Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3139332e33362e3233372e302f32342d3234203d3e20313437303439.roa
File: 3139332e33362e3233372e302f32342d3234203d3e20313437303439.roa (raw, json)
Hash identifier: lQwks/zA+cEixMfDpXPJeQQb2zilMb/JV0mLlABv1Wo=
Subject key identifier: FD:53:19:1D:B3:F8:53:E4:71:B3:23:48:51:95:C0:03:08:44:79:49
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 58659EA8D1F21FCFB1BDFBEAE7270B4E61F69DD2
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3139332e33362e3233372e302f32342d3234203d3e20313437303439.roa
Signing time: Mon 08 Jul 2024 22:04:10 +0000
ROA not before: Mon 08 Jul 2024 21:59:10 +0000
ROA not after: Mon 07 Jul 2025 22:04:10 +0000
asID: 147049
IP address blocks: 193.36.237.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 14:42:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:65:9e:a8:d1:f2:1f:cf:b1:bd:fb:ea:e7:27:0b:4e:61:f6:9d:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Jul 8 21:59:10 2024 GMT
Not After : Jul 7 22:04:10 2025 GMT
Subject: CN=FD53191DB3F853E471B323485195C00308447949
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:71:09:8a:45:25:f0:b4:58:7b:20:ef:44:0c:
4b:e1:19:7a:fc:c8:cf:30:e0:33:d6:d7:ed:29:6f:
88:90:cb:10:2e:a8:b8:93:4c:33:0f:de:d8:2d:db:
6f:62:64:c1:df:8f:4b:fd:a1:91:04:18:5e:08:4e:
68:df:2e:6a:7a:2c:87:4b:82:cb:dc:f9:86:b4:28:
c3:b7:18:5a:ac:8c:0d:22:7d:e5:4d:e8:f9:67:23:
3d:69:3d:3b:3d:40:fe:db:b5:94:6d:b3:a4:10:8a:
61:3b:a3:8d:05:b8:49:46:4f:e9:ee:2a:d3:a4:91:
46:a2:90:b4:64:44:1b:c9:c9:ca:40:b8:74:e0:db:
f3:9e:d6:30:cd:51:7b:1e:ff:9d:3e:c4:44:9c:5b:
ce:76:cb:5d:b4:33:f9:27:a8:06:35:69:06:76:65:
30:6a:c3:89:b8:61:40:99:dc:a1:fc:95:28:6c:98:
f6:0d:f3:8c:52:f5:de:09:4d:91:1b:2e:ab:ca:f3:
fb:d3:c7:32:66:0f:24:2f:01:da:b1:1c:93:e5:b3:
43:1e:4e:ab:95:51:13:38:c9:ac:ba:e7:0d:97:dc:
f7:c9:c6:10:f2:67:27:36:c0:45:63:da:63:16:ad:
84:ff:f8:5a:54:2a:5d:82:80:1d:26:31:7d:7a:6c:
07:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:53:19:1D:B3:F8:53:E4:71:B3:23:48:51:95:C0:03:08:44:79:49
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3139332e33362e3233372e302f32342d3234203d3e20313437303439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.36.237.0/24
Signature Algorithm: sha256WithRSAEncryption
26:d6:c4:ca:07:27:36:fb:13:e7:61:28:8b:45:ad:42:e9:07:
9d:a4:8c:75:7a:a8:62:7b:21:dd:6d:3c:e2:ce:b7:d8:34:0d:
ad:3d:6a:05:54:cc:f1:5a:b4:89:35:43:15:dc:46:2c:fd:79:
66:41:7a:05:24:03:f5:0b:52:72:17:7a:ff:33:c5:36:01:e0:
7d:30:c4:be:66:00:6c:c9:4f:46:61:e9:2b:8b:91:d7:ba:ac:
7c:bc:96:ca:f1:3e:a0:c2:62:1b:c7:b4:89:40:bb:9c:8e:a7:
fa:47:de:12:cc:4c:14:30:80:bb:19:3b:a5:04:31:a5:e3:72:
78:68:2c:b1:56:31:3b:c7:18:ce:00:55:bc:01:90:5b:9b:45:
18:b3:2c:77:37:35:b8:72:ae:aa:ef:47:23:b0:27:80:1d:cf:
1d:f9:b7:d3:16:1b:e0:62:99:55:c9:22:aa:fc:a7:10:45:18:
1c:c9:c1:9e:c7:74:7f:fb:dd:91:75:6e:8b:53:be:41:13:28:
5b:28:8c:40:55:76:c6:86:13:ae:b1:6b:af:3e:e3:2f:7c:bf:
cb:24:a2:aa:05:1b:58:b3:c9:80:61:d4:b1:e8:19:ca:3b:b7:
f8:8e:06:e9:41:66:42:93:92:4e:75:02:29:6a:da:98:83:e2:
3f:34:3b:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 16:44:11 2024 by rpki-client on console-fra.rpki-client.org