Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e39352e302f32342d3234203d3e203239383032.roa
File: 3231332e3133392e39352e302f32342d3234203d3e203239383032.roa (raw, json)
Hash identifier: R+DR3aau74Jgo0ET1/4cx+ID9ULIpOut3nNQigqMf8U=
Subject key identifier: DB:E0:E8:62:4A:B8:41:90:E3:83:49:20:46:F4:79:27:39:E2:48:C1
Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Certificate serial: 3031554B3BB6ED36310ECABD2B1A31AC629395D0
Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e39352e302f32342d3234203d3e203239383032.roa
Signing time: Tue 19 Mar 2024 15:05:14 +0000
ROA not before: Tue 19 Mar 2024 15:00:14 +0000
ROA not after: Tue 18 Mar 2025 15:05:14 +0000
asID: 29802
IP address blocks: 213.139.95.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.mft
rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Apr 2024 19:05:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:31:55:4b:3b:b6:ed:36:31:0e:ca:bd:2b:1a:31:ac:62:93:95:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Validity
Not Before: Mar 19 15:00:14 2024 GMT
Not After : Mar 18 15:05:14 2025 GMT
Subject: CN=DBE0E8624AB84190E383492046F4792739E248C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:54:55:ec:67:9c:b5:bf:5e:f3:c4:86:be:93:
53:c3:34:09:0c:e1:c7:33:b5:ef:b4:b4:28:02:7f:
2c:44:8d:71:d0:0e:3d:e4:c9:4c:e1:76:65:ee:0b:
b9:ad:81:60:ce:3a:e9:7d:c9:f1:5a:de:7e:b0:fb:
d3:24:72:ba:8e:8f:97:b0:92:02:c5:34:71:5e:68:
07:ef:09:35:0b:f1:ce:36:29:d0:a6:4b:8f:bb:07:
8a:4f:f0:58:93:f2:80:fc:e3:2d:a2:46:53:20:f0:
95:1e:a4:c1:1d:b0:b8:df:dd:35:95:de:f2:e5:c9:
ed:bc:2b:03:eb:b1:0b:6a:f8:f9:a7:87:4f:fa:ca:
55:ac:d9:fb:a6:e0:93:ed:bd:e1:22:4e:03:7d:98:
6f:d6:7f:2a:9a:44:ce:89:97:f0:95:f2:f3:d6:b0:
5b:49:0b:2a:55:7e:86:6d:53:f8:52:84:f6:3b:35:
d1:d9:02:07:3d:67:5d:97:7e:78:4b:53:37:62:c1:
e3:c1:bc:5d:84:dd:a7:7c:91:83:ea:24:18:f9:7e:
38:41:9b:2b:92:ac:68:95:b6:ce:cf:08:f4:ae:6c:
c3:79:78:1a:ab:f1:4d:d3:fa:e8:f0:4b:e4:98:b3:
57:53:a3:4f:34:8a:cf:8d:69:89:2d:f2:73:80:f7:
7f:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:E0:E8:62:4A:B8:41:90:E3:83:49:20:46:F4:79:27:39:E2:48:C1
X509v3 Authority Key Identifier:
keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e39352e302f32342d3234203d3e203239383032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.95.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:f8:01:1a:6a:91:7a:a7:42:b4:05:83:00:f7:ae:87:56:73:
56:51:ba:45:47:f1:64:db:ac:fb:19:53:8d:76:bd:56:b8:de:
4c:68:14:de:f6:85:ec:b3:3b:db:b4:0e:2c:04:b8:c7:b3:a8:
50:7c:d9:37:35:15:70:dd:e6:76:8d:21:09:7b:41:f2:29:7a:
3f:87:f6:bd:5f:b6:66:08:fc:36:b1:72:9a:e1:98:81:e7:ae:
2a:5c:e5:c4:ec:47:d5:ce:1d:1f:d4:1a:ad:8d:67:ae:5f:4a:
8a:83:1f:ef:29:e6:b7:81:8e:41:b5:ed:d8:e2:90:80:c3:21:
cc:c8:70:c2:d5:3e:d2:31:a2:50:06:c5:df:fd:72:9d:04:48:
83:77:84:a4:01:d6:43:14:52:a5:ef:dd:fe:35:0b:fd:a2:f4:
f9:e9:89:87:91:cd:35:e7:cb:7a:3b:5b:5a:e9:40:57:71:12:
1d:2d:f9:e7:18:60:de:97:e7:66:c6:50:ad:73:ae:e7:dd:e5:
c2:63:77:ba:13:43:db:ce:4d:96:3b:0b:c2:3d:c2:30:5f:e6:
4b:a3:40:da:27:ad:71:81:c9:2f:df:e9:ec:40:23:8f:d6:b5:
68:05:f0:d8:9d:0c:c0:6d:d6:1f:a8:ee:7e:c2:18:25:d6:dd:
33:94:7b:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 01:22:45 2024 by rpki-client on console-fra.rpki-client.org