Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/3139332e33372e3233362e302f32342d3234203d3e203631333137.roa
File: 3139332e33372e3233362e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: vK1uTf3qqZSPswjNCNPaGtlQPbroJTPr1O6doLBqosU=
Subject key identifier: 3B:D9:74:ED:9D:13:8B:A6:3D:82:38:E9:F2:5C:B2:65:5E:4D:CC:46
Certificate issuer: /CN=9f0d24c855eee00fe4abf3903c6e8fcc7083ed4d
Certificate serial: 446464E101CF72EBD6F3585A7991C73FE3C76FBF
Authority key identifier: 9F:0D:24:C8:55:EE:E0:0F:E4:AB:F3:90:3C:6E:8F:CC:70:83:ED:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nw0kyFXu4A_kq_OQPG6PzHCD7U0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/3139332e33372e3233362e302f32342d3234203d3e203631333137.roa
Signing time: Wed 21 Jun 2023 08:10:55 +0000
ROA not before: Wed 21 Jun 2023 08:05:55 +0000
ROA not after: Wed 19 Jun 2024 08:10:55 +0000
asID: 61317
IP address blocks: 193.37.236.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/9F0D24C855EEE00FE4ABF3903C6E8FCC7083ED4D.crl
rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/9F0D24C855EEE00FE4ABF3903C6E8FCC7083ED4D.mft
rsync://rpki.ripe.net/repository/DEFAULT/nw0kyFXu4A_kq_OQPG6PzHCD7U0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 23:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:64:64:e1:01:cf:72:eb:d6:f3:58:5a:79:91:c7:3f:e3:c7:6f:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f0d24c855eee00fe4abf3903c6e8fcc7083ed4d
Validity
Not Before: Jun 21 08:05:55 2023 GMT
Not After : Jun 19 08:10:55 2024 GMT
Subject: CN=3BD974ED9D138BA63D8238E9F25CB2655E4DCC46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:79:3b:31:b3:6c:99:65:8d:64:c9:1e:8e:77:
19:1a:14:42:e3:de:c6:a2:5e:83:94:b9:ed:ea:49:
52:a0:93:54:c6:21:ec:0f:93:53:d4:d4:f6:f1:44:
6f:4a:d4:46:3d:26:56:f7:f1:c0:98:ab:97:3b:c6:
1b:04:7a:63:12:c7:4a:91:c1:45:ab:a2:21:e4:f2:
cd:27:8c:f1:95:89:20:ad:3d:9a:1c:1f:3f:31:68:
13:83:19:54:f1:94:dd:97:6a:c3:3f:99:39:b8:30:
de:64:57:bb:8d:53:2b:9e:76:ca:27:4e:68:f9:37:
e6:03:27:1c:7b:3d:bc:f7:61:9c:e3:6c:9e:ed:19:
45:cc:af:36:21:75:a0:b0:27:fe:70:f9:2e:72:c0:
a8:04:80:d8:d9:fb:83:d5:e6:a9:31:b0:18:7f:d4:
89:a6:35:03:6e:66:eb:fc:65:05:de:52:b8:b2:83:
a8:f0:a0:76:f5:30:18:e8:8c:ce:44:ba:59:44:e4:
59:1a:a9:83:7d:1a:95:32:e0:76:79:ac:d6:6f:de:
1d:a0:8d:02:d6:be:6d:67:9f:d3:51:db:c0:1c:1f:
ae:92:1c:be:db:d5:1f:e3:24:5b:ca:f1:4f:fe:58:
e7:6c:63:f6:5e:c7:8d:e3:7e:3f:0b:77:13:d0:eb:
7e:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:D9:74:ED:9D:13:8B:A6:3D:82:38:E9:F2:5C:B2:65:5E:4D:CC:46
X509v3 Authority Key Identifier:
keyid:9F:0D:24:C8:55:EE:E0:0F:E4:AB:F3:90:3C:6E:8F:CC:70:83:ED:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/9F0D24C855EEE00FE4ABF3903C6E8FCC7083ED4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nw0kyFXu4A_kq_OQPG6PzHCD7U0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/3139332e33372e3233362e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.37.236.0/24
Signature Algorithm: sha256WithRSAEncryption
32:43:95:ea:8a:7a:c0:c6:11:9e:47:02:a4:d2:93:0f:af:36:
bd:02:20:7a:8c:f8:cc:d7:3e:dc:35:9c:c8:27:d5:30:9e:6d:
73:7c:a3:2a:72:12:eb:be:2b:e7:fc:ec:36:43:0d:b0:51:98:
ae:c7:89:b5:28:9a:3a:e3:52:2c:80:3c:ce:c4:04:4a:ba:a7:
a3:d2:8e:d3:80:95:30:dd:f6:0b:3c:20:66:cb:a9:0f:7b:a5:
21:d5:43:70:c4:56:7f:81:49:56:07:56:e8:a2:26:f3:11:f0:
47:ec:fd:c6:f8:da:10:cb:00:39:3b:89:32:df:cc:b7:3c:95:
78:de:1b:b6:f1:fc:9b:c2:65:b9:85:6d:ab:dd:0e:78:b4:fa:
fe:3f:c6:a4:76:e6:be:55:ef:a2:9b:e1:35:32:5d:36:9b:77:
f0:61:89:86:a4:05:df:29:44:ab:e7:29:1d:06:d2:09:11:08:
55:31:7a:d2:2c:ba:56:75:a8:ba:7c:21:f7:2b:f4:01:da:b6:
d8:02:87:84:29:4c:da:1c:b8:3d:09:f7:19:79:3a:ca:f1:b5:
3a:78:1a:9c:11:e8:1a:92:60:e9:7a:98:e7:f6:0c:50:05:aa:
98:83:fd:cc:fa:c4:36:fc:90:92:29:24:f4:ff:65:30:5a:99:
d1:ce:c0:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 05:47:01 2024 by rpki-client on console-ams.rpki-client.org