Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/39342e3130312e3131332e302f32342d3332203d3e203531313637.roa
File: 39342e3130312e3131332e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: /EZp5YZbynf6cxOzVOQAQ0o2f8el3MgLSUfzXh6XAsw=
Subject key identifier: FF:48:BC:28:10:61:C4:15:93:83:B4:BA:86:B4:22:F2:6F:DD:15:BF
Certificate issuer: /CN=5d70845822a61408ec2a5fd580c132da777f09d1
Certificate serial: 7F0CAE83EB0B8858C2BE5435894EEA48E68C7CC6
Authority key identifier: 5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/39342e3130312e3131332e302f32342d3332203d3e203531313637.roa
Signing time: Fri 21 Jun 2024 08:03:59 +0000
ROA not before: Fri 21 Jun 2024 07:58:59 +0000
ROA not after: Fri 20 Jun 2025 08:03:59 +0000
asID: 51167
IP address blocks: 94.101.113.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.mft
rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:0c:ae:83:eb:0b:88:58:c2:be:54:35:89:4e:ea:48:e6:8c:7c:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d70845822a61408ec2a5fd580c132da777f09d1
Validity
Not Before: Jun 21 07:58:59 2024 GMT
Not After : Jun 20 08:03:59 2025 GMT
Subject: CN=FF48BC281061C4159383B4BA86B422F26FDD15BF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:c0:bd:58:35:18:96:41:87:76:40:b5:f5:af:
5d:b6:e2:87:98:46:74:22:c6:f5:ef:20:c6:a9:84:
56:14:f4:70:86:a5:1c:b2:b3:30:84:3c:f8:f2:90:
47:7d:08:e4:0f:28:56:63:c5:8b:7e:d7:0f:1b:ce:
bf:68:4d:db:95:93:74:7d:01:d8:53:44:53:b6:3e:
a9:01:19:f3:24:98:cc:b0:11:db:ab:1f:17:71:8f:
77:cd:97:97:af:7f:5d:6c:66:da:ec:34:ce:91:5e:
5e:1f:d5:b0:df:a6:29:ad:5a:76:55:ac:86:60:a6:
75:97:c4:e4:a0:15:17:fe:37:66:ad:df:63:06:ff:
f9:34:3b:4e:ed:8c:d0:fa:41:93:7c:a6:3b:5f:f6:
b7:4c:92:29:91:24:a6:a1:b9:b7:32:8d:06:79:68:
10:f6:b7:b1:13:3e:6f:68:4f:1f:fa:ad:e7:2f:39:
08:51:f4:a9:e9:28:51:44:e5:de:0b:b9:a0:80:79:
97:c8:9e:20:65:87:8c:7e:52:bd:58:1f:1c:1f:e6:
e5:4b:8d:88:fe:a6:b0:e8:0a:22:cb:cb:1a:ce:84:
68:5a:18:55:ca:69:c0:0c:1e:04:59:3b:50:85:38:
b9:87:25:a5:cf:de:12:96:86:6a:6e:0d:ca:e9:22:
63:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:48:BC:28:10:61:C4:15:93:83:B4:BA:86:B4:22:F2:6F:DD:15:BF
X509v3 Authority Key Identifier:
keyid:5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/39342e3130312e3131332e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.101.113.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:6e:d3:7c:15:68:30:f2:80:0d:4f:d0:1b:c0:85:77:78:50:
86:fe:ee:01:5d:a2:22:2c:fc:4e:1a:b1:d4:2e:12:74:7e:ac:
40:93:b6:83:2b:5f:a1:a4:26:e6:f4:9d:f7:ff:fc:bc:c9:6f:
a4:97:3a:97:f1:d0:73:d8:0d:af:59:80:b5:25:01:c6:61:f4:
d5:27:64:1c:f7:a3:c5:05:e4:bb:0a:5d:2b:17:2a:be:b9:ec:
dd:d5:51:e3:3c:ce:8f:43:d4:55:1c:27:9d:eb:d0:22:0c:ff:
56:94:48:ea:48:cf:dd:8d:fc:a4:8e:79:b7:58:9c:e3:57:91:
f3:f5:6d:5a:5d:61:94:9b:d1:a7:6b:4a:6f:d7:76:7b:6f:16:
9f:34:a8:3d:c2:a9:bb:c4:e8:92:15:03:26:6d:0b:fd:29:75:
a3:7d:d4:57:c6:ae:a2:42:15:cb:0b:ff:8a:4c:da:e7:ac:6e:
b3:bf:81:de:89:70:3a:6b:2e:5d:28:91:7e:43:8c:18:df:37:
c3:c3:0c:97:96:86:6e:57:6c:cb:17:2c:14:4c:af:db:2a:ac:
26:b4:7f:37:45:51:ff:47:69:f4:05:da:6e:65:41:51:2b:b9:
5e:2a:16:32:f2:f3:64:de:8b:d6:a9:01:24:fd:21:5c:62:9d:
b4:c2:af:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:05 2024 by rpki-client on console-fra.rpki-client.org