Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3139332e3130392e3139322e302f32342d3234203d3e20343030303339.roa
File: 3139332e3130392e3139322e302f32342d3234203d3e20343030303339.roa (raw, json)
Hash identifier: 2F6mgnHZ4hTzNb6Sdq98PCMjN5eb6QErNAsgB2H1Dgo=
Subject key identifier: 7C:14:A7:4C:E9:1A:BD:40:2E:E4:B1:61:BD:AB:B9:1C:C4:97:23:C1
Certificate issuer: /CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Certificate serial: 7A9EFA2870D52C16C4FDE4C6CE4802051F52BAB8
Authority key identifier: DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3139332e3130392e3139322e302f32342d3234203d3e20343030303339.roa
Signing time: Wed 08 Nov 2023 09:24:28 +0000
ROA not before: Wed 08 Nov 2023 09:19:28 +0000
ROA not after: Wed 06 Nov 2024 09:24:28 +0000
asID: 400039
IP address blocks: 193.109.192.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.mft
rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:9e:fa:28:70:d5:2c:16:c4:fd:e4:c6:ce:48:02:05:1f:52:ba:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Validity
Not Before: Nov 8 09:19:28 2023 GMT
Not After : Nov 6 09:24:28 2024 GMT
Subject: CN=7C14A74CE91ABD402EE4B161BDABB91CC49723C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:9b:fd:04:0a:88:a0:25:ee:71:2e:ac:ee:d9:
d2:a6:df:ed:2f:e1:cc:6b:73:5d:9a:52:26:d0:01:
bc:5d:bc:42:75:30:f9:d9:e7:a4:7f:f6:e3:dd:ae:
07:12:58:ef:01:24:b1:98:83:51:49:21:1a:09:bb:
c4:5c:0c:7a:20:0d:f3:cc:36:76:8a:4a:dc:2f:58:
9f:cc:4d:45:1d:1b:6b:53:6d:88:8a:01:2e:78:b4:
ee:ae:e6:8e:54:12:8a:77:db:aa:4c:d1:82:98:70:
52:49:e2:35:53:4d:48:f7:d2:c5:1e:48:ce:97:e4:
30:f4:18:d3:8f:66:9c:ed:ae:4e:88:d1:b0:d2:15:
a8:7a:1c:25:e5:0b:52:66:b4:32:df:1e:33:ac:a0:
c0:fb:73:67:20:fb:1e:cb:16:5a:18:63:37:d8:3f:
eb:f7:00:9e:9d:7e:c7:a5:49:1c:48:8c:6d:12:82:
2e:f6:b2:15:1e:45:f0:69:38:e4:ad:08:33:71:e7:
c3:8f:73:22:70:a1:37:ff:0d:5f:d0:66:b9:02:6b:
0e:66:a7:f0:f5:59:44:0a:47:c9:2b:b6:aa:64:83:
90:17:60:83:db:93:78:05:c6:16:a0:28:be:a1:ee:
ff:7c:30:78:ae:33:6d:96:f5:a2:5a:50:b4:ba:21:
fa:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:14:A7:4C:E9:1A:BD:40:2E:E4:B1:61:BD:AB:B9:1C:C4:97:23:C1
X509v3 Authority Key Identifier:
keyid:DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3139332e3130392e3139322e302f32342d3234203d3e20343030303339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.109.192.0/24
Signature Algorithm: sha256WithRSAEncryption
53:4c:94:4c:12:39:b8:74:31:dd:0c:26:f7:94:0f:e9:a6:61:
c9:b6:95:4c:aa:5c:be:18:82:6f:e2:ae:53:cc:9e:1b:b6:67:
73:92:44:b9:c6:ec:81:f6:a2:e0:f4:f9:3a:42:2a:f6:d5:b0:
0a:28:12:cf:24:cd:b4:41:7d:25:61:44:c0:86:1a:2a:57:49:
58:16:24:17:2f:50:4a:1f:ce:03:ea:ce:a2:66:b0:c5:35:2b:
ac:b8:fb:56:9c:14:15:b1:b7:07:6e:28:12:f1:9a:49:8a:61:
cc:44:a2:96:72:5b:17:4d:69:e4:70:26:f8:ef:15:e2:c8:a3:
bf:7f:8f:29:01:70:e7:f2:2a:97:7f:be:22:ce:5c:24:7a:35:
68:38:8e:59:97:19:a7:7a:97:33:84:e1:9b:b6:db:c6:2d:e2:
4d:96:09:4d:ea:4b:05:be:98:e6:a7:48:41:fc:5c:23:11:41:
82:18:3b:68:60:bb:2d:1e:59:3c:b0:62:90:dc:e9:08:90:a8:
a9:02:eb:22:92:9c:a6:43:25:cc:4a:3b:63:2f:ff:7b:73:6b:
82:15:74:df:97:f8:79:d3:44:fc:38:c3:8f:59:3c:04:6e:22:
d2:d6:33:32:83:ae:02:0d:87:9f:04:1d:8b:6c:25:8f:c1:fb:
88:ba:f1:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 11:36:52 2024 by rpki-client on console-fra.rpki-client.org