Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e38322e302f32342d3234203d3e203239383032.roa
File: 3231332e3133392e38322e302f32342d3234203d3e203239383032.roa (raw, json)
Hash identifier: QLbwCr0GKiYF0C8410Tg63khF7TM6cn7RI8ArMHAyic=
Subject key identifier: 84:42:40:D1:10:15:56:BF:C1:93:C6:82:C3:DF:39:B8:85:74:58:77
Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Certificate serial: 2D4DEC97D76E3FB51F3C962D9E3463C0D1541A26
Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e38322e302f32342d3234203d3e203239383032.roa
Signing time: Tue 19 Mar 2024 15:05:14 +0000
ROA not before: Tue 19 Mar 2024 15:00:14 +0000
ROA not after: Tue 18 Mar 2025 15:05:14 +0000
asID: 29802
IP address blocks: 213.139.82.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.mft
rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Apr 2024 19:05:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:4d:ec:97:d7:6e:3f:b5:1f:3c:96:2d:9e:34:63:c0:d1:54:1a:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Validity
Not Before: Mar 19 15:00:14 2024 GMT
Not After : Mar 18 15:05:14 2025 GMT
Subject: CN=844240D1101556BFC193C682C3DF39B885745877
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:dc:af:c6:26:a2:9b:71:48:9a:c1:7a:ad:c8:
3d:db:80:bc:c6:eb:af:61:84:bf:dd:60:e7:89:4e:
95:fd:21:dc:57:ba:e9:5b:cd:4c:df:6b:e5:d0:54:
d6:71:af:a8:e7:75:ff:96:76:a1:4a:98:6e:90:63:
66:6e:2d:1c:a4:da:2a:6a:ae:3c:3b:b4:ea:b4:d5:
f3:13:5c:27:a7:05:fd:e6:e9:7b:26:6d:56:87:ea:
32:f8:a8:b0:a9:42:84:e9:37:e8:8c:c9:ac:29:73:
b8:4b:37:7b:0b:88:67:a9:55:c5:95:c1:4d:3a:52:
55:2e:df:14:c7:0e:1b:f0:f5:1f:09:77:73:33:c3:
27:68:f1:08:3e:95:4a:6e:26:1d:4b:9c:ce:a5:32:
f6:29:0f:a8:6b:2f:e9:14:fb:04:a8:98:36:1d:83:
ce:74:8f:95:f4:3f:6b:49:50:10:11:af:30:6d:5d:
63:82:20:0a:78:36:a4:c9:be:4a:b1:71:f7:a6:17:
ab:a0:87:9c:a6:69:a0:ef:3e:7e:34:15:a3:df:08:
69:09:3d:26:8b:03:46:37:3a:3e:5c:81:36:ed:b7:
d3:0f:dc:71:09:dc:e5:ec:36:25:0a:3d:a2:a1:8e:
cc:27:14:a8:86:a0:cf:4c:e1:30:bd:a5:03:94:61:
e1:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:42:40:D1:10:15:56:BF:C1:93:C6:82:C3:DF:39:B8:85:74:58:77
X509v3 Authority Key Identifier:
keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e38322e302f32342d3234203d3e203239383032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.82.0/24
Signature Algorithm: sha256WithRSAEncryption
32:e5:59:1e:71:d5:dd:29:f8:0d:6f:9f:4f:57:f2:18:18:61:
06:4f:50:30:b2:98:c8:b2:50:a7:53:8a:74:61:4f:4d:bf:5b:
2e:33:6b:f8:09:8b:0f:fd:81:3c:5f:15:cf:ce:57:6c:3a:cb:
c6:38:c2:b2:d1:13:33:57:2c:ae:79:ff:34:5a:d6:8d:0e:b9:
64:ad:53:e9:1c:f1:91:08:e3:42:55:c3:f3:b9:79:25:07:97:
44:e7:6e:3a:91:a2:aa:8f:5b:70:42:c8:f6:c7:86:bf:1c:80:
d1:3f:05:a4:92:8f:f4:03:ac:60:43:cd:ff:2b:ad:6e:ca:cb:
d1:d5:99:b5:b9:12:0a:fa:9f:53:a0:6b:ba:f1:48:4b:6d:15:
22:a4:fc:8e:79:9d:74:b8:2d:65:1f:f4:bf:6a:27:9b:19:a7:
a3:2a:0a:9c:df:16:55:d7:5e:43:bb:f8:6a:d5:54:9e:3b:e6:
29:f5:ae:68:b4:5f:99:2b:f3:72:e6:c2:e7:0a:51:8e:a6:70:
fe:d9:87:c0:c5:1a:b3:46:c5:86:be:e4:e1:a2:4d:e1:99:35:
d5:1d:8a:ed:7c:1f:56:07:f3:e0:98:80:8c:ff:44:96:29:5a:
9f:56:78:30:96:8f:fc:b5:a6:0b:00:e0:ea:80:95:37:50:d9:
75:a4:18:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 01:22:45 2024 by rpki-client on console-fra.rpki-client.org