Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3139342e36302e3230312e302f32342d3332203d3e203531313637.roa
File: 3139342e36302e3230312e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: MnqLl/aUwz4KZK17AekYC8qqc2EWx3MdzajShgNhOGE=
Subject key identifier: 49:0E:7C:BC:DF:E6:C1:03:63:9C:EB:C8:3E:8F:93:43:20:2D:B4:A2
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 58F3C6ABD8E60B72BA56A5D4EF84E92B8DAA67E5
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3139342e36302e3230312e302f32342d3332203d3e203531313637.roa
Signing time: Mon 26 Feb 2024 08:53:39 +0000
ROA not before: Mon 26 Feb 2024 08:48:39 +0000
ROA not after: Mon 24 Feb 2025 08:53:39 +0000
asID: 51167
IP address blocks: 194.60.201.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:f3:c6:ab:d8:e6:0b:72:ba:56:a5:d4:ef:84:e9:2b:8d:aa:67:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Feb 26 08:48:39 2024 GMT
Not After : Feb 24 08:53:39 2025 GMT
Subject: CN=490E7CBCDFE6C103639CEBC83E8F9343202DB4A2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:99:c3:1a:6d:18:e3:12:62:54:43:07:bc:2c:
26:d4:b4:ee:ab:41:ec:62:70:29:05:1e:37:ab:c4:
14:1c:8b:b9:0e:c0:41:a2:8e:2b:4d:6d:d4:0e:9f:
3b:8e:e5:9c:f8:00:79:9e:e6:13:01:90:f3:c7:e2:
6b:ad:33:ab:c5:94:90:2c:8b:33:75:51:a2:6c:2a:
28:ff:52:01:4b:53:49:19:08:8d:d1:91:a7:91:c3:
71:47:b7:40:75:43:bf:06:a2:5d:24:88:72:b0:f8:
ce:16:d9:7f:4b:54:6d:40:d0:3d:70:5d:92:17:36:
d0:a3:b9:32:82:d2:f6:75:fb:5d:56:54:b5:99:f8:
2a:b4:8e:f1:fb:f7:57:48:e9:5f:47:b3:60:9e:9a:
fd:b2:39:8d:04:2d:c7:24:58:5c:dc:4c:7e:da:3e:
de:2f:da:91:69:c0:21:ea:69:ec:37:8e:88:18:fe:
30:71:67:c6:00:59:9f:7d:24:f0:86:5a:aa:9e:fa:
a6:ae:26:12:76:02:f2:c0:da:c9:62:d7:24:47:2f:
32:11:fb:22:70:f5:a1:2b:f0:a8:cf:21:29:c4:94:
c8:fc:eb:71:47:80:f3:08:ae:ef:46:b9:cd:e7:72:
09:66:d4:0b:52:16:e6:de:8f:0e:ec:1f:08:82:2b:
5f:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:0E:7C:BC:DF:E6:C1:03:63:9C:EB:C8:3E:8F:93:43:20:2D:B4:A2
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3139342e36302e3230312e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.60.201.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:95:e6:26:cb:5c:c6:01:c0:d1:bd:f1:6b:a6:41:41:25:f8:
2a:b3:ca:66:be:21:c0:88:27:ab:71:c1:a5:3c:1b:f8:41:de:
e6:79:2f:fe:e0:9f:3e:f1:22:a6:f0:87:d8:d4:7a:83:f9:d3:
7a:23:91:5f:fa:83:f5:ec:6b:39:90:4c:3e:a2:ad:ca:42:f3:
65:c3:6e:22:e3:fc:23:50:3a:0b:0d:16:ed:e1:9c:a7:4c:88:
e5:88:92:a2:4b:3e:52:37:13:26:ce:5d:8d:ac:23:f1:63:3f:
40:d9:53:4a:e9:f5:bf:03:ac:e7:69:f3:e1:23:51:44:8d:10:
94:1b:6e:f4:ff:65:ce:41:38:46:77:e9:71:78:ee:f7:be:a4:
3b:2e:de:3c:93:24:41:0c:85:7b:39:52:d4:c7:da:d4:8c:cd:
90:38:5a:99:93:ed:13:e3:f0:45:fc:3b:56:68:a9:bc:51:3a:
fc:de:1c:c1:e7:b6:06:6c:c4:6b:49:88:ba:54:1d:3d:d5:4b:
49:67:ee:70:0a:41:25:fc:f1:29:a5:e9:a4:c4:6a:dc:40:fb:
e4:b2:6f:7c:90:da:60:5a:08:16:65:df:d2:11:b6:1a:73:19:
dc:a5:0c:5f:5f:02:6d:88:bb:19:2b:4a:38:7a:70:ce:ff:f1:
59:7b:95:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:05 2024 by rpki-client on console-fra.rpki-client.org