Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3139342e36312e33312e302f32342d3332203d3e20313431393935.roa
File: 3139342e36312e33312e302f32342d3332203d3e20313431393935.roa (raw, json)
Hash identifier: PrcWIfhjV7QvW1B4J/cNo5sdCAAj9SmPVYdi/S8U5RE=
Subject key identifier: AD:4B:96:55:07:A1:96:65:67:B2:57:E0:86:41:CD:95:B4:24:45:62
Certificate issuer: /CN=5d70845822a61408ec2a5fd580c132da777f09d1
Certificate serial: 154E51FFE4189637EB166CA523A35D8434CCC125
Authority key identifier: 5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3139342e36312e33312e302f32342d3332203d3e20313431393935.roa
Signing time: Mon 10 Jun 2024 11:03:38 +0000
ROA not before: Mon 10 Jun 2024 10:58:38 +0000
ROA not after: Mon 09 Jun 2025 11:03:38 +0000
asID: 141995
IP address blocks: 194.61.31.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.mft
rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:4e:51:ff:e4:18:96:37:eb:16:6c:a5:23:a3:5d:84:34:cc:c1:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d70845822a61408ec2a5fd580c132da777f09d1
Validity
Not Before: Jun 10 10:58:38 2024 GMT
Not After : Jun 9 11:03:38 2025 GMT
Subject: CN=AD4B965507A1966567B257E08641CD95B4244562
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:2b:1a:44:67:9b:a9:68:10:51:26:40:50:60:
a4:c6:fb:df:84:c8:ea:3e:a6:6a:3c:b4:37:af:71:
cc:86:d3:97:5d:1a:da:db:ee:7b:f8:09:4a:07:0f:
20:ec:9c:dc:a2:17:6a:d1:29:26:d9:5f:e8:02:ed:
87:cb:3f:48:68:07:4a:de:10:5a:8a:5d:47:e8:3c:
6b:bc:65:fc:2d:93:fe:b2:a8:50:ff:6e:27:c7:e0:
77:9a:80:87:7a:95:8e:d9:42:05:37:c5:71:c4:c8:
20:93:c6:08:ff:fe:ee:85:e3:d6:a6:9f:db:73:7b:
d2:6e:ab:e3:b7:7f:73:9f:46:41:6f:60:d1:a8:ef:
e0:e7:b8:68:cc:07:47:22:13:b4:78:99:61:bb:15:
5f:ad:1c:03:65:3f:a1:79:a6:58:2b:11:3d:d0:6b:
60:08:61:3e:4f:ec:fb:96:62:34:93:1b:02:f6:0e:
35:f1:85:18:0a:22:9d:f3:6b:b5:9d:27:ed:4c:90:
7d:99:86:eb:7c:53:c4:78:46:af:e5:e9:78:42:4d:
78:95:4c:a4:ac:a6:d1:32:9b:2a:f6:c9:77:42:63:
3b:7f:6d:ea:8d:c8:bd:8c:71:21:a3:fb:5b:c0:8b:
c0:0a:26:af:57:08:09:c6:a5:72:42:9d:ba:61:67:
5d:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:4B:96:55:07:A1:96:65:67:B2:57:E0:86:41:CD:95:B4:24:45:62
X509v3 Authority Key Identifier:
keyid:5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3139342e36312e33312e302f32342d3332203d3e20313431393935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.61.31.0/24
Signature Algorithm: sha256WithRSAEncryption
76:10:09:4e:c7:f0:7a:c1:8b:1c:90:ec:bd:27:6b:6d:1e:02:
72:60:d1:a2:aa:86:ae:7e:61:1c:42:88:f0:d3:8e:28:89:05:
7f:25:9d:57:9a:53:f4:ed:0a:da:57:fa:7e:c2:c1:dd:90:e1:
07:9f:2d:3b:6b:6b:7b:3f:1d:9f:c4:59:df:95:56:de:14:11:
62:09:88:51:75:00:34:54:0b:55:b8:fa:e4:3a:4c:7c:a7:a7:
2a:e8:d5:42:cc:d4:c6:a6:3f:41:9f:16:7d:e1:a1:a2:9d:33:
f2:c4:33:4a:e9:aa:80:10:be:eb:7e:c3:bd:25:a0:0d:64:05:
0a:b1:4a:bf:e8:67:fe:a2:63:4c:2c:58:ce:88:6b:c3:af:b2:
37:0a:a7:ea:90:14:b1:ee:cf:4d:b9:08:85:81:9a:5e:52:4e:
08:69:08:16:96:67:9a:29:5e:0d:5d:b7:fb:e4:0e:54:ae:ec:
0e:b4:fe:73:d1:c0:56:e8:19:13:36:c6:74:91:1c:af:a5:65:
13:73:12:e1:9d:12:a2:93:b8:64:0f:eb:f7:b1:04:e9:b3:b0:
86:5b:6f:d4:f9:c4:31:54:6f:5c:e9:1b:58:52:6f:e0:be:17:
4a:3b:3c:ee:45:ce:39:7f:7b:42:51:71:e9:24:29:85:27:37:
fa:69:fc:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 15:07:21 2024 by rpki-client on console-ams.rpki-client.org