Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/33312e3136392e3132322e302f32342d3234203d3e20323039383534.roa
File: 33312e3136392e3132322e302f32342d3234203d3e20323039383534.roa (raw, json)
Hash identifier: 0Flxky4BV+n3tOJc7oj7mhWqY8/xpvsv5Yw8eNFr1HI=
Subject key identifier: 51:84:C9:C0:27:9C:EB:A0:FD:C3:B4:80:3D:8B:A7:67:8C:2A:DC:21
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 046389BF6DABB27F608E272F52FF684663CCE3E6
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/33312e3136392e3132322e302f32342d3234203d3e20323039383534.roa
Signing time: Tue 29 Aug 2023 13:32:07 +0000
ROA not before: Tue 29 Aug 2023 13:27:07 +0000
ROA not after: Tue 27 Aug 2024 13:32:07 +0000
asID: 209854
IP address blocks: 31.169.122.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 16:15:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:63:89:bf:6d:ab:b2:7f:60:8e:27:2f:52:ff:68:46:63:cc:e3:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Aug 29 13:27:07 2023 GMT
Not After : Aug 27 13:32:07 2024 GMT
Subject: CN=5184C9C0279CEBA0FDC3B4803D8BA7678C2ADC21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:05:a9:eb:cd:c4:28:a6:47:d1:8a:c9:7f:c8:
d3:aa:60:bf:41:8c:c9:b7:3f:f0:df:fb:d8:03:7e:
ef:46:48:94:92:bb:78:4b:78:4c:94:67:f0:30:7e:
f9:df:d9:23:e2:b3:b4:e8:a2:56:f5:1c:0d:69:6b:
b0:2b:87:3b:93:19:4b:64:c5:77:56:4f:71:10:36:
65:39:45:b2:47:fd:af:8b:4a:1d:d8:3a:1f:65:7a:
01:d6:b7:22:f6:39:9c:c3:af:6e:f4:5c:e1:d8:4d:
f2:a8:77:ad:3c:23:94:89:51:13:a4:39:93:93:9a:
50:1b:7c:56:fa:5a:4b:bf:0e:6f:f7:97:a4:cd:44:
e4:cf:89:ca:38:7d:60:94:fa:f1:19:d8:12:64:bc:
d3:83:ab:96:7a:ab:52:d2:80:99:92:14:de:23:f9:
39:07:f8:49:f7:b4:25:6c:08:bc:9f:c0:75:31:dc:
90:36:8f:b1:a9:fd:bd:8c:b6:39:ef:da:de:7f:5c:
7e:c1:33:a5:30:69:71:c3:76:6e:ab:a8:59:05:e7:
db:3e:71:bd:85:b0:c2:15:c6:e0:9e:47:d0:57:9d:
42:3a:0e:9d:88:9d:7d:c7:f0:ca:f7:df:94:62:18:
ac:05:8d:b6:31:a9:01:f9:89:85:5d:af:c3:cf:4f:
2c:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:84:C9:C0:27:9C:EB:A0:FD:C3:B4:80:3D:8B:A7:67:8C:2A:DC:21
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/33312e3136392e3132322e302f32342d3234203d3e20323039383534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.169.122.0/24
Signature Algorithm: sha256WithRSAEncryption
20:25:f1:89:ff:19:12:3c:dd:06:04:67:b9:c9:2a:f3:d6:8e:
8e:59:ec:c7:49:21:79:ea:94:76:e7:ca:41:90:3d:a4:a9:d5:
53:46:91:16:aa:d5:6a:7e:23:a2:b3:46:d3:6f:a2:be:6a:a0:
97:35:87:a4:9a:3c:8e:ce:fe:cb:6f:6f:18:74:53:62:cf:9e:
20:d5:a7:9d:4a:91:21:83:1f:93:8a:c1:4c:dc:66:be:b2:c4:
10:8e:e9:fd:bc:7f:f3:a8:14:d8:cd:ed:31:8f:00:40:f8:74:
1c:cb:68:8b:52:ff:40:26:c1:2a:11:a7:1a:99:3d:4b:82:ef:
64:24:e6:92:b2:b0:21:ca:53:45:40:68:7f:fb:a8:55:de:7a:
ec:ed:e3:88:f3:0e:83:88:a8:bc:8e:0f:55:5f:d1:9b:98:24:
a0:c6:c3:85:9b:c6:4c:64:93:1e:8d:6e:3b:0e:0c:ba:77:72:
37:01:9d:d1:62:41:20:89:79:c2:d7:dd:97:01:b4:5d:cd:38:
3a:42:21:6b:13:43:15:0c:30:cd:03:b2:3c:c4:8a:13:ee:d1:
fb:ce:82:04:38:ad:83:9f:bd:65:9b:10:27:a0:3e:4c:b8:fe:
80:a4:f0:1d:89:b0:5e:e1:7e:43:59:2f:d5:e2:76:1a:6c:4c:
41:42:61:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 01:08:36 2024 by rpki-client on console-fra.rpki-client.org