Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/39312e3234322e3234382e302f32342d3234203d3e20313336373837.roa
File: 39312e3234322e3234382e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: yqPKAsGtKeMUHlay6wz9iqyFmL8O/+jyP2AOe1LmB1c=
Subject key identifier: 18:FF:A6:0C:47:8F:37:41:50:7A:8C:35:0C:F6:A1:51:45:78:CD:CE
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 177F2244463EFE322A37551878807ACA27E1DF5A
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/39312e3234322e3234382e302f32342d3234203d3e20313336373837.roa
Signing time: Wed 27 Dec 2023 14:45:52 +0000
ROA not before: Wed 27 Dec 2023 14:40:52 +0000
ROA not after: Wed 25 Dec 2024 14:45:52 +0000
asID: 136787
IP address blocks: 91.242.248.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:7f:22:44:46:3e:fe:32:2a:37:55:18:78:80:7a:ca:27:e1:df:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Dec 27 14:40:52 2023 GMT
Not After : Dec 25 14:45:52 2024 GMT
Subject: CN=18FFA60C478F3741507A8C350CF6A1514578CDCE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:44:47:32:63:c3:e9:e8:c1:49:3e:08:52:61:
4a:ea:15:b3:59:d6:6d:9a:3f:c8:8a:ce:04:8c:42:
ef:62:80:1b:a4:08:e4:45:22:9d:13:80:76:9e:08:
45:87:4c:0d:6a:50:77:bc:19:88:a2:21:eb:03:a6:
2c:88:39:bf:d9:37:00:07:d7:1d:87:c3:f5:42:39:
ec:ef:7e:3e:5c:2e:3b:56:09:95:dc:93:01:7e:ce:
0d:89:a4:d7:cb:c5:28:a3:9e:9a:e5:0f:b3:0d:54:
10:e5:b6:d3:3b:75:63:c9:ab:1e:68:f2:1d:cc:17:
6b:1b:a6:13:e0:2c:74:cd:bc:b3:61:f0:80:21:49:
8c:92:2c:e9:22:e5:a5:8f:87:09:ef:ca:e2:26:94:
dd:88:98:74:45:83:26:4b:ab:9b:b7:d8:50:c1:a0:
82:a1:86:ff:0d:94:ab:6c:2a:aa:c4:a3:68:19:98:
f1:74:ea:42:b5:e9:e1:c6:ea:dc:0c:70:b7:c8:70:
a2:82:5a:04:e4:b2:1f:b2:51:bb:2a:0f:a0:f7:40:
aa:87:80:c6:dd:05:6a:67:f4:ea:9f:4c:05:b5:8d:
1d:4b:7a:e5:16:d1:3c:e2:65:aa:92:42:ba:61:02:
c9:9b:df:be:7c:e5:58:2c:41:ac:7b:4a:09:46:97:
cc:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:FF:A6:0C:47:8F:37:41:50:7A:8C:35:0C:F6:A1:51:45:78:CD:CE
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/39312e3234322e3234382e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.242.248.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:bf:8c:d9:2b:bf:73:49:4d:d3:ab:04:89:34:c1:11:a0:fd:
19:6c:1c:d4:ce:92:06:9f:b3:49:80:01:8d:68:d6:d5:93:f4:
a1:b6:8e:1d:95:de:ac:08:d6:5e:6e:79:82:bf:dd:25:73:e3:
b9:42:57:f2:bc:9a:eb:66:20:53:ff:00:77:fd:34:db:ca:b6:
9c:87:d7:e2:1e:2a:7d:24:10:b2:d3:1f:c5:05:8b:d2:97:7d:
0f:22:2f:13:7c:cf:9d:6e:5a:9b:a1:47:45:48:6a:2d:9f:2b:
5f:21:83:cc:99:50:34:9c:b6:8d:a0:6e:a5:84:49:00:4d:27:
0e:a6:f8:d9:3b:d9:00:d6:4c:89:ae:84:40:50:e9:e4:34:71:
15:ef:cd:e1:aa:e5:60:3f:67:d0:f7:f0:59:f6:72:17:d6:64:
91:d6:03:9d:bf:29:19:44:a3:5e:39:d3:b5:d1:c3:05:4d:9a:
1e:e5:33:24:6d:64:17:43:ed:f1:d6:dd:6b:f1:47:f3:aa:46:
58:26:44:ac:28:64:3f:c5:82:30:52:6c:65:32:dd:80:0f:f1:
b0:99:16:35:a4:f6:65:b8:74:fe:da:8f:5a:28:a2:b5:07:fb:
42:1c:c6:c0:d2:de:21:98:f7:c2:49:75:3d:0b:9f:ec:3c:c2:
58:4b:75:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 11:54:25 2024 by rpki-client on console-fra.rpki-client.org