Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/3139342e33312e3139342e302f32342d3234203d3e203339333638.roa
File: 3139342e33312e3139342e302f32342d3234203d3e203339333638.roa (raw, json)
Hash identifier: rNezgy9VuH2M3pe+gxCK3+anK7gtt6+g4EvSTSeGD3M=
Subject key identifier: 2D:75:22:69:4F:E3:43:E6:5B:FE:80:22:0F:02:06:6A:31:64:04:C8
Certificate issuer: /CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6
Certificate serial: 734AE311370E217D1FA1F6DF66249D1446522BB7
Authority key identifier: A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/3139342e33312e3139342e302f32342d3234203d3e203339333638.roa
Signing time: Fri 22 Dec 2023 08:05:08 +0000
ROA not before: Fri 22 Dec 2023 08:00:08 +0000
ROA not after: Fri 20 Dec 2024 08:05:08 +0000
asID: 39368
IP address blocks: 194.31.194.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/A9420E6C6F24B0E422DA7FE7E420EF50354F45C6.crl
rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/A9420E6C6F24B0E422DA7FE7E420EF50354F45C6.mft
rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 15 May 2024 22:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:4a:e3:11:37:0e:21:7d:1f:a1:f6:df:66:24:9d:14:46:52:2b:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6
Validity
Not Before: Dec 22 08:00:08 2023 GMT
Not After : Dec 20 08:05:08 2024 GMT
Subject: CN=2D7522694FE343E65BFE80220F02066A316404C8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:79:21:58:d3:6e:cb:2d:6e:39:4d:e4:01:4c:
93:cd:9f:cf:f1:d5:a2:c8:68:6b:36:e6:7e:63:b5:
43:66:a2:b4:7e:ef:38:26:2a:1f:67:59:36:9b:f8:
7e:33:4b:74:8a:9f:f5:49:3e:c3:72:6b:49:c0:ea:
6a:fd:28:52:73:27:db:fe:b6:35:05:90:0e:40:8e:
eb:44:d6:0c:30:05:f7:90:43:a1:70:7d:a8:da:ca:
46:fc:cc:a3:1d:b3:27:cf:b1:90:29:62:50:18:ab:
50:f9:3d:87:1c:ad:00:b3:7d:f4:c6:b1:da:d3:0f:
0b:9d:5c:a4:60:e4:94:cc:a1:ea:3a:29:a9:5b:13:
0f:9d:19:92:9c:5c:c9:3f:32:a6:39:3f:06:03:a5:
1c:3c:16:b6:dc:a9:48:f8:1c:fa:9b:24:c5:74:45:
15:58:70:84:6f:c1:3c:eb:73:2d:2a:af:cd:c8:48:
ae:92:18:a5:4a:5e:fb:78:b3:9c:29:d5:ee:23:25:
cb:38:89:b6:8f:b1:e8:90:b1:be:1c:92:e9:a2:67:
a8:f4:b7:68:25:af:cf:ff:6f:15:8c:79:6c:fb:c8:
1a:95:4d:6c:73:fd:dc:12:9f:c4:11:79:88:3b:95:
55:a5:83:32:cc:6b:ac:92:62:b3:9d:0f:0a:43:c4:
a1:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:75:22:69:4F:E3:43:E6:5B:FE:80:22:0F:02:06:6A:31:64:04:C8
X509v3 Authority Key Identifier:
keyid:A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/A9420E6C6F24B0E422DA7FE7E420EF50354F45C6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/3139342e33312e3139342e302f32342d3234203d3e203339333638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.31.194.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:26:a8:68:8e:a9:b1:07:31:e0:94:5d:f1:33:18:47:8d:69:
6d:8e:59:2a:ca:8c:79:9b:e1:fc:00:d8:f7:f0:65:ff:b9:86:
68:59:ca:dc:52:95:5b:38:46:f0:50:d9:a5:97:a0:3a:30:95:
df:17:41:4f:52:da:19:c2:5f:47:de:0e:4e:9e:20:18:c3:67:
f3:da:67:a0:50:ed:a4:33:19:c0:ca:2f:21:33:6a:21:d2:10:
02:d2:0f:b3:8a:99:57:0e:64:e2:04:33:27:69:ee:b4:40:1f:
69:0c:97:cc:26:1f:f1:bc:6b:f9:d0:e4:0c:a1:4f:ac:bf:68:
2f:b8:81:56:e8:ab:dd:35:f0:b4:a6:3e:5e:ca:3c:b9:cf:b4:
ce:d0:a5:7b:50:25:89:bf:2c:55:92:b0:66:04:76:c3:74:b3:
d8:8b:fb:85:ac:ef:eb:65:a9:48:59:f6:cb:57:aa:d5:b0:68:
09:3e:4d:0e:3a:ab:bc:d8:5a:ca:69:ba:6f:00:8c:b0:0f:e0:
f8:f6:2f:ae:0a:bc:98:77:e7:60:bf:56:bc:27:a6:cf:7a:8c:
97:ae:ee:6b:fe:34:6c:45:97:ef:6e:7a:9e:8b:54:95:0d:4a:
f7:86:d7:5b:2d:66:fb:15:8d:59:79:94:68:0b:d1:28:be:8a:
88:4e:38:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 15 03:59:44 2024 by rpki-client on console-fra.rpki-client.org