Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139332e3134322e3230332e302f32342d3234203d3e20313336373837.roa
File: 3139332e3134322e3230332e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: X+mM8l/h5Ai4RrQizr8TPyg0Bqu66nS90ApISrxLsKM=
Subject key identifier: 9D:D5:1E:5A:45:6F:A7:47:19:B3:04:E9:63:13:9C:06:AD:B0:7E:EE
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 2A49A9C3D41B0D37BF8DC6A77102477830FA54BB
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139332e3134322e3230332e302f32342d3234203d3e20313336373837.roa
Signing time: Mon 20 May 2024 17:03:44 +0000
ROA not before: Mon 20 May 2024 16:58:44 +0000
ROA not after: Mon 19 May 2025 17:03:44 +0000
asID: 136787
IP address blocks: 193.142.203.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Nov 2024 14:00:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:49:a9:c3:d4:1b:0d:37:bf:8d:c6:a7:71:02:47:78:30:fa:54:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: May 20 16:58:44 2024 GMT
Not After : May 19 17:03:44 2025 GMT
Subject: CN=9DD51E5A456FA74719B304E963139C06ADB07EEE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:3b:47:0f:55:7e:d4:36:87:fa:39:e9:dd:76:
9c:f1:46:3d:ab:c4:c5:67:49:53:4e:b2:27:15:4b:
d1:0a:41:0e:ce:c4:55:c8:51:4b:cb:06:0d:16:ed:
2a:59:b9:db:c5:ba:89:e4:ef:06:dc:84:1f:64:eb:
21:22:aa:01:51:46:68:51:91:07:d5:91:ee:b4:4a:
07:a0:68:ab:96:34:30:ca:1e:bb:a4:35:c1:25:fe:
68:d6:f9:56:65:64:3b:1a:62:23:f2:38:39:c0:6f:
30:01:fa:29:f5:d6:5f:51:56:49:e5:e1:31:89:1a:
ec:7c:c5:74:79:b0:82:48:81:f2:9a:7f:fb:d7:59:
db:85:a3:c0:d0:34:e2:f5:49:40:ee:41:61:3e:c8:
c2:b7:47:76:96:22:34:6c:60:2c:87:50:fe:1c:63:
3f:44:78:b5:f6:10:8a:94:c4:24:a4:1d:e3:3d:9d:
d4:f2:6f:2b:04:60:1f:72:a0:66:7c:f5:84:d1:30:
c8:10:68:10:bb:fd:68:81:be:31:1d:8d:14:e6:8d:
ee:94:9b:52:2d:a8:a2:f6:30:b4:5f:bb:0d:06:e1:
05:31:b2:6a:c9:76:1c:fb:14:56:96:a9:f0:27:65:
2b:c2:95:6c:ea:c1:ba:b8:44:0c:f4:6d:2d:25:38:
66:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:D5:1E:5A:45:6F:A7:47:19:B3:04:E9:63:13:9C:06:AD:B0:7E:EE
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139332e3134322e3230332e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.142.203.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:c1:51:d1:ff:81:4f:8d:8f:4f:c9:68:4b:fd:e8:ca:46:59:
f8:0a:af:d2:31:e8:fd:d9:15:ec:00:8f:f3:33:46:51:22:b8:
a1:0a:94:5f:58:00:32:f0:1c:61:04:bf:94:fc:84:6a:c6:ca:
ae:24:74:4c:6b:be:63:33:99:78:ab:09:36:52:d4:23:a5:90:
aa:ef:03:92:c9:94:33:14:55:ff:98:8a:ac:cd:53:fe:be:68:
a2:bf:f8:20:e7:79:0e:59:c3:32:62:20:b4:0b:73:86:a7:d9:
8a:bf:6f:19:62:58:0d:66:5a:9b:44:7a:fa:ba:43:b9:49:16:
e8:89:f3:df:15:84:6a:cd:38:6c:e4:c2:79:60:2d:3d:ba:fb:
84:5e:19:d3:cc:5d:5d:54:7f:3c:15:e0:bc:dd:90:99:74:3a:
a1:5d:2a:da:7a:7e:08:9e:b8:2b:9b:0b:ea:f2:1c:81:11:4b:
23:f9:a5:ac:c2:da:cf:93:56:c3:f8:f6:e5:92:6f:3a:fd:76:
e3:0e:e9:8a:c9:46:75:93:18:30:a9:ea:89:1b:87:31:f6:55:
97:e6:dd:12:68:3e:16:ed:cd:f8:1d:4f:1a:2a:0c:3f:bc:5b:
75:ee:09:ba:ca:fa:54:c7:74:50:4c:4a:34:31:cf:5d:61:94:
1f:46:3e:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 10 17:38:48 2024 by rpki-client on console-ams.rpki-client.org