Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e38342e302f32342d3234203d3e203239383032.roa
File: 3231332e3133392e38342e302f32342d3234203d3e203239383032.roa (raw, json)
Hash identifier: bYJMl1244EupZya+7H0o4w3m07Ylzgd+jZRALlzGWtc=
Subject key identifier: FE:C0:A3:DE:12:22:A5:88:45:D6:FB:DE:55:F6:C2:8B:69:5B:AD:0E
Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Certificate serial: 11A6CA1A2FFFB6AE765DCA7FE963EC4F28060BF6
Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e38342e302f32342d3234203d3e203239383032.roa
Signing time: Tue 19 Mar 2024 15:05:14 +0000
ROA not before: Tue 19 Mar 2024 15:00:14 +0000
ROA not after: Tue 18 Mar 2025 15:05:14 +0000
asID: 29802
IP address blocks: 213.139.84.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.mft
rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Apr 2024 19:05:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:a6:ca:1a:2f:ff:b6:ae:76:5d:ca:7f:e9:63:ec:4f:28:06:0b:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Validity
Not Before: Mar 19 15:00:14 2024 GMT
Not After : Mar 18 15:05:14 2025 GMT
Subject: CN=FEC0A3DE1222A58845D6FBDE55F6C28B695BAD0E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:6e:f4:cf:71:6a:62:33:ed:1e:18:6f:40:fa:
0e:e6:b3:5b:43:7e:d9:5c:66:c4:f5:07:02:fa:3d:
e8:4e:3b:f9:cc:29:8e:eb:17:4e:e2:ea:eb:65:f3:
20:19:3d:f3:47:5f:40:61:0c:36:19:6c:7d:28:4c:
84:84:0c:c5:40:2c:b8:12:19:5c:f8:0f:92:1e:61:
a2:a2:6d:e0:65:e2:b0:da:c0:4e:cc:c2:07:c7:0a:
b5:f3:3a:25:ec:e9:62:95:b0:28:1c:e8:56:f3:68:
e7:0a:61:4a:c8:1c:4e:af:68:55:14:2a:53:12:de:
27:83:e2:70:ed:44:ba:83:da:0e:5e:21:65:5a:7d:
41:1f:cb:2d:ed:3f:bd:08:15:0e:d6:ba:21:50:1f:
e9:c0:a3:26:3a:39:2f:2b:b0:b3:a6:84:17:f9:9f:
d7:84:86:80:79:5a:db:8b:5d:f0:da:62:ce:58:c1:
59:3c:7a:de:28:3c:14:65:2b:82:cd:d9:02:ed:ba:
77:1f:58:32:38:08:a6:a6:2c:54:39:05:74:fa:02:
7e:9d:86:94:f7:8b:59:7f:3e:5c:c4:50:42:0a:76:
96:32:3c:d9:31:0e:34:f8:28:8f:c4:e9:25:88:aa:
a2:35:4e:d1:a3:a8:d2:5e:00:03:63:4c:b6:4e:50:
12:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:C0:A3:DE:12:22:A5:88:45:D6:FB:DE:55:F6:C2:8B:69:5B:AD:0E
X509v3 Authority Key Identifier:
keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e38342e302f32342d3234203d3e203239383032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.84.0/24
Signature Algorithm: sha256WithRSAEncryption
55:c4:0b:d4:f4:98:42:a1:e1:6c:a8:f1:39:ae:db:1d:92:02:
61:65:9d:a3:7a:e3:be:55:5d:72:24:06:08:fe:5a:3a:41:ff:
44:e1:ce:9d:d3:11:b5:ba:1c:f7:69:53:b7:21:2c:4d:b1:29:
71:93:73:d9:12:cc:2b:f3:c9:99:ca:4a:c5:01:14:81:ad:51:
3d:f4:a5:25:a5:d0:6b:90:ff:27:d1:c8:3c:bb:5b:bd:2e:c4:
29:0a:d4:e7:8b:32:98:16:d4:f1:7e:e5:93:a2:08:5e:26:bc:
48:a7:b4:08:db:bf:36:cd:ac:e5:55:73:ff:81:30:43:c3:de:
cf:ae:dc:ee:a4:e9:77:a7:6c:29:0a:78:3e:24:f1:c2:ef:b3:
99:24:3b:9c:b1:53:fc:87:48:d4:29:06:4c:f9:98:23:85:f2:
a0:72:d1:ec:4c:29:c8:af:63:a7:0a:a3:6d:13:8e:4a:7c:31:
04:91:31:03:f8:a5:89:2f:cd:2d:c5:35:83:97:df:b7:70:b8:
03:35:d4:34:76:ee:35:09:13:e6:eb:f4:ef:eb:25:dd:f7:35:
7f:f1:08:d3:e3:58:c6:e9:0e:47:1d:60:a6:a4:50:36:bd:20:
ac:7f:04:cb:20:2a:3b:7e:4b:4e:f6:1f:a7:89:1f:16:47:e1:
ef:91:23:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 01:22:45 2024 by rpki-client on console-fra.rpki-client.org