Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3134312e39382e3135322e302f32322d3332203d3e203531313637.roa
File: 3134312e39382e3135322e302f32322d3332203d3e203531313637.roa (raw, json)
Hash identifier: SvUhGnXwzXIiqh4+FROU1oRX3OzoWrT239RcZJQuxG8=
Subject key identifier: 26:F8:1F:A1:32:66:2B:98:F2:69:59:16:F6:F8:9F:7D:A3:D4:F7:C0
Certificate issuer: /CN=5d70845822a61408ec2a5fd580c132da777f09d1
Certificate serial: 5745E1A54250B009AFC00004CDB1F4FD081F1CCE
Authority key identifier: 5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3134312e39382e3135322e302f32322d3332203d3e203531313637.roa
Signing time: Thu 30 May 2024 20:39:00 +0000
ROA not before: Thu 30 May 2024 20:34:00 +0000
ROA not after: Thu 29 May 2025 20:39:00 +0000
asID: 51167
IP address blocks: 141.98.152.0/22 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.mft
rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:45:e1:a5:42:50:b0:09:af:c0:00:04:cd:b1:f4:fd:08:1f:1c:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d70845822a61408ec2a5fd580c132da777f09d1
Validity
Not Before: May 30 20:34:00 2024 GMT
Not After : May 29 20:39:00 2025 GMT
Subject: CN=26F81FA132662B98F2695916F6F89F7DA3D4F7C0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:aa:47:8d:c9:5b:8e:4e:48:83:eb:b6:31:63:
c4:bf:de:26:16:2a:7a:1d:19:ff:63:43:34:8e:4e:
e1:2d:a3:61:3d:01:3a:aa:f8:65:c4:cc:06:f9:e5:
5d:c6:79:5a:c3:7d:88:c9:2f:01:ab:a8:50:6e:79:
ef:84:0c:7e:cc:b1:8b:ac:c2:32:cd:e4:dc:f6:aa:
52:91:bc:e1:a7:62:f0:56:3d:cf:79:a3:92:88:18:
ef:0d:0d:b2:b1:b6:ef:d9:c3:42:20:71:b6:03:da:
7f:ec:db:33:1d:5d:7e:4a:24:76:12:24:19:02:1f:
95:65:35:f6:44:e7:39:c6:52:37:1e:51:cf:81:11:
cf:f9:39:20:55:56:6d:ac:ba:e0:cf:15:e1:26:9f:
5d:c7:64:00:ce:2b:8c:a9:d8:cb:de:e6:93:4b:0a:
93:3c:f3:cc:1c:bb:a4:d3:1a:46:af:5b:c4:95:18:
c6:1a:c7:23:4a:a3:74:8f:5a:4b:4b:f8:99:f1:a4:
fc:52:4e:11:35:cd:f2:f6:ff:05:c8:27:08:07:b9:
7c:b7:77:b5:50:af:d3:8a:ed:a8:c2:11:27:b9:99:
9b:7a:70:5c:c9:15:9c:0c:2d:b1:57:36:61:09:ab:
a1:36:67:0c:dc:45:d0:fc:24:cd:e3:9a:78:26:3a:
ba:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:F8:1F:A1:32:66:2B:98:F2:69:59:16:F6:F8:9F:7D:A3:D4:F7:C0
X509v3 Authority Key Identifier:
keyid:5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3134312e39382e3135322e302f32322d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.98.152.0/22
Signature Algorithm: sha256WithRSAEncryption
35:07:1c:dc:ec:85:ad:c0:ad:4e:00:9a:ea:58:8e:0c:95:f8:
01:41:26:4e:cf:0f:3a:8e:03:39:26:fa:a8:9a:41:54:a0:6c:
d3:c2:4a:14:a3:2a:87:1f:21:84:e8:69:f5:5a:cf:e7:0b:f4:
1f:e0:86:5e:cf:b6:6b:89:c9:2c:ba:38:75:b5:0f:5d:9d:b5:
58:60:6d:e4:b3:7b:b2:33:c1:cb:41:62:26:db:2d:33:df:59:
f0:60:d1:39:b3:03:b3:7e:39:ff:93:c1:db:3c:06:6c:7d:24:
af:41:cf:09:cf:12:b3:01:a2:d1:b4:86:ca:77:d8:e8:60:34:
75:97:3b:59:3c:fb:75:56:e6:c8:13:a3:8e:ad:42:c5:21:b2:
84:2c:7e:e4:75:89:77:d5:e3:d1:10:b4:f1:38:2c:30:14:8b:
fc:99:bb:42:d4:d5:09:7d:78:42:85:18:33:32:74:d3:3f:dc:
b5:db:d7:07:04:82:24:59:cf:c8:97:a6:02:70:84:6e:fa:b1:
c1:86:37:01:44:5c:91:17:a9:f3:47:10:a0:c5:af:5c:91:01:
fc:b2:0c:64:91:96:b3:2c:30:e2:25:2b:32:85:8f:67:bf:bb:
e1:d1:50:4a:f2:f5:18:59:77:69:f7:f4:cf:45:2b:44:7e:47:
86:8a:33:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 18:39:35 2024 by rpki-client on console-fra.rpki-client.org