Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e39342e302f32342d3234203d3e203239383032.roa
File: 3231332e3133392e39342e302f32342d3234203d3e203239383032.roa (raw, json)
Hash identifier: fZ2bdiIMWYwpfBwHrx96UbiUhC5P7T7JOy2YLtMX4VI=
Subject key identifier: 6E:9C:27:54:D7:51:25:CB:AE:09:54:50:75:59:AA:B2:DA:01:F1:51
Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Certificate serial: 17B3CA15C1BC255EB91F246B06ED87C4CF469228
Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e39342e302f32342d3234203d3e203239383032.roa
Signing time: Tue 19 Mar 2024 15:05:14 +0000
ROA not before: Tue 19 Mar 2024 15:00:14 +0000
ROA not after: Tue 18 Mar 2025 15:05:14 +0000
asID: 29802
IP address blocks: 213.139.94.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.mft
rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Apr 2024 19:05:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:b3:ca:15:c1:bc:25:5e:b9:1f:24:6b:06:ed:87:c4:cf:46:92:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Validity
Not Before: Mar 19 15:00:14 2024 GMT
Not After : Mar 18 15:05:14 2025 GMT
Subject: CN=6E9C2754D75125CBAE0954507559AAB2DA01F151
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:7c:56:73:a1:d5:ee:35:97:56:c0:0c:7f:65:
97:97:f3:f9:33:71:36:ac:c7:6a:1e:3e:03:c3:78:
3c:f2:ae:03:50:9e:7b:56:7d:7b:3d:d1:d8:ce:ac:
2a:62:8e:b8:9c:ce:68:5c:84:d4:4a:2d:e8:02:12:
4c:79:53:92:14:62:ad:18:29:82:b8:75:ba:57:6f:
f6:58:6e:50:eb:72:fe:e0:6f:a7:ae:0d:37:07:ad:
d6:e5:25:74:60:0d:96:c0:8b:87:42:82:7c:08:a3:
59:85:4a:9f:6a:da:64:89:a4:08:df:c0:f8:98:30:
58:ff:78:36:eb:5d:8d:9a:9e:de:4a:9e:28:ae:29:
92:a9:f0:b1:a2:16:d2:1a:84:52:15:1a:00:84:a9:
6b:bc:32:d7:77:d6:43:ae:c5:e0:e5:0c:c7:42:2e:
f0:e1:2b:c2:c6:27:74:eb:a7:cf:e0:9e:aa:20:55:
6b:8f:aa:9e:2b:bc:43:a5:38:00:b0:61:8e:3f:f4:
e6:8f:ab:90:b6:0f:c6:ae:e6:1e:a3:cd:4b:a9:7c:
54:0e:eb:0d:5a:4a:26:2f:4e:cc:8c:63:4b:81:99:
f9:38:5c:4e:15:33:ef:32:b7:2f:e2:4c:ba:0e:ed:
c3:c5:70:06:be:17:a7:6d:b1:05:50:b7:1c:e2:f4:
56:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:9C:27:54:D7:51:25:CB:AE:09:54:50:75:59:AA:B2:DA:01:F1:51
X509v3 Authority Key Identifier:
keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e39342e302f32342d3234203d3e203239383032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.94.0/24
Signature Algorithm: sha256WithRSAEncryption
16:7f:5f:4b:a7:48:a5:59:f6:f7:13:88:95:4e:b6:5b:68:3a:
a5:e6:4c:4a:2a:48:8e:43:b5:7d:9c:80:75:b8:52:89:66:5a:
30:b2:69:33:e6:6e:33:0c:53:0d:8f:c9:ef:5d:88:24:c2:aa:
19:de:76:1d:1c:48:7e:22:4c:67:16:a5:87:87:52:34:b0:58:
a0:0a:c1:de:0d:06:f2:ce:4b:d2:37:28:1e:9d:b6:e6:de:f8:
53:b9:51:c0:cf:b8:83:96:9b:68:49:ad:c2:62:66:fc:f1:df:
83:4c:54:99:2d:c6:fb:b4:1e:c1:dc:cd:79:26:57:bf:7d:0a:
93:a8:93:00:9e:59:42:39:f2:55:76:dd:78:82:9f:80:4e:43:
8c:23:f2:0b:bc:64:af:4d:95:91:20:99:22:73:ed:f4:60:a9:
86:07:10:fa:79:11:38:d1:3e:35:50:2a:03:47:21:1b:31:07:
77:9c:dc:bf:ef:2c:ce:d5:49:df:c2:4c:f2:66:24:76:d2:7b:
c9:d0:12:fc:86:91:95:50:8b:a0:25:57:83:54:ad:e4:a5:87:
b3:82:46:00:27:af:d2:2c:91:10:22:69:5c:aa:e1:da:98:c0:
18:01:ff:d2:54:70:bd:0e:eb:fe:e7:64:4b:7e:de:ab:1d:a0:
6c:4b:ea:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 01:22:45 2024 by rpki-client on console-fra.rpki-client.org