Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e38332e302f32342d3234203d3e203239383032.roa
File: 3231332e3133392e38332e302f32342d3234203d3e203239383032.roa (raw, json)
Hash identifier: RR2aIY9i1fWDxHRpkeF8JveiZ3BPVXzLBjfhIpB++ko=
Subject key identifier: CA:2D:5F:7E:D0:96:58:26:FC:56:AD:7F:66:9A:5C:C7:C5:AF:6F:80
Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Certificate serial: 4D4776D10BBF6AD8CD14434EC5177BC37645FC64
Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e38332e302f32342d3234203d3e203239383032.roa
Signing time: Tue 19 Mar 2024 15:05:14 +0000
ROA not before: Tue 19 Mar 2024 15:00:14 +0000
ROA not after: Tue 18 Mar 2025 15:05:14 +0000
asID: 29802
IP address blocks: 213.139.83.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.mft
rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Apr 2024 19:05:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:47:76:d1:0b:bf:6a:d8:cd:14:43:4e:c5:17:7b:c3:76:45:fc:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Validity
Not Before: Mar 19 15:00:14 2024 GMT
Not After : Mar 18 15:05:14 2025 GMT
Subject: CN=CA2D5F7ED0965826FC56AD7F669A5CC7C5AF6F80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:76:6c:72:82:43:b7:45:48:92:08:07:82:3f:
2e:93:54:98:1f:6a:f7:44:ed:e2:e3:19:7d:06:cf:
58:0c:8d:7f:21:11:1d:84:ab:05:63:74:a6:1a:89:
03:a4:0b:d5:07:2f:f3:22:60:10:fa:60:bc:4f:ea:
08:0b:81:d9:55:e1:62:5d:60:20:87:59:3d:6a:b3:
64:18:15:24:a7:aa:32:0d:13:dc:73:a0:c9:ac:15:
f3:38:33:4e:df:5b:81:8d:7f:37:d0:7d:b0:0d:15:
9f:1b:bf:1d:82:74:c2:be:67:54:7e:2e:00:c7:a2:
69:a5:f0:37:40:fe:b1:c8:19:f5:c6:7d:0e:0d:49:
df:03:19:40:67:2f:00:cc:49:76:89:cc:4d:9c:2c:
fe:8e:bc:bc:dd:65:41:94:2b:79:17:e9:88:a7:56:
c9:de:ad:d0:fa:55:ff:61:02:d8:a3:7f:72:20:29:
9f:b9:9f:6b:fd:14:c4:e8:8a:b2:5a:8b:7a:98:bb:
7d:67:21:88:21:74:3d:42:0a:18:e6:a8:68:29:20:
53:33:9b:c8:9e:5b:99:81:dc:ab:99:d4:2f:6c:95:
2d:3b:a0:d1:38:40:c6:c3:49:7a:f5:5f:09:35:71:
63:e4:7d:5e:c9:46:9f:49:5d:cd:ac:50:9e:07:76:
b4:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:2D:5F:7E:D0:96:58:26:FC:56:AD:7F:66:9A:5C:C7:C5:AF:6F:80
X509v3 Authority Key Identifier:
keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e38332e302f32342d3234203d3e203239383032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.83.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:18:54:3c:7e:22:e1:93:f1:95:57:01:8a:e9:b6:13:6b:73:
f7:56:2c:8f:c9:6d:ca:fa:74:4c:85:53:f5:7c:8b:d4:2b:b9:
2a:55:99:74:42:e6:83:83:db:f2:56:8e:0f:77:44:07:27:67:
fe:fd:14:f8:a7:a1:2b:28:cb:8e:e7:d9:90:13:d0:43:19:f9:
2c:87:6a:0b:43:c2:a6:74:4b:71:d3:fb:c7:a0:a8:4b:21:68:
5a:f6:d2:01:42:63:68:44:a0:06:aa:e4:76:e1:6c:a3:37:a7:
d3:ec:7d:70:8d:69:95:61:eb:36:87:d2:95:e6:99:0b:c9:27:
ef:00:7b:dd:95:b2:1c:7f:a7:57:a9:62:7f:97:8f:76:5a:83:
02:60:c9:e0:60:60:b8:d0:87:fa:ee:e6:06:1b:77:a9:6f:17:
5c:b4:ba:46:18:38:fc:9a:b7:a3:26:b6:39:04:9b:31:c4:e6:
28:2c:83:42:9b:72:35:92:54:ea:b4:31:5b:9d:4c:87:1e:a7:
9c:f6:07:56:f5:31:90:d0:42:8c:c0:ca:c6:98:fd:56:16:8d:
8c:9c:85:d4:43:14:28:d6:2c:1f:46:1e:8b:37:c0:e0:09:0b:
28:d7:84:73:0f:06:27:5c:70:a1:73:83:df:6e:91:26:48:08:
a9:93:0a:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 01:22:45 2024 by rpki-client on console-fra.rpki-client.org