:b5:5e:e2:c3:56:c0:
55:46:d3:98:f4:70:1f:b3:8c:27:ed:b2:f7:47:18:
9a:7e:39:d4:70:d0:e5:69:46:6e:34:50:ae:05:86:
c8:f8:e2:27:45:c7:21:ac:8b:30:02:0b:f7:76:ce:
9d:80:22:07:00:22:a8:c1:4f:1f:52:d5:df:0b:af:
c6:68:8e:7c:15:59:84:c6:7e:42:20:1b:9c:6d:bc:
b2:4f:b1:6b:60:16:f8:c0:92:cc:e1:f1:40:28:a4:
35:f1:d0:7b:56:ff:e7:f6:16:40:a5:87:4b:6a:27:
62:22:5a:60:f9:cb:e7:1f:3f:49:14:b3:ed:e8:81:
e8:fd:c3:4d:d1:13:3a:f4:b1:15:d3:4c:f5:2d:1a:
e8:c8:a7:04:01:21:30:0b:2c:ff:3f:c4:89:26:77:
13:27:34:bc:ae:29:9e:e0:9f:2d:59:54:81:a2:53:
81:2c:d0:81:2e:5d:3b:8a:bc:8a:40:dc:68:79:20:
e6:77:3e:a6:bd:3b:19:77:06:87:86:a4:c4:7c:dd:
e6:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:CB:B1:12:E8:B2:02:8C:76:77:B3:9B:6D:64:FF:80:F7:C0:08:16
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3139332e33322e3137342e302f32342d3234203d3e20323031333431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.32.174.0/24
Signature Algorithm: sha256WithRSAEncryption
60:a9:57:cc:03:24:90:55:cb:16:02:b6:96:ce:90:64:97:52:
65:49:86:eb:5b:46:ed:f1:c8:59:96:3b:78:b2:f0:4c:c2:d7:
f0:15:79:37:05:3e:2f:c5:a1:e0:0c:a1:3a:e6:69:73:cd:17:
e2:ea:57:a1:de:e0:99:3c:c5:2f:e8:3d:a7:e3:af:45:b7:5a:
fb:8c:9d:7e:b9:67:6c:be:b3:c2:5b:ad:25:a6:8b:5a:15:92:
b1:7e:24:ce:3d:6e:8d:85:1d:4c:3b:b5:3e:ac:ed:0c:6f:1c:
d3:3a:ce:95:dc:12:02:7f:55:b5:a1:5b:da:02:62:b9:da:69:
3d:09:cc:eb:c0:b7:0d:1f:7e:9f:e5:d4:cd:a9:30:db:c4:7c:
85:ea:2d:6f:2b:a9:95:0b:8a:51:8b:87:17:21:5b:ea:2b:bb:
d1:a0:76:14:12:ac:62:dd:63:f3:64:30:e6:5a:87:7a:8a:f3:
82:b5:f2:c8:60:51:51:9d:5c:c7:2b:68:22:ef:ba:14:8d:4e:
a4:41:f4:94:12:0c:c7:00:08:47:9e:f3:53:06:f7:f1:b2:3b:
71:81:e0:1f:b9:a2:be:a6:a9:59:6c:66:72:2f:fd:16:6a:bf:
8a:cb:7b:b9:3b:5c:56:75:25:7d:8d:cd:7f:77:2f:f2:c7:2b:
c6:9e:f7:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 23:30:57 2024 by rpki-client on console-fra.rpki-client.org