Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/39312e3232392e3138302e302f32342d3234203d3e2036303739.roa
File: 39312e3232392e3138302e302f32342d3234203d3e2036303739.roa (raw, json)
Hash identifier: bCYrFGO5+3HokoUx2GJHt6aSIxx1pD6sGnDFjj+OxlU=
Subject key identifier: 7F:5D:3F:E6:56:4B:C4:D6:2A:36:5F:98:4B:18:BF:EB:40:D7:13:52
Certificate issuer: /CN=5aff13d5a71cfb0da38d8d3d81e13eaf40416a74
Certificate serial: 31243B059B3397B2EECC90E14578A7EFD9D4B8A2
Authority key identifier: 5A:FF:13:D5:A7:1C:FB:0D:A3:8D:8D:3D:81:E1:3E:AF:40:41:6A:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wv8T1acc-w2jjY09geE-r0BBanQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/39312e3232392e3138302e302f32342d3234203d3e2036303739.roa
Signing time: Sun 05 May 2024 14:05:16 +0000
ROA not before: Sun 05 May 2024 14:00:16 +0000
ROA not after: Sun 04 May 2025 14:05:16 +0000
asID: 6079
IP address blocks: 91.229.180.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.crl
rsync://rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.mft
rsync://rpki.ripe.net/repository/DEFAULT/Wv8T1acc-w2jjY09geE-r0BBanQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:24:3b:05:9b:33:97:b2:ee:cc:90:e1:45:78:a7:ef:d9:d4:b8:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5aff13d5a71cfb0da38d8d3d81e13eaf40416a74
Validity
Not Before: May 5 14:00:16 2024 GMT
Not After : May 4 14:05:16 2025 GMT
Subject: CN=7F5D3FE6564BC4D62A365F984B18BFEB40D71352
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:a5:c6:0f:3a:ea:e1:6a:84:c4:0a:65:8a:98:
2f:05:ca:77:c3:63:ba:ae:0b:30:d2:10:c4:27:82:
20:c1:db:4c:c3:9c:b0:69:10:bd:51:d5:ec:14:3b:
ac:34:e7:65:36:26:fc:fc:6c:76:6b:bf:4c:11:33:
d5:96:fd:33:66:f0:29:3c:5a:71:8e:33:f9:44:88:
b4:26:d8:b6:89:a4:57:d2:8b:78:a9:a7:da:18:ac:
ae:71:86:28:ad:17:3e:1c:2b:3d:1e:6e:b3:67:cb:
0e:53:04:ff:78:f2:03:21:31:2d:89:4d:d0:b3:a9:
e2:d8:eb:8c:ba:9f:9f:a6:5b:5f:c8:8b:77:d3:d9:
9d:59:a0:f1:f2:e5:dc:a4:09:3f:ee:6f:30:ed:59:
4a:31:7f:a7:b1:a2:4f:f0:d5:21:07:c9:98:46:59:
5f:47:59:5f:61:f9:f2:26:e4:5a:88:ba:86:18:32:
0e:3e:1b:53:e0:87:e5:15:8c:49:94:fb:59:10:81:
b7:81:e1:f9:a5:7b:7e:2f:f1:e2:54:45:41:22:89:
31:c0:28:ee:bc:22:76:09:25:f2:7e:df:a2:1a:b7:
54:97:03:ee:28:cd:d6:c5:ef:96:38:e0:99:ec:9d:
24:23:d4:02:9e:d3:23:e5:ed:7e:b1:1a:82:4d:40:
b7:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:5D:3F:E6:56:4B:C4:D6:2A:36:5F:98:4B:18:BF:EB:40:D7:13:52
X509v3 Authority Key Identifier:
keyid:5A:FF:13:D5:A7:1C:FB:0D:A3:8D:8D:3D:81:E1:3E:AF:40:41:6A:74
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wv8T1acc-w2jjY09geE-r0BBanQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/39312e3232392e3138302e302f32342d3234203d3e2036303739.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.229.180.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:72:66:23:39:0b:e5:c5:ee:95:a5:1d:15:42:8e:bb:6e:95:
07:be:77:68:18:4e:2c:4a:fb:0e:73:28:fb:63:f9:51:db:51:
7e:6c:f5:24:95:cf:6e:be:a2:8f:e7:05:bd:0d:22:f5:e1:b4:
d5:c5:f4:bd:f0:59:10:3a:42:92:86:48:fe:a1:f4:a3:df:e1:
e0:5b:50:d9:bb:72:20:16:ca:63:0b:12:a1:ea:0e:67:e1:98:
dc:ad:45:d4:ea:eb:0a:83:02:91:6d:c6:36:de:2c:94:4f:11:
f4:11:01:23:17:13:f4:a3:d8:0b:13:49:b1:58:54:23:96:1d:
fb:dd:cc:da:4d:bb:9e:50:69:1b:0e:89:91:f0:6b:6e:ac:67:
f1:52:8d:e2:f5:b8:d3:4d:d9:33:fe:1f:d5:de:28:bc:e0:bc:
dd:06:b4:36:e9:80:0e:c2:f9:69:25:e9:64:4c:07:64:c9:a7:
b5:06:44:2f:26:f3:68:64:55:71:da:06:17:a7:e9:8a:48:93:
1c:e0:19:0c:d2:f3:a5:08:22:d9:34:6f:d1:3a:69:d8:80:01:
5f:a4:13:49:0d:16:86:73:bd:08:90:dd:1e:df:3a:3c:dc:c8:
52:89:40:7f:84:81:10:d9:ba:56:cc:c3:01:13:60:2d:5c:12:
4d:43:0b:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 18:42:05 2024 by rpki-client on console-fra.rpki-client.org