Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3139342e3131332e36372e302f32342d3332203d3e203531313637.roa
File: 3139342e3131332e36372e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: KIq7zEcRYrHpBMYXZaWkMjZ4WiiaSj5M+1Kit+g7E/M=
Subject key identifier: B4:60:78:75:74:47:5B:51:9D:22:6F:11:00:6F:3A:47:B0:1A:22:17
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 24FF5D68F3220B8C7723AFBE40C09CAC1E350D6F
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3139342e3131332e36372e302f32342d3332203d3e203531313637.roa
Signing time: Fri 21 Jun 2024 08:03:59 +0000
ROA not before: Fri 21 Jun 2024 07:58:59 +0000
ROA not after: Fri 20 Jun 2025 08:03:59 +0000
asID: 51167
IP address blocks: 194.113.67.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:ff:5d:68:f3:22:0b:8c:77:23:af:be:40:c0:9c:ac:1e:35:0d:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Jun 21 07:58:59 2024 GMT
Not After : Jun 20 08:03:59 2025 GMT
Subject: CN=B460787574475B519D226F11006F3A47B01A2217
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:2a:1f:41:a4:80:03:71:50:c8:ae:2a:9c:a1:
67:42:72:91:ac:88:6a:00:3f:0c:53:eb:d4:c4:6e:
c2:fd:62:63:2f:d3:69:03:39:10:6c:7c:4c:db:76:
45:a8:5c:26:40:2c:a0:8b:1e:9f:45:27:ed:fd:e4:
50:18:52:ee:e7:01:56:46:d2:b3:89:89:bf:f3:33:
90:81:c1:c1:dc:2c:a4:a5:13:52:27:64:dd:5c:85:
d3:e1:d1:d2:3c:15:da:f6:9e:0b:0b:7e:45:85:7e:
e1:1a:bc:8c:b6:05:57:bc:1c:58:43:41:34:a6:a3:
95:25:da:b5:1c:ae:35:47:db:c8:0a:41:23:df:3d:
f3:19:c9:c5:02:e7:dd:b0:7c:49:da:14:37:70:ac:
11:0a:29:09:bf:71:f0:55:be:de:2a:03:cd:da:5e:
97:67:7a:d8:4e:38:0a:25:f7:8b:17:50:3a:f4:9c:
b1:05:48:97:32:09:4c:40:0d:1b:94:2d:92:c0:6f:
6e:7b:43:f6:af:b2:56:78:1c:9a:96:4a:4b:80:33:
83:7c:c3:b7:81:ed:64:3e:1b:cd:b9:8c:08:d9:80:
f0:c8:25:ba:0f:eb:4c:62:16:5a:8b:40:d4:79:01:
d3:23:8d:d6:be:8d:6f:e4:33:ad:5e:c4:84:02:36:
e6:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:60:78:75:74:47:5B:51:9D:22:6F:11:00:6F:3A:47:B0:1A:22:17
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3139342e3131332e36372e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.113.67.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:72:86:18:18:ac:ef:4f:ad:57:b8:48:b4:2e:fd:28:f1:10:
a7:ad:97:61:b1:0d:5d:48:65:19:c6:fc:f7:21:7e:3b:cf:93:
f0:4b:de:00:e1:77:8d:d7:e7:c5:84:28:6f:a4:12:63:68:e5:
96:9e:d1:4b:18:5d:fc:5f:0d:53:16:8b:22:18:15:6c:b2:de:
04:95:65:7f:31:9f:b5:f5:c9:8e:94:b9:a2:92:66:68:e5:b8:
b4:aa:02:8b:bc:e0:2a:18:f3:9c:64:ac:bb:35:e8:f2:34:31:
d8:48:83:6c:ad:42:a3:7a:26:3e:f8:cf:fe:8c:31:91:4e:b1:
91:6a:f6:e4:63:ba:88:13:5f:3d:96:5c:e8:bd:91:72:c8:85:
7a:73:c5:2f:61:5a:45:b3:80:bb:22:5c:ba:0e:09:b3:3d:f1:
05:9c:94:8e:79:1a:8e:22:57:de:8a:df:23:f5:30:db:95:e5:
9a:f1:28:92:45:92:68:ce:b9:cd:96:7b:78:5a:4a:74:03:e5:
93:23:3a:17:08:6c:01:d3:4d:f4:dd:0c:6e:bb:a9:29:b2:3f:
21:c3:f1:e1:32:a2:95:37:0b:9c:41:25:bb:45:64:e0:9e:2d:
56:37:b9:4b:0c:fe:80:46:82:ce:99:be:95:fa:43:c2:14:75:
b7:69:b4:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:15:49 2024 by rpki-client on console-ams.rpki-client.org