Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139352e3137392e3139332e302f32342d3234203d3e203437353833.roa
File: 3139352e3137392e3139332e302f32342d3234203d3e203437353833.roa (raw, json)
Hash identifier: ul0VphH+Pep1x4VU1PMvdD20UqeD0xXOYI8YGl1GxwU=
Subject key identifier: 7E:C7:F6:9F:0F:10:E4:82:BF:00:90:E6:5C:20:51:C9:CA:E3:67:99
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 2AE0A8EE1F6413DF1435750EEB737A106C9B7630
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139352e3137392e3139332e302f32342d3234203d3e203437353833.roa
Signing time: Mon 26 Feb 2024 08:53:16 +0000
ROA not before: Mon 26 Feb 2024 08:48:16 +0000
ROA not after: Mon 24 Feb 2025 08:53:16 +0000
asID: 47583
IP address blocks: 195.179.193.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 08:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:e0:a8:ee:1f:64:13:df:14:35:75:0e:eb:73:7a:10:6c:9b:76:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Feb 26 08:48:16 2024 GMT
Not After : Feb 24 08:53:16 2025 GMT
Subject: CN=7EC7F69F0F10E482BF0090E65C2051C9CAE36799
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:8a:08:48:72:3a:e1:38:2a:75:75:18:79:8c:
a7:cc:00:5d:5f:c4:07:60:1f:86:09:5f:d6:ba:d5:
e4:96:f4:32:5a:e6:b6:38:ed:bc:e6:17:ea:67:92:
e6:6f:43:da:98:e4:c4:c9:8d:ae:47:25:d7:d0:13:
44:c6:75:4e:de:60:48:68:74:f8:d4:0f:09:a8:36:
23:13:53:40:72:0a:8b:b5:7c:31:e9:45:a7:48:cc:
2c:d2:6c:c5:2c:22:86:e8:ec:ef:2d:8a:6a:57:5b:
42:43:88:3e:1c:bb:56:b7:f7:9b:2c:99:5f:b6:cc:
97:47:59:e7:7c:6e:37:21:19:61:ac:59:09:6f:b6:
ee:51:90:89:16:3c:96:9f:66:b9:8c:b6:55:47:8f:
a8:93:ce:d3:a9:f3:47:63:20:8f:57:d8:10:50:66:
29:0a:d2:59:ce:9f:c6:d1:20:0b:32:6a:3e:d3:69:
28:1b:63:1e:6c:39:0a:ab:f6:b4:de:13:31:d7:e1:
a7:0d:9c:03:6c:54:d4:21:80:fb:87:f9:05:df:f7:
b9:0d:ce:3b:c5:65:e4:42:aa:65:ce:b7:d6:a7:e3:
f5:74:ac:d7:28:70:dc:cb:d0:38:f6:a6:1d:c3:80:
ca:c9:db:fe:e6:69:d6:90:fa:ec:f5:d2:8a:87:21:
b1:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:C7:F6:9F:0F:10:E4:82:BF:00:90:E6:5C:20:51:C9:CA:E3:67:99
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139352e3137392e3139332e302f32342d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.179.193.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:b9:1b:4d:45:f0:da:ca:ba:4e:e9:cb:44:34:09:cb:b9:fa:
d5:c3:9e:50:f5:31:ef:50:a9:fb:fb:03:3c:ab:40:dc:6e:f9:
89:49:ba:63:84:b1:d3:ea:fa:a5:fc:07:69:86:c2:0b:ae:16:
64:0e:f1:04:28:28:3e:01:77:02:94:36:b9:ac:ee:b6:a8:62:
07:a4:87:7f:b2:9e:64:72:60:38:5f:8e:05:de:3f:11:f8:10:
ee:dd:66:9f:1a:a8:24:3d:0c:a6:2c:fa:5f:32:b1:53:e4:41:
a9:05:51:ee:ff:a4:44:26:05:b1:48:fc:fc:0c:bf:80:8b:e1:
b6:bc:50:37:5a:c3:d8:91:09:4b:8f:2a:f7:75:96:bd:1f:16:
fa:78:34:a2:cc:93:d3:7c:0e:9a:0a:0c:a9:51:ce:82:41:9f:
b1:8c:6c:83:c8:98:61:cc:97:eb:ec:0d:10:9e:0f:dc:66:9b:
21:63:7a:06:f1:1e:d0:b7:96:2b:b5:4d:79:4a:7c:fa:11:f0:
73:c0:d9:d7:f7:c4:6f:d4:9a:55:1c:ad:01:45:3d:be:64:71:
1d:b2:cf:7d:24:23:fb:2a:f2:ac:25:8a:3d:bb:41:e1:44:2a:
23:72:bb:dc:83:5f:76:32:db:6f:8c:50:88:ae:09:78:83:01:
76:13:7e:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 14:35:47 2024 by rpki-client on console-fra.rpki-client.org