Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139332e3230332e3138342e302f32322d3234203d3e203437353833.roa
File: 3139332e3230332e3138342e302f32322d3234203d3e203437353833.roa (raw, json)
Hash identifier: Pydqk1vQZKtPAeqI3eJE9gAT6AcgGpUI7IXtWw0+rDU=
Subject key identifier: A4:D2:02:97:57:74:7A:94:40:AD:3A:C6:A0:9A:6F:91:85:6B:FB:AE
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 1C09F5EEA5FC26252C5C9B679034CD4C76322EB3
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139332e3230332e3138342e302f32322d3234203d3e203437353833.roa
Signing time: Fri 15 Sep 2023 07:08:45 +0000
ROA not before: Fri 15 Sep 2023 07:03:45 +0000
ROA not after: Fri 13 Sep 2024 07:08:45 +0000
asID: 47583
IP address blocks: 193.203.184.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 08:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:09:f5:ee:a5:fc:26:25:2c:5c:9b:67:90:34:cd:4c:76:32:2e:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Sep 15 07:03:45 2023 GMT
Not After : Sep 13 07:08:45 2024 GMT
Subject: CN=A4D2029757747A9440AD3AC6A09A6F91856BFBAE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:aa:cb:5c:7d:7f:5d:1d:4c:92:98:d2:fe:11:
76:04:9e:66:72:fb:b9:4c:a6:41:84:b2:d8:0c:a0:
c9:be:8d:a1:6c:6f:1a:00:8a:59:6c:b8:cf:50:93:
64:c7:76:2f:62:e3:d7:ff:4b:95:6c:4d:e2:c2:ef:
d3:37:38:e1:cc:6b:1e:a4:30:10:9d:f8:f3:1d:ab:
c5:96:1f:48:e8:50:15:1d:da:b9:f7:9d:90:72:17:
70:e7:5d:9d:a9:fd:1a:be:37:1f:36:20:1a:5f:e7:
f3:a5:f1:6a:15:4e:4f:e6:a4:e9:68:8a:57:ef:86:
38:20:19:69:82:97:dd:d7:a0:3c:82:60:c1:f7:e9:
85:a2:c4:47:09:6a:cd:c2:0f:a9:6e:c6:e3:6d:9a:
2b:6d:de:69:6d:8a:77:e9:76:e5:33:5a:7b:3f:3d:
c8:49:e6:09:3a:cd:0f:81:b5:af:2c:23:c8:f9:2b:
3e:04:af:ae:b8:f2:3d:b9:0e:0d:52:dd:37:d3:1e:
fa:27:6c:98:75:2e:d8:af:2a:c5:38:e1:4b:76:b9:
c6:65:da:8b:3e:6e:18:b4:97:4d:fb:70:e7:c7:eb:
ae:67:2b:8c:4f:5c:a1:f8:e4:a6:47:43:85:b0:3f:
04:0f:48:32:e1:ba:77:1b:d3:e5:8a:cd:49:26:c0:
d9:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:D2:02:97:57:74:7A:94:40:AD:3A:C6:A0:9A:6F:91:85:6B:FB:AE
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139332e3230332e3138342e302f32322d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.203.184.0/22
Signature Algorithm: sha256WithRSAEncryption
05:43:a0:50:e2:dc:7e:85:21:9d:eb:e0:59:6f:ca:c7:1d:81:
a2:22:0e:91:59:22:98:6e:1c:9c:aa:9e:17:6a:bd:ff:9a:17:
14:ef:29:3f:bb:17:99:e4:f8:a5:ae:b8:00:7e:11:62:59:8d:
70:05:a1:32:0d:7d:f7:fd:f0:12:97:18:08:ed:c0:fd:3f:93:
9b:73:c7:85:86:6f:cb:0e:07:9b:ee:39:a3:2f:de:03:76:02:
4e:15:15:47:56:79:59:a2:3d:5d:ce:8f:9d:c3:44:0b:9e:83:
3a:58:4a:c7:d4:31:1a:ce:e6:0d:2e:25:ea:67:a6:c4:6f:d4:
66:6a:02:da:8a:69:b7:03:d6:71:aa:5b:a5:c2:7c:8f:ec:ea:
6f:9e:e2:50:46:4e:a8:1e:a8:80:31:f0:8a:29:6c:c0:e8:69:
5d:32:87:bd:cc:cd:e1:bd:dd:a6:ed:35:2a:2f:31:7e:9d:d6:
79:49:b8:83:78:5c:81:0b:46:dc:b5:51:8f:3e:a3:20:a2:04:
4c:a3:80:49:bf:94:b7:13:75:3c:57:7d:67:c7:76:d5:d2:4b:
c3:43:27:b9:e6:b2:9e:f2:8d:e3:f0:69:c2:92:d2:c6:09:29:
e7:bc:4b:bb:e1:ac:c4:a1:e0:42:04:51:a1:7d:42:3a:dd:80:
8b:ef:04:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 14:35:47 2024 by rpki-client on console-fra.rpki-client.org