Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/33312e3136392e3132302e302f32342d3234203d3e20323039383534.roa
File: 33312e3136392e3132302e302f32342d3234203d3e20323039383534.roa (raw, json)
Hash identifier: SuTEiiSaF2t2TFzWAaOLNG543SPz0qJGBTMw2BjXCPc=
Subject key identifier: F1:F1:4A:C1:78:8D:EF:98:19:8A:3B:8C:49:CF:94:89:15:4C:34:0F
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 0A7B7F74D2B276E427AC6CB1375383B65CA4C9C3
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/33312e3136392e3132302e302f32342d3234203d3e20323039383534.roa
Signing time: Tue 29 Aug 2023 13:31:54 +0000
ROA not before: Tue 29 Aug 2023 13:26:54 +0000
ROA not after: Tue 27 Aug 2024 13:31:54 +0000
asID: 209854
IP address blocks: 31.169.120.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:7b:7f:74:d2:b2:76:e4:27:ac:6c:b1:37:53:83:b6:5c:a4:c9:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Aug 29 13:26:54 2023 GMT
Not After : Aug 27 13:31:54 2024 GMT
Subject: CN=F1F14AC1788DEF98198A3B8C49CF9489154C340F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:14:72:f4:68:a2:e9:fe:dd:1c:05:7a:50:2d:
30:52:9f:b4:ae:4d:78:43:fb:de:cf:33:9a:76:1c:
17:a0:71:bd:c7:80:86:f6:36:1b:38:42:11:47:74:
28:d6:29:bc:e7:15:f4:03:e7:c0:8e:5d:31:ee:ed:
ef:59:a6:1a:db:5e:12:8c:88:7b:c3:43:22:74:b1:
2c:dc:4e:4b:8b:50:ff:f8:a4:6b:4e:97:47:c8:4b:
60:82:53:7d:82:f6:4b:6e:b7:0f:f9:98:2c:bb:ff:
c2:86:87:75:8c:60:38:74:32:58:0c:21:ce:a2:73:
61:69:f5:be:89:0b:22:0f:1a:4e:7b:54:f8:24:2d:
e0:97:e3:1d:59:ab:55:c7:75:4c:d5:af:25:e8:32:
df:1c:06:ec:c5:db:8c:dc:c1:16:02:35:42:82:91:
69:20:57:ca:b0:f7:2c:a1:3b:5e:35:ce:05:ef:28:
32:eb:3a:ce:85:61:59:3c:82:80:91:f6:ac:7c:f8:
9e:45:57:ed:20:5e:95:47:69:80:ee:d7:55:20:51:
30:5a:d5:4c:c3:4b:fd:11:2d:5a:ac:5e:f3:cc:4f:
c2:a5:fa:2d:2e:51:1e:fa:00:a7:b0:f4:67:7b:57:
76:b0:83:44:2e:e8:30:46:0d:c0:8c:fa:5f:ad:5e:
dd:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:F1:4A:C1:78:8D:EF:98:19:8A:3B:8C:49:CF:94:89:15:4C:34:0F
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/33312e3136392e3132302e302f32342d3234203d3e20323039383534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.169.120.0/24
Signature Algorithm: sha256WithRSAEncryption
42:38:31:2c:a5:78:b9:ac:29:a4:32:b5:4e:51:a8:e9:c1:87:
f2:92:fa:56:38:64:f0:3a:58:fc:49:3a:76:55:b2:56:4a:84:
87:b1:12:89:28:30:46:e3:eb:0d:8a:10:84:c2:84:20:61:10:
22:02:67:76:34:8a:5a:0a:5d:01:dc:e7:01:92:0e:aa:fa:a2:
08:9d:57:bd:54:25:43:73:86:a7:be:bd:dd:32:99:de:57:64:
08:44:58:bc:12:1b:4f:6b:dc:cb:86:bc:7c:ac:5b:12:e2:ab:
fc:23:3f:c1:83:89:e4:68:49:78:5a:d9:f5:af:fe:47:b8:b8:
9d:f8:02:31:f1:88:7f:62:bb:65:f8:21:92:f0:1a:27:6e:05:
0a:52:d3:e1:47:64:9f:94:66:72:fe:c0:2a:f1:e8:81:d8:6c:
b0:b5:3f:f2:53:22:a4:b3:cd:30:44:89:04:d0:9d:be:d8:e1:
80:e7:8b:d1:00:71:41:d4:79:70:e2:d6:d5:b4:a1:31:a0:d3:
8d:0c:43:67:70:85:c5:67:44:50:03:33:5c:2f:fa:e3:23:62:
2a:92:5b:2b:88:6b:91:93:23:30:9d:45:8f:4d:26:17:86:8e:
4f:3d:06:d1:96:96:1e:f6:eb:c6:20:e3:39:f0:4e:20:1c:6e:
fb:77:0e:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 20:21:27 2024 by rpki-client on console-fra.rpki-client.org