Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3139342e36302e38372e302f32342d3234203d3e20333935303932.roa
File: 3139342e36302e38372e302f32342d3234203d3e20333935303932.roa (raw, json)
Hash identifier: f8E4Uwe6Rx67mObSIHMMqUl64tYkixje9LM9Ab7yM/s=
Subject key identifier: F4:5D:A0:A6:48:05:FF:E0:02:04:83:51:5B:A3:D7:5B:5A:3F:FB:01
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 1636FFEE8BEAEE3D08F2DCF3ECED8E3F963084FA
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3139342e36302e38372e302f32342d3234203d3e20333935303932.roa
Signing time: Mon 26 Feb 2024 08:53:41 +0000
ROA not before: Mon 26 Feb 2024 08:48:41 +0000
ROA not after: Mon 24 Feb 2025 08:53:41 +0000
asID: 395092
IP address blocks: 194.60.87.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:36:ff:ee:8b:ea:ee:3d:08:f2:dc:f3:ec:ed:8e:3f:96:30:84:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Feb 26 08:48:41 2024 GMT
Not After : Feb 24 08:53:41 2025 GMT
Subject: CN=F45DA0A64805FFE0020483515BA3D75B5A3FFB01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:a9:4c:9a:2f:58:1b:54:95:27:8b:c0:20:4c:
91:e1:28:6e:46:65:b9:55:f2:8a:7d:37:65:0b:d3:
d9:d2:5b:21:81:66:df:89:df:b5:f9:95:0b:bc:45:
3b:e5:08:b5:f1:82:a2:68:a6:d1:ef:25:a9:b0:ef:
86:df:b0:ef:c5:2a:0d:3e:c1:e5:34:de:45:d7:0e:
c1:dc:97:64:85:ed:bc:01:20:9f:41:fc:9c:ef:f1:
82:69:43:c9:84:c7:19:c8:cf:cd:08:e3:8c:f8:3a:
42:0a:20:32:b2:ea:fc:93:3b:03:c9:23:46:e7:82:
f4:73:af:3c:dd:90:0e:54:cf:1a:b9:7f:23:c3:3b:
70:82:ac:41:c1:a5:85:ce:c5:91:ec:14:9f:8d:62:
35:25:67:36:eb:22:6f:9b:57:9b:dd:82:f8:fa:83:
0e:3e:7b:ae:37:22:a8:91:f2:df:13:47:0d:1f:c3:
0e:1d:3f:7b:5f:5a:73:bb:14:73:41:b7:04:84:b1:
40:73:09:4e:ba:72:c5:ae:11:68:38:88:b4:f6:a9:
4d:4f:2a:8c:1c:21:18:4f:a0:5f:29:4a:d5:63:83:
69:e3:c2:f7:4f:75:1f:ba:5d:60:5c:da:c3:29:9f:
f1:94:9f:90:cf:8d:a5:66:6e:23:1c:ab:b9:8c:bc:
e3:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:5D:A0:A6:48:05:FF:E0:02:04:83:51:5B:A3:D7:5B:5A:3F:FB:01
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3139342e36302e38372e302f32342d3234203d3e20333935303932.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.60.87.0/24
Signature Algorithm: sha256WithRSAEncryption
10:24:15:be:67:e1:4f:05:60:02:ff:c4:a7:bd:5b:2c:66:f0:
ad:b8:24:93:24:51:85:3a:44:89:6c:9e:55:fa:1a:31:de:42:
79:44:60:77:66:03:85:4d:f3:65:97:96:8a:51:9b:5b:3a:3d:
11:d4:59:5a:e7:61:f8:8e:7b:57:01:89:77:45:e7:45:59:20:
34:7f:98:1b:cc:29:39:c5:b0:4f:d4:a1:29:b1:93:00:8c:82:
c2:75:52:51:e9:ba:5a:ed:ea:4a:0b:cc:67:36:c4:02:00:53:
b7:4a:5b:ae:89:61:65:be:e2:f8:4b:df:50:3e:f0:a5:6e:d4:
91:0e:dd:44:f4:d4:fb:ce:f1:41:a7:11:55:8a:e7:3b:41:08:
56:e5:23:34:94:29:19:b8:16:5d:68:da:26:bc:1f:90:11:bd:
03:5c:88:a1:11:5a:68:a8:bf:89:18:17:0f:0c:81:5b:d4:f8:
48:2f:c5:38:e4:6d:90:1c:ba:8b:44:74:78:98:b5:b3:5b:fe:
fd:cf:da:7b:2e:63:32:c8:ff:e0:39:24:f8:96:0a:07:70:ea:
27:f4:db:54:55:b5:6b:24:8f:56:e3:f9:ce:b2:53:3d:6a:c3:
18:14:87:7b:62:f6:d7:0c:5d:c8:97:b2:44:21:ab:42:b8:2e:
f7:8a:9a:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:05 2024 by rpki-client on console-fra.rpki-client.org