Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/39332e3131352e3234382e302f32332d3234203d3e203631333137.roa
File: 39332e3131352e3234382e302f32332d3234203d3e203631333137.roa (raw, json)
Hash identifier: Curjca0MKCcpC5gKiBHGUyvtSUkwf8HFEXbSmcdzRVg=
Subject key identifier: EF:40:29:A7:CC:2E:AE:29:9C:FD:70:45:4B:52:82:7C:74:C9:6C:EA
Certificate issuer: /CN=ed9edb2a15871785fbae38e23c38820dbfa2cca4
Certificate serial: 351E43A83B97B04F2A4706CD2C4A41A851C1FCD9
Authority key identifier: ED:9E:DB:2A:15:87:17:85:FB:AE:38:E2:3C:38:82:0D:BF:A2:CC:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/39332e3131352e3234382e302f32332d3234203d3e203631333137.roa
Signing time: Tue 07 Nov 2023 09:01:31 +0000
ROA not before: Tue 07 Nov 2023 08:56:31 +0000
ROA not after: Tue 05 Nov 2024 09:01:31 +0000
asID: 61317
IP address blocks: 93.115.248.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.crl
rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.mft
rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:1e:43:a8:3b:97:b0:4f:2a:47:06:cd:2c:4a:41:a8:51:c1:fc:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed9edb2a15871785fbae38e23c38820dbfa2cca4
Validity
Not Before: Nov 7 08:56:31 2023 GMT
Not After : Nov 5 09:01:31 2024 GMT
Subject: CN=EF4029A7CC2EAE299CFD70454B52827C74C96CEA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:32:1e:de:ee:bd:25:c0:ea:33:c3:3e:5c:33:
53:ec:73:f7:5d:89:0d:56:e0:e0:5c:be:06:d0:2b:
ec:f8:ba:66:12:01:f7:d9:26:08:d7:b4:7b:c2:37:
a2:8c:9a:39:8b:ea:2f:fa:fd:bd:63:fe:6e:0d:6b:
9a:63:aa:6e:1d:bf:57:d8:30:75:57:de:a8:90:0a:
51:cd:11:db:d1:aa:a1:a5:81:5e:e0:63:b8:56:5a:
d8:8a:d1:9f:e2:3d:a2:e2:29:0f:f1:ba:c7:88:3e:
86:26:e6:53:cb:6e:c4:b1:a6:09:31:5e:b8:24:09:
9b:59:9d:8f:29:14:58:8d:98:2f:41:89:67:c6:21:
11:0a:b4:ff:09:8f:7f:ea:38:9c:2a:fe:23:06:8d:
7b:b4:79:c8:07:e5:1b:48:f6:32:48:e1:02:76:02:
bf:5d:fe:3b:bb:3d:8a:33:63:b3:fb:6a:82:88:90:
b1:7b:c1:fd:10:7f:01:d4:41:a9:53:89:dd:20:a3:
92:05:65:4e:00:fd:21:58:0d:ef:57:f7:8b:ff:e0:
aa:ac:c8:db:fe:de:93:b6:44:39:b7:c7:7e:5e:ff:
63:2f:0e:9e:5a:ed:c9:52:db:f2:30:dc:36:b9:99:
22:51:7c:bd:28:16:69:30:06:dc:40:0d:c9:08:c2:
43:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:40:29:A7:CC:2E:AE:29:9C:FD:70:45:4B:52:82:7C:74:C9:6C:EA
X509v3 Authority Key Identifier:
keyid:ED:9E:DB:2A:15:87:17:85:FB:AE:38:E2:3C:38:82:0D:BF:A2:CC:A4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/39332e3131352e3234382e302f32332d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.115.248.0/23
Signature Algorithm: sha256WithRSAEncryption
73:fa:ef:16:b6:32:72:8e:36:ee:4e:80:54:6d:d2:d8:93:5f:
1b:9d:29:04:02:c8:da:e4:41:bf:4a:92:2b:1c:b3:b3:b3:f0:
d8:18:c9:22:ac:db:07:95:d2:25:17:0e:fc:c0:bb:26:ea:ec:
28:c7:28:38:33:f0:c1:78:c5:3a:ef:e0:d5:3f:87:7a:e2:df:
f1:0f:22:c0:19:38:37:1b:8c:32:8b:36:9f:ed:35:e3:2a:ad:
a7:30:7a:d7:57:b2:3d:bf:95:5c:44:09:0b:60:a4:a9:3c:50:
47:81:db:c3:cf:4d:9c:e6:c7:3b:26:ec:c7:98:f2:c9:c4:9c:
3c:ce:62:41:d4:fd:fb:98:dc:18:d0:38:f6:24:c6:52:2d:2f:
4a:45:39:d4:06:15:f8:4d:80:7b:0a:8b:9c:a6:54:cd:7c:13:
7d:bb:a7:c8:44:da:7e:32:1c:d9:b0:34:af:08:cf:f7:16:14:
e9:38:22:7c:cf:0f:46:f6:0b:6f:4f:60:6e:34:b0:56:a4:50:
4a:a4:e7:3e:ff:30:b1:48:aa:c6:73:0c:65:30:26:88:30:33:
11:f2:1a:aa:06:be:28:a6:e3:42:33:17:4c:aa:e2:77:d0:61:
ff:18:a7:0f:24:11:d6:9c:25:5a:f2:31:e1:2f:3c:1e:a5:aa:
62:27:79:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:14:13 2024 by rpki-client on console-ams.rpki-client.org