Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/3139332e39332e3135332e302f32342d3234203d3e203631333137.roa
File: 3139332e39332e3135332e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: f6JGNjZsAgaozmDw79IJKGiOd+NS/amYN159buCKF+w=
Subject key identifier: 90:81:65:C5:0D:8C:2B:3A:80:33:75:18:51:01:18:AC:64:8C:24:72
Certificate issuer: /CN=f29fbab4db867f6bd9a7eff6aa55d98c162e1aad
Certificate serial: 5715F924CD86B1F04C131C7BD1F4A43D0AE38F99
Authority key identifier: F2:9F:BA:B4:DB:86:7F:6B:D9:A7:EF:F6:AA:55:D9:8C:16:2E:1A:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/3139332e39332e3135332e302f32342d3234203d3e203631333137.roa
Signing time: Tue 06 Feb 2024 11:36:54 +0000
ROA not before: Tue 06 Feb 2024 11:31:54 +0000
ROA not after: Tue 04 Feb 2025 11:36:54 +0000
asID: 61317
IP address blocks: 193.93.153.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl
rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft
rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:15:f9:24:cd:86:b1:f0:4c:13:1c:7b:d1:f4:a4:3d:0a:e3:8f:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f29fbab4db867f6bd9a7eff6aa55d98c162e1aad
Validity
Not Before: Feb 6 11:31:54 2024 GMT
Not After : Feb 4 11:36:54 2025 GMT
Subject: CN=908165C50D8C2B3A80337518510118AC648C2472
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:a8:ff:a7:04:43:27:71:a3:f8:a0:44:e8:24:
62:88:15:e0:d2:09:f8:da:79:95:97:6f:7f:a8:7f:
76:06:d6:5a:44:77:f5:d8:88:f1:ba:5c:cb:3a:a5:
6b:7b:55:9e:ac:ea:f0:1f:dd:28:f0:6f:39:7b:09:
a0:88:ee:c8:e7:94:0f:b6:43:1b:e2:1b:1b:bb:0b:
70:7d:40:c7:e4:88:dd:1f:57:af:4f:ad:8c:2e:bb:
19:26:88:a1:b3:77:ff:5f:4f:6f:fa:cc:be:72:81:
86:e8:3d:d9:a7:6d:ab:81:ee:2c:d4:dc:8e:bf:b8:
a3:fc:40:96:d9:b7:0d:fb:07:45:ae:16:b2:6f:4e:
b1:5d:73:14:6d:0b:b0:93:91:91:30:75:a2:34:f9:
36:e4:28:74:dd:a2:e0:6b:28:2b:bd:1e:9d:5e:f8:
05:f9:df:b3:7b:25:54:54:02:e3:bd:f0:e1:55:37:
ca:0f:4f:19:47:6a:53:17:b9:f0:57:94:45:e0:57:
68:c4:81:6b:bd:8e:f5:a7:4f:4c:90:da:99:47:1e:
a1:6e:8b:58:db:fe:91:8f:e2:62:b2:dc:36:af:33:
8c:73:65:b8:c0:26:56:ff:81:db:98:fa:a7:44:cb:
53:f2:f4:0c:eb:95:b5:27:20:43:95:f4:34:cf:59:
28:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:81:65:C5:0D:8C:2B:3A:80:33:75:18:51:01:18:AC:64:8C:24:72
X509v3 Authority Key Identifier:
keyid:F2:9F:BA:B4:DB:86:7F:6B:D9:A7:EF:F6:AA:55:D9:8C:16:2E:1A:AD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/3139332e39332e3135332e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.93.153.0/24
Signature Algorithm: sha256WithRSAEncryption
85:3c:d6:cd:27:73:d5:96:ec:71:45:7d:64:16:a4:cd:75:8c:
7c:5d:ba:9c:29:69:3a:e6:57:87:c8:df:d0:d8:d7:05:cb:18:
01:5c:4a:cf:f0:c0:ea:ee:bb:97:c3:72:62:25:d9:98:b4:60:
b2:c3:6a:01:7e:f1:21:bc:47:f4:91:d2:11:5f:41:39:2a:be:
30:db:98:f9:ea:75:12:1a:cd:74:ea:b0:43:d4:52:1d:56:d3:
16:d9:97:c2:8a:f0:73:7c:e9:22:e2:57:a1:d7:be:01:bc:68:
01:67:ad:3d:38:c7:ee:80:5c:5b:e6:99:23:65:a7:12:8f:ef:
e8:25:fa:4c:f4:3e:18:fa:06:d7:54:1a:f1:f0:eb:c1:7f:58:
c2:28:e6:62:d2:90:db:e1:27:15:40:99:48:0f:e6:14:29:9b:
c9:51:7b:83:2b:40:30:6d:14:75:25:00:a0:5e:e3:9c:2a:01:
89:1b:ac:16:84:73:a6:81:23:96:9d:47:c9:a4:f4:4c:89:08:
04:66:b5:ed:7a:31:f7:e8:3c:ca:74:80:6e:4e:db:49:d3:ae:
ad:93:b4:95:3a:a5:87:5f:95:fe:e2:93:74:45:d0:79:ce:2a:
32:10:15:e2:59:ad:82:52:cd:4d:96:8a:a5:d8:1f:73:f3:07:
66:ab:0a:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:53:17 2024 by rpki-client on console-ams.rpki-client.org