Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e38352e302f32342d3234203d3e203239383032.roa
File: 3231332e3133392e38352e302f32342d3234203d3e203239383032.roa (raw, json)
Hash identifier: LtGTBA0tja4aPes6zNqKB5Ol7YdK6+sknfbrbq7b0wc=
Subject key identifier: 44:24:A7:3B:E0:C0:99:9A:62:4F:8D:BE:88:51:1B:E4:DF:EF:C9:BA
Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Certificate serial: 069408E4AD9E65DB40D3FA23C89744EFCACA53AE
Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e38352e302f32342d3234203d3e203239383032.roa
Signing time: Tue 19 Mar 2024 15:05:14 +0000
ROA not before: Tue 19 Mar 2024 15:00:14 +0000
ROA not after: Tue 18 Mar 2025 15:05:14 +0000
asID: 29802
IP address blocks: 213.139.85.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.mft
rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Apr 2024 19:05:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:94:08:e4:ad:9e:65:db:40:d3:fa:23:c8:97:44:ef:ca:ca:53:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Validity
Not Before: Mar 19 15:00:14 2024 GMT
Not After : Mar 18 15:05:14 2025 GMT
Subject: CN=4424A73BE0C0999A624F8DBE88511BE4DFEFC9BA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:41:77:f3:a9:59:84:b6:d7:97:ab:ca:bb:9f:
9e:64:03:07:2e:ec:d4:81:76:77:e5:4b:91:65:90:
5f:2b:66:f6:ca:60:bb:76:54:e3:21:f3:80:87:1a:
ed:be:dc:57:4d:51:35:bd:16:f0:d9:c2:63:8f:c2:
03:31:2d:a9:a4:fc:a0:77:fb:bb:a5:ca:dd:b8:b9:
eb:d5:82:37:a5:e5:75:24:57:75:ee:f2:ce:e6:32:
8f:0c:bc:ed:ec:2b:ac:1f:05:1b:da:3e:1f:16:ed:
9e:55:46:e5:56:ec:6a:c9:48:a8:99:81:64:16:e7:
c9:9d:a0:2f:1a:78:e7:ac:c6:0f:48:94:ff:29:88:
85:02:0d:09:58:8e:96:6e:9d:90:9b:9b:88:71:94:
6d:27:06:70:cd:14:06:6c:a3:4a:40:a0:67:14:c4:
7c:a1:fb:48:08:48:87:6c:56:77:d5:a0:53:b4:31:
e1:c8:b0:87:ee:ce:21:44:de:8c:b1:6b:31:94:31:
3c:f5:0b:67:24:8c:55:65:59:36:f7:8e:df:ea:7a:
67:d6:00:6b:f3:fb:a7:9e:40:de:70:b4:85:5b:bf:
60:53:17:0c:7c:3a:12:9e:a5:03:0b:f6:d3:3e:7f:
9e:92:f1:38:7d:f2:0c:07:33:9e:b2:d3:4b:ba:cd:
17:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:24:A7:3B:E0:C0:99:9A:62:4F:8D:BE:88:51:1B:E4:DF:EF:C9:BA
X509v3 Authority Key Identifier:
keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e38352e302f32342d3234203d3e203239383032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.85.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:ae:71:fe:80:5d:f4:2b:c0:e5:71:4d:93:51:ab:a3:a3:9d:
1e:7b:7c:15:63:cd:f9:72:23:42:3c:91:a6:53:ec:7a:d4:c8:
4a:45:81:ca:11:38:d9:b6:14:55:03:47:e9:65:4c:20:b1:3f:
48:1f:59:5c:cf:77:18:61:33:73:92:fa:b3:ef:9a:cd:6e:1c:
92:44:b9:45:e4:01:7b:a3:37:20:ad:c5:99:55:88:4f:c2:aa:
3c:d9:66:42:14:c2:90:dc:fc:f7:fb:a5:1b:73:6d:74:12:07:
9c:18:e2:f0:31:13:61:72:3c:23:bb:b9:9d:ea:f8:46:78:25:
2f:12:e1:ad:d5:d0:2a:df:02:d5:b6:11:e0:94:0f:88:c1:11:
9e:cc:c3:32:86:48:17:49:5c:1d:25:45:2e:2e:c4:80:9e:ca:
01:15:32:90:cb:0a:83:2b:44:72:71:47:cd:48:68:b5:ee:1c:
ae:f2:bb:57:06:2b:85:ac:18:98:7f:d8:c1:e4:36:e9:24:7b:
29:1e:60:60:8e:c2:31:8c:0d:2c:78:4a:f1:35:a5:dd:cb:a4:
1d:95:ea:c6:e3:b4:7e:ee:be:b8:98:b1:cc:af:f4:4a:8a:4e:
b9:43:21:0e:0e:61:25:57:ef:cb:52:29:92:44:33:cc:9b:32:
8d:69:6e:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 01:22:45 2024 by rpki-client on console-fra.rpki-client.org