Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3139332e3130392e3139342e302f32342d3234203d3e203631333137.roa
File: 3139332e3130392e3139342e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: UH6WrTFJH1xcN7NpTwnSlaC3wVj10NLbZIhx1Q0LVhE=
Subject key identifier: D2:CE:30:69:02:C5:84:4B:05:69:23:EF:7E:1C:93:61:14:DE:B0:A0
Certificate issuer: /CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Certificate serial: 72304C7CCE9FAF4943862C5A2AA9276AD8EAA06B
Authority key identifier: DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3139332e3130392e3139342e302f32342d3234203d3e203631333137.roa
Signing time: Wed 08 Nov 2023 09:22:24 +0000
ROA not before: Wed 08 Nov 2023 09:17:24 +0000
ROA not after: Wed 06 Nov 2024 09:22:24 +0000
asID: 61317
IP address blocks: 193.109.194.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.mft
rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:30:4c:7c:ce:9f:af:49:43:86:2c:5a:2a:a9:27:6a:d8:ea:a0:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Validity
Not Before: Nov 8 09:17:24 2023 GMT
Not After : Nov 6 09:22:24 2024 GMT
Subject: CN=D2CE306902C5844B056923EF7E1C936114DEB0A0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:83:3c:b1:7d:1c:5a:41:c0:76:79:85:9c:ce:
e8:71:64:18:a7:73:49:7c:98:9b:c6:4c:17:3c:0e:
e8:5b:e3:ca:0c:ca:ac:ed:40:20:55:83:fa:37:ba:
0d:d2:02:1f:ca:e9:a8:c0:ae:72:cc:c8:bb:c3:53:
b3:f7:7b:46:06:b3:9e:d7:fc:32:1f:f6:90:06:e6:
cd:0e:8b:88:d7:3c:25:37:d2:d9:ea:35:dc:01:48:
86:00:22:01:f2:54:6b:a7:a6:b0:7c:2d:3f:3c:05:
56:62:4a:e7:a6:d8:4e:bb:3b:6a:4d:f8:77:ea:a3:
f6:cd:99:a4:97:0e:34:d4:a2:76:e2:ca:09:53:39:
e6:9e:38:7e:fb:d7:fb:be:d5:41:74:11:4e:b9:a6:
74:bf:b9:63:38:26:74:fb:33:be:c0:5f:48:f6:6e:
98:e2:8c:3d:0a:29:67:b8:a3:c1:e4:17:fb:03:0f:
ff:97:09:9e:9b:29:98:01:6d:aa:41:6b:aa:a0:cc:
be:44:ea:38:21:ec:1f:14:fe:51:66:86:bb:4c:f9:
e6:bd:6e:da:03:90:f0:f7:d0:f0:30:8b:2e:9d:c0:
0e:48:78:a6:1f:28:d7:3d:5e:e4:9a:98:27:0f:1d:
43:7d:56:ad:f5:56:fc:a5:82:33:bf:91:13:2a:e0:
36:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:CE:30:69:02:C5:84:4B:05:69:23:EF:7E:1C:93:61:14:DE:B0:A0
X509v3 Authority Key Identifier:
keyid:DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3139332e3130392e3139342e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.109.194.0/24
Signature Algorithm: sha256WithRSAEncryption
44:a9:4b:d4:d3:98:32:6c:18:2e:46:ba:97:f7:e2:3c:4f:44:
2e:dd:9d:d4:4e:59:1c:a9:22:61:b3:20:e4:e1:7e:4b:9b:23:
78:ec:65:e5:40:0c:ae:4f:e7:10:c6:bb:9c:89:1e:65:13:ba:
90:0c:12:7e:7b:28:5e:4e:95:d2:32:f9:83:5a:21:66:0c:3f:
fe:64:ea:8d:4f:8a:a8:39:a8:32:03:cc:f7:57:84:6f:97:fb:
60:d1:9f:4b:a9:ee:a2:4f:8a:12:9e:d2:7c:49:0c:25:22:58:
43:60:8d:f2:7c:f4:55:af:4a:95:b6:2c:cc:ef:c0:3c:16:2c:
b8:89:fe:d6:61:05:34:e1:49:83:dd:e2:22:e7:d1:e2:80:a7:
e4:fe:0e:f6:7b:a1:26:1a:b7:46:59:4b:03:36:69:b3:e5:9b:
a7:0d:c3:ff:79:8f:54:17:67:39:d4:d0:37:b0:7c:d8:82:a7:
f5:e7:82:b3:b2:e5:74:12:ed:fb:1d:71:82:1c:a9:fb:b5:c1:
9d:e9:6b:28:4e:e8:f8:89:e9:cf:8f:a2:1c:90:1e:20:e7:41:
50:5b:bb:a8:a5:25:6c:cf:bb:32:22:68:f2:01:13:33:d3:f2:
40:85:11:a1:e3:17:f2:f7:05:c5:72:f1:cb:eb:46:26:29:70:
de:15:cc:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 11:36:52 2024 by rpki-client on console-fra.rpki-client.org