Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e39332e302f32342d3234203d3e203239383032.roa
File: 3231332e3133392e39332e302f32342d3234203d3e203239383032.roa (raw, json)
Hash identifier: qgEKCIPyfKm1i6vrvNFA4xwjXMLTED0yCzVcBrYrG5A=
Subject key identifier: 38:E6:EF:77:C8:4F:36:A7:DF:56:B0:B8:98:99:4E:02:0D:3C:74:BC
Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Certificate serial: 6FB4C6A585C467AE473F7E1CA59AEEA9BE92AA41
Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e39332e302f32342d3234203d3e203239383032.roa
Signing time: Tue 19 Mar 2024 15:05:14 +0000
ROA not before: Tue 19 Mar 2024 15:00:14 +0000
ROA not after: Tue 18 Mar 2025 15:05:14 +0000
asID: 29802
IP address blocks: 213.139.93.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.mft
rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Apr 2024 19:05:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:b4:c6:a5:85:c4:67:ae:47:3f:7e:1c:a5:9a:ee:a9:be:92:aa:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Validity
Not Before: Mar 19 15:00:14 2024 GMT
Not After : Mar 18 15:05:14 2025 GMT
Subject: CN=38E6EF77C84F36A7DF56B0B898994E020D3C74BC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:e4:bb:de:eb:37:08:9f:b8:6b:1a:be:32:aa:
43:c6:27:45:9b:32:3c:5a:0e:69:9d:fd:e1:e6:52:
dd:39:f7:40:e7:89:99:6a:59:6a:b5:8c:2b:43:ca:
a9:f4:5b:eb:0f:d5:e1:9d:88:84:0e:d0:96:6a:11:
0b:e0:44:d9:59:78:6d:bf:50:7d:dc:c8:8a:e6:45:
71:01:20:d4:c1:16:41:8e:78:a5:ac:93:06:9d:00:
c8:1b:f4:39:3e:03:61:03:ef:30:c3:21:62:4c:10:
56:e2:78:34:3a:78:61:6d:2d:7a:00:73:6d:6c:28:
0c:7c:9a:10:2a:c4:cb:89:27:4f:29:f9:b9:35:b2:
a9:6f:fb:0f:ea:70:1f:9e:20:f9:c7:fa:ee:58:e7:
71:b7:ca:1b:a2:a5:14:7f:a1:25:68:30:9d:cf:fb:
3c:21:3d:9e:68:51:cf:6e:84:2d:9f:90:c5:bb:2b:
7c:ac:34:d5:f3:9b:de:e1:7c:94:b6:f2:96:c0:e9:
fe:16:bf:4a:d2:d3:9e:72:eb:47:17:77:b0:b1:fd:
50:77:61:41:68:54:cc:2c:a5:7a:59:6a:dd:38:ad:
f5:d1:93:8c:42:4d:21:65:04:1c:2c:91:48:db:71:
5d:4e:56:0a:4c:ce:30:11:cb:c0:48:64:5d:ee:98:
65:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:E6:EF:77:C8:4F:36:A7:DF:56:B0:B8:98:99:4E:02:0D:3C:74:BC
X509v3 Authority Key Identifier:
keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e39332e302f32342d3234203d3e203239383032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.93.0/24
Signature Algorithm: sha256WithRSAEncryption
36:5d:14:6b:95:27:d8:cb:28:75:cd:a6:0c:ce:73:c6:56:0c:
13:94:52:24:4c:41:b9:58:28:78:f8:8a:3b:32:39:b6:68:ac:
dc:c9:ef:b1:85:94:9a:73:9c:f8:d0:98:44:c0:f0:89:2c:a8:
fd:01:84:57:f8:33:9d:31:df:03:e8:e8:e8:e2:7a:3a:4a:21:
60:7b:78:56:dc:ba:75:b5:85:a9:e0:d1:c6:11:35:63:87:14:
1c:1b:af:8b:6b:48:cb:56:54:a7:fc:1d:e4:62:4f:78:49:9b:
16:03:4b:e3:94:d0:dd:6a:e1:84:af:0d:68:fe:1f:37:c4:90:
9f:18:76:59:18:1a:55:59:fa:ba:f6:a4:55:df:8e:82:85:d2:
c4:6c:1b:82:a1:61:7c:c4:e3:b1:b8:be:10:91:bb:3d:90:0f:
3a:60:d4:17:e5:e6:8f:35:97:21:d6:0e:b0:16:ec:28:c3:86:
af:ec:b6:6f:8b:aa:74:ab:9a:85:a3:2b:7c:ed:1b:35:ed:fc:
31:c9:bd:aa:b9:d8:1e:dd:db:3c:cc:73:53:2e:65:49:a6:5b:
cb:9d:63:d7:82:6e:b3:c0:43:40:2b:9c:38:9e:91:2d:00:d1:
67:14:c8:f8:89:61:ec:de:e6:9c:c0:fa:7a:7b:3d:5e:2d:29:
c1:8a:4f:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 01:22:45 2024 by rpki-client on console-fra.rpki-client.org