Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3139342e36312e33302e302f32342d3234203d3e20313336373837.roa
File: 3139342e36312e33302e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: dl4jV73PcSWIU8OpxwGmflgAuWtvl1PVTA4qwcurwhA=
Subject key identifier: 22:2A:EA:82:3E:DB:82:40:95:9A:C3:A5:E5:4E:BC:9D:ED:1E:A3:60
Certificate issuer: /CN=5d70845822a61408ec2a5fd580c132da777f09d1
Certificate serial: 51CEE513FCDB8A803D05D5EEAC24D02D6EE5E109
Authority key identifier: 5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3139342e36312e33302e302f32342d3234203d3e20313336373837.roa
Signing time: Sun 26 Nov 2023 19:47:03 +0000
ROA not before: Sun 26 Nov 2023 19:42:03 +0000
ROA not after: Sun 24 Nov 2024 19:47:03 +0000
asID: 136787
IP address blocks: 194.61.30.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.mft
rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:ce:e5:13:fc:db:8a:80:3d:05:d5:ee:ac:24:d0:2d:6e:e5:e1:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d70845822a61408ec2a5fd580c132da777f09d1
Validity
Not Before: Nov 26 19:42:03 2023 GMT
Not After : Nov 24 19:47:03 2024 GMT
Subject: CN=222AEA823EDB8240959AC3A5E54EBC9DED1EA360
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:2d:24:ca:4e:2a:04:62:2e:26:88:66:c1:68:
1d:eb:d7:92:b8:06:84:af:d9:12:4e:f2:c9:a9:88:
95:40:e8:c0:c5:59:da:cc:74:6f:4a:f7:62:64:3f:
c1:d6:97:61:bb:e7:c5:7a:6f:86:a9:8e:84:e6:c4:
11:d2:ff:1b:a9:b0:99:50:c0:b8:6f:32:81:e6:d6:
82:16:74:6a:a4:82:6c:7d:1b:6c:de:73:64:8b:82:
ee:46:50:ee:6a:4b:bc:41:b9:b3:85:ee:e5:a4:11:
3a:a5:13:37:41:31:65:66:7a:ec:2b:db:20:1c:34:
64:25:28:1f:4b:25:11:93:ea:80:c3:d2:6b:db:ab:
9d:78:5d:a3:7d:5b:2f:29:06:3d:c1:89:3f:d2:d6:
6b:f5:b2:05:b6:f2:4a:8d:f5:3b:18:b0:65:36:ac:
b0:e7:5d:da:62:32:30:95:90:a9:5b:bb:c0:44:f4:
cb:b0:a1:c2:50:c6:64:a5:99:46:3a:7c:e6:d8:f6:
7c:70:89:00:31:48:7a:95:7a:9e:91:60:62:c8:3e:
0e:fe:0f:22:cf:19:06:7b:fb:33:c1:04:58:8c:3d:
56:b6:e7:76:9f:f0:c3:9d:5e:c7:a5:63:59:f1:cc:
d8:93:e8:2a:a1:96:e4:16:89:1c:ed:42:e9:3f:9d:
16:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:2A:EA:82:3E:DB:82:40:95:9A:C3:A5:E5:4E:BC:9D:ED:1E:A3:60
X509v3 Authority Key Identifier:
keyid:5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3139342e36312e33302e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.61.30.0/24
Signature Algorithm: sha256WithRSAEncryption
31:5b:f5:b2:de:b3:3a:1a:fe:e4:bb:4e:9c:d8:58:c2:00:3e:
98:0a:9b:67:b1:77:ab:04:c6:a2:92:dd:7d:d3:c3:f6:0b:94:
8c:54:9d:82:33:88:d0:ad:32:aa:18:90:ca:d1:7e:c5:8b:57:
76:7e:b2:0a:4f:c8:d1:47:ed:98:ba:ad:8e:cb:a9:1d:bc:ef:
57:9c:30:00:91:d2:84:e9:5b:2d:cd:e0:5e:65:1c:92:f5:88:
a3:20:95:eb:b0:a7:09:79:07:3a:d9:0a:34:e5:53:13:d0:5f:
7e:6e:60:c9:9a:aa:da:af:c2:ce:94:a6:5b:fc:70:a5:04:e8:
9f:71:f5:9e:68:57:e0:f2:62:9d:49:f1:f7:10:9d:b7:b2:1f:
59:56:8f:97:cb:8e:10:e3:00:d7:72:2d:af:74:0c:e5:20:e0:
e6:3c:9a:ff:7f:bf:5e:46:4b:2e:25:44:c8:bf:61:fb:6f:45:
a7:30:cb:6b:55:c5:8c:dc:31:51:3e:1a:b4:a1:61:9c:5d:63:
8e:a6:7e:7b:94:ae:18:8f:ad:28:bc:1a:6d:03:a6:55:a8:08:
32:33:c8:03:c7:96:f4:40:7a:6f:73:62:65:e7:3a:65:6b:75:
91:d7:46:6b:cf:62:43:af:1f:a6:ac:81:68:89:b4:f5:9b:b0:
5c:76:20:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 11:54:25 2024 by rpki-client on console-fra.rpki-client.org