Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/352e3133332e3131372e302f32342d3234203d3e20313336373837.roa
File: 352e3133332e3131372e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: u6kkUs3qW66rssKezrVuWycX7QreRmMjQGDUOocZ68s=
Subject key identifier: F6:B2:1E:46:D4:B2:7A:DF:80:81:97:1F:63:C3:54:55:FA:49:AC:DC
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 57397CBFEDDAC0F5E2A3AD7D17D5DC5EA2647365
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/352e3133332e3131372e302f32342d3234203d3e20313336373837.roa
Signing time: Tue 13 Feb 2024 12:54:44 +0000
ROA not before: Tue 13 Feb 2024 12:49:44 +0000
ROA not after: Tue 11 Feb 2025 12:54:44 +0000
asID: 136787
IP address blocks: 5.133.117.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:39:7c:bf:ed:da:c0:f5:e2:a3:ad:7d:17:d5:dc:5e:a2:64:73:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Feb 13 12:49:44 2024 GMT
Not After : Feb 11 12:54:44 2025 GMT
Subject: CN=F6B21E46D4B27ADF8081971F63C35455FA49ACDC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:0f:0f:6a:ae:64:2c:e3:e7:26:2d:f2:50:de:
90:b5:e8:8c:1d:5d:bb:a8:48:36:31:ca:f2:06:c4:
8d:a2:39:2d:ff:d7:6a:50:ab:4a:5e:06:36:d6:8d:
cd:a5:d4:c6:b4:e7:81:c5:49:26:b1:f9:99:8a:f6:
45:02:f9:d2:8d:e5:92:5f:5d:39:65:09:fb:dc:58:
8a:cc:2e:f7:a8:71:a9:62:b4:e1:81:25:23:71:52:
29:af:4e:d3:de:3e:2f:21:97:47:29:fd:57:b4:47:
77:3c:0f:7f:90:cb:98:6b:51:b3:31:5a:80:f3:d4:
88:d3:21:78:b5:2b:6d:51:29:67:13:06:14:63:b4:
87:aa:57:dd:21:06:9c:c1:73:da:35:0d:ea:51:d7:
06:a8:68:c6:02:65:93:6b:31:75:53:df:4e:83:03:
7d:89:23:c8:c1:0e:e7:5b:d9:f0:ca:86:c7:e9:0d:
05:cc:f0:a0:76:ed:7e:e1:e8:0a:e7:42:93:da:ba:
09:fe:bc:d5:e1:fa:23:a1:5a:04:71:b0:cf:8d:62:
d9:4d:9a:5a:df:e8:0c:ad:3e:65:86:bb:12:0d:bf:
bf:f6:7c:aa:7f:0a:70:4f:6e:0a:f0:b2:08:79:af:
4e:25:f5:2c:61:71:d8:fb:8b:03:96:36:6e:97:93:
e6:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:B2:1E:46:D4:B2:7A:DF:80:81:97:1F:63:C3:54:55:FA:49:AC:DC
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/352e3133332e3131372e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.133.117.0/24
Signature Algorithm: sha256WithRSAEncryption
25:67:8a:f9:ff:5a:2f:d6:fd:38:2c:2d:30:ca:d2:78:3b:2b:
d9:97:07:89:bd:49:30:cb:e0:50:54:e1:a4:60:bf:94:34:04:
3c:e8:a4:66:1f:e7:ab:c5:ae:17:04:95:de:eb:1c:4c:ce:e4:
e2:2d:31:db:25:9e:47:e7:4e:c9:8d:98:53:b1:ea:57:61:ce:
8e:c5:d1:d3:e8:77:48:e9:20:e8:05:eb:17:ed:d4:5a:fa:55:
72:5b:24:02:7a:e9:b4:0e:31:65:80:09:b2:f8:6e:db:72:d2:
c7:c4:4a:55:a1:86:cf:10:49:5c:48:89:20:bf:59:c5:d9:77:
71:06:25:4b:48:b2:a3:67:e0:64:96:3b:a1:eb:ad:32:28:5b:
10:a3:a1:05:58:30:0c:73:a8:cb:33:85:ab:95:ad:72:1a:a3:
79:70:9d:fb:32:f6:98:cd:82:70:76:c8:07:9f:4b:4f:47:a6:
2d:0c:4f:78:ab:bd:59:e4:bc:8c:0f:c2:f8:be:df:c2:ae:76:
d5:92:00:71:3d:6a:f8:2b:8a:5a:e0:22:d8:e1:3a:58:9e:68:
76:52:df:d8:11:fe:fe:59:00:fc:48:4a:15:41:32:7a:7e:a0:
71:41:47:e7:67:98:b0:b3:f5:a6:42:2d:b6:e2:76:d6:a7:a3:
42:18:e6:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:15:49 2024 by rpki-client on console-ams.rpki-client.org