Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e36362e302f32342d3234203d3e203538303631.roa
File: 3231332e3133392e36362e302f32342d3234203d3e203538303631.roa (raw, json)
Hash identifier: 1beFd0/1wwkXHMKY9h+mV4i0Vc2npXtct3dDpnuu694=
Subject key identifier: 37:DD:04:72:08:50:38:51:ED:C2:98:15:78:7E:4F:C2:0C:74:29:56
Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Certificate serial: 576C5004DE8E347C9AEFE18DC0DF9E552335EB1B
Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e36362e302f32342d3234203d3e203538303631.roa
Signing time: Tue 26 Mar 2024 05:00:11 +0000
ROA not before: Tue 26 Mar 2024 04:55:11 +0000
ROA not after: Tue 25 Mar 2025 05:00:11 +0000
asID: 58061
IP address blocks: 213.139.66.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.mft
rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 May 2024 14:15:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:6c:50:04:de:8e:34:7c:9a:ef:e1:8d:c0:df:9e:55:23:35:eb:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Validity
Not Before: Mar 26 04:55:11 2024 GMT
Not After : Mar 25 05:00:11 2025 GMT
Subject: CN=37DD047208503851EDC29815787E4FC20C742956
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:3d:45:33:cb:d9:1c:35:77:7c:d9:67:99:87:
25:64:8c:59:3e:1a:45:98:27:b2:6d:3d:ea:3d:56:
4f:5b:f7:16:84:98:f4:6a:32:69:39:b3:0e:6f:c0:
e9:ae:73:5a:5c:15:09:df:53:28:a2:75:83:b4:d1:
d9:7d:2c:17:c7:2c:91:ad:23:22:97:06:3b:2d:3f:
55:1d:77:2a:e3:87:9f:95:36:5c:21:ba:37:d3:47:
a9:f6:2f:71:7a:3f:01:44:c8:d0:05:bd:86:ca:0f:
62:08:29:76:b6:39:af:37:d5:b8:89:8a:1b:e5:19:
ed:ef:cb:c2:cb:55:ea:57:63:81:82:64:30:25:b2:
ed:25:e7:c1:0a:16:eb:56:90:e4:f3:75:ae:6f:c4:
6d:2c:21:c1:77:10:29:7e:aa:e4:6d:04:d9:79:a8:
d2:91:d4:6a:41:61:b6:24:c4:65:eb:a5:9e:8b:84:
a3:df:b8:ae:df:e6:a1:de:e0:ee:b2:15:cc:27:8b:
8a:5b:f4:8e:aa:13:50:6b:d1:f9:8f:3d:1f:90:5a:
25:5b:e4:4d:b6:e9:84:5f:e5:82:c9:76:d8:f2:ef:
49:c9:80:f9:74:7d:f4:98:4b:e4:34:27:1e:c5:82:
0a:0c:4a:d1:64:93:9b:9e:ca:e0:05:e9:98:e1:30:
0f:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:DD:04:72:08:50:38:51:ED:C2:98:15:78:7E:4F:C2:0C:74:29:56
X509v3 Authority Key Identifier:
keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e36362e302f32342d3234203d3e203538303631.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.66.0/24
Signature Algorithm: sha256WithRSAEncryption
62:94:8c:d1:35:0a:cc:ad:96:aa:74:5f:e1:e9:1b:f8:ea:18:
7c:05:93:0f:c4:98:97:71:99:24:a1:c7:c6:a7:32:fa:bb:ae:
ba:c7:a6:a4:c5:35:06:6f:ae:e9:f3:72:c0:f2:e7:e5:7c:36:
90:2b:76:84:64:32:43:24:a2:54:b6:ff:95:e0:74:a1:5e:a7:
c8:ca:3e:33:7c:9f:69:f7:90:10:55:49:5c:76:b9:27:83:0c:
1d:42:46:8c:94:a1:83:06:41:f8:13:19:b2:f1:5f:31:92:b1:
f0:d5:a5:c7:5a:5f:d9:cf:4e:1d:a6:95:43:a9:d3:36:f2:6b:
0b:a8:4f:cf:2c:7b:b4:37:19:98:4c:7e:68:48:35:c5:23:f3:
cb:bd:e6:ef:02:cf:5f:7a:5c:62:b6:64:e0:89:88:65:55:a5:
b6:93:27:a0:a0:be:e6:a2:fa:aa:65:7d:85:63:7e:30:50:56:
86:24:81:eb:7e:7c:00:e9:98:e6:3e:10:21:4f:0b:aa:18:b9:
c0:ff:56:5a:f2:3e:14:d6:57:0d:bf:7f:46:8a:1e:19:17:c6:
85:16:7e:8a:f6:b7:39:7c:6e:49:21:17:6d:8a:8f:3e:ca:73:
31:2f:e2:46:86:15:81:dc:5f:35:2f:b0:6c:e0:14:3e:06:a2:
a7:c8:35:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 22 23:03:36 2024 by rpki-client on console-fra.rpki-client.org