Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/33312e3136392e3132322e302f32342d3234203d3e20323039383534.roa
File: 33312e3136392e3132322e302f32342d3234203d3e20323039383534.roa (raw, json)
Hash identifier: EBymb9jxMKt3aMVi9NvUHaioUJqDDrFYttePA0KsTYk=
Subject key identifier: 96:57:AB:5C:57:A8:05:5F:84:2D:D8:EC:A3:89:69:60:7E:F0:5E:23
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 2C47A749CF6B57FC5873B767B1139BA0AE0D0698
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/33312e3136392e3132322e302f32342d3234203d3e20323039383534.roa
Signing time: Tue 30 Jul 2024 14:04:28 +0000
ROA not before: Tue 30 Jul 2024 13:59:28 +0000
ROA not after: Tue 29 Jul 2025 14:04:28 +0000
asID: 209854
IP address blocks: 31.169.122.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:47:a7:49:cf:6b:57:fc:58:73:b7:67:b1:13:9b:a0:ae:0d:06:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Jul 30 13:59:28 2024 GMT
Not After : Jul 29 14:04:28 2025 GMT
Subject: CN=9657AB5C57A8055F842DD8ECA38969607EF05E23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:3d:44:a7:05:11:fe:7a:4c:75:d4:c3:2a:53:
e5:55:d2:d2:f1:1c:63:f3:0d:ef:da:7c:60:7d:ae:
4c:85:e7:82:19:c3:87:f0:bc:27:ea:3c:7e:be:d8:
02:16:6c:37:ed:b8:48:5d:96:a1:94:be:d7:1e:cf:
b9:50:c8:38:cf:74:20:23:3a:36:7e:36:a0:3b:92:
93:0c:74:e4:fc:49:19:55:12:f2:bc:84:c8:62:91:
fe:03:3b:30:1f:9b:1f:09:e5:eb:b0:d7:46:b1:51:
aa:96:96:42:d5:10:8a:8e:5c:bf:ed:2b:cb:c2:29:
c6:9a:cd:28:33:ad:8f:cc:61:c2:2f:c3:43:72:75:
21:dd:66:d8:b1:1d:8c:3e:7c:6c:7e:98:2d:13:72:
55:e0:c4:9e:a0:09:e6:8b:b6:3d:50:d6:01:e6:ec:
e9:c9:ae:f9:70:23:ae:63:fb:c7:3f:05:f8:36:44:
21:dd:a3:11:03:42:a9:0b:28:8e:1a:d4:27:68:e7:
9b:64:62:30:3c:35:20:59:01:f9:6b:7d:84:24:0d:
a3:5a:90:98:21:af:13:c1:16:a6:07:94:f9:25:ca:
60:2f:2e:aa:87:b3:91:d9:45:a5:7f:c9:d6:3f:f2:
c0:b6:47:47:9b:3a:52:33:b5:0f:96:66:9e:82:92:
cb:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:57:AB:5C:57:A8:05:5F:84:2D:D8:EC:A3:89:69:60:7E:F0:5E:23
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/33312e3136392e3132322e302f32342d3234203d3e20323039383534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.169.122.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:15:6a:23:3b:97:98:59:90:66:3f:eb:f2:9a:a9:07:c2:dd:
07:90:11:01:f3:35:bf:a1:35:f6:f0:c7:7c:04:ad:a9:5e:bf:
50:da:9c:df:4f:cd:20:9c:31:a4:05:d2:c0:45:04:7d:0e:cd:
29:68:9d:d8:7e:c1:ba:8d:71:1e:c8:20:51:82:81:4a:84:f9:
57:d8:b9:c9:cb:91:74:b7:c9:b8:48:65:63:f9:d8:50:36:32:
18:59:ad:c5:bd:c0:df:ab:b5:eb:dc:05:cd:97:1a:56:8e:43:
c2:ec:3c:47:9b:78:74:cf:3e:a1:1a:25:a7:56:1a:50:4c:33:
8c:52:54:a8:4e:db:d5:0c:c8:76:3f:3c:88:2f:22:07:ab:90:
11:55:b2:42:b9:ac:2d:7b:03:d9:33:0f:5d:5a:b6:6b:6c:44:
f7:bb:42:d3:d0:9d:9b:be:32:64:6f:19:b7:8f:34:9e:60:ca:
85:5c:44:a7:f8:73:dc:e1:ff:99:16:8d:15:19:9e:a4:86:28:
8f:00:ed:c8:6f:ab:cd:ca:e0:9c:8a:6d:d1:70:f0:3f:ad:1a:
26:25:22:97:f6:0f:07:1e:51:e2:bd:1a:e2:fa:bd:ef:08:fe:
00:0b:90:f9:34:c0:6c:8c:95:10:74:f7:4d:69:c6:3a:63:6c:
92:11:16:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:05 2024 by rpki-client on console-fra.rpki-client.org