Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3139332e3130392e3139332e302f32342d3234203d3e203534323532.roa
File: 3139332e3130392e3139332e302f32342d3234203d3e203534323532.roa (raw, json)
Hash identifier: 1UrNpnvgYh7oW0Aob/3bX+7rTXo6J1HgqCKq2djGBs4=
Subject key identifier: 1E:C0:9D:5F:7C:9E:CB:22:83:04:D0:FB:30:77:59:93:96:31:88:3E
Certificate issuer: /CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Certificate serial: 07C7AA7315569721B94EF3DE9DC19E62C9AE410D
Authority key identifier: DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3139332e3130392e3139332e302f32342d3234203d3e203534323532.roa
Signing time: Wed 08 Nov 2023 09:21:30 +0000
ROA not before: Wed 08 Nov 2023 09:16:30 +0000
ROA not after: Wed 06 Nov 2024 09:21:30 +0000
asID: 54252
IP address blocks: 193.109.193.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.mft
rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 23:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:c7:aa:73:15:56:97:21:b9:4e:f3:de:9d:c1:9e:62:c9:ae:41:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Validity
Not Before: Nov 8 09:16:30 2023 GMT
Not After : Nov 6 09:21:30 2024 GMT
Subject: CN=1EC09D5F7C9ECB228304D0FB307759939631883E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:08:88:21:14:cd:14:0f:06:22:ec:40:55:7d:
60:03:65:24:ff:49:3d:6c:5e:5f:79:bd:4d:af:fc:
33:b1:10:8e:57:82:22:e0:9a:10:36:bc:38:e0:a3:
e8:d5:da:e0:80:68:2b:7a:99:7a:9b:be:21:b7:38:
8c:fa:c0:f2:6d:92:28:43:66:b0:a4:a6:86:56:15:
71:e7:bb:9f:b4:10:6b:9b:a0:48:67:29:37:9c:f2:
e6:5c:05:5f:ab:bb:8f:f8:51:3f:b5:f6:d9:24:d1:
4c:d0:66:ac:23:af:a6:25:58:6c:61:13:32:01:12:
f0:2d:a0:08:13:d5:e8:7d:49:05:07:d9:25:a5:bf:
d6:47:db:03:0c:32:ff:37:90:89:6a:d4:37:35:00:
3c:e0:8a:31:12:71:22:0a:e2:73:6c:b9:34:27:55:
2b:79:cc:5d:82:99:6a:94:a3:cd:df:5e:0b:44:44:
52:62:d2:ad:54:99:88:1e:d4:ff:6c:8a:da:6c:ff:
20:8e:86:74:b4:b2:19:3d:73:64:20:e2:42:81:c1:
53:e8:cc:c7:d3:c1:73:8f:87:bb:d8:26:6e:e5:88:
25:a6:fb:26:f0:71:86:47:28:41:99:f7:07:ef:bd:
32:60:58:8a:06:a2:f6:a3:a8:f6:14:1e:89:d2:cc:
08:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:C0:9D:5F:7C:9E:CB:22:83:04:D0:FB:30:77:59:93:96:31:88:3E
X509v3 Authority Key Identifier:
keyid:DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3139332e3130392e3139332e302f32342d3234203d3e203534323532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.109.193.0/24
Signature Algorithm: sha256WithRSAEncryption
61:c6:e7:8f:2f:01:00:3d:be:a2:ee:00:70:d9:19:d2:94:31:
6c:ea:be:de:5c:f2:ec:00:ec:43:c8:a6:cb:37:04:50:fb:82:
dc:fc:42:26:4d:45:fe:97:11:a8:f8:b1:58:34:4a:bb:13:4f:
ac:25:4f:c5:54:05:c8:08:ff:e4:5d:6c:35:a5:84:7f:a4:99:
5e:a5:e1:25:3d:8e:51:2a:7d:c7:ec:d8:b7:e6:1f:52:2f:f1:
e5:6f:1f:3c:da:8b:08:f8:a1:73:de:99:42:b0:42:be:ac:77:
4b:f5:80:07:3d:91:17:fc:37:bf:0e:59:b3:b9:7d:08:8e:53:
bb:d6:f8:64:1d:1f:cb:19:57:48:50:13:34:86:55:5f:0b:40:
c1:8c:8c:c1:e4:78:37:3b:e0:68:a1:5d:83:5b:ae:3c:7d:09:
5e:8a:be:94:0a:e6:4e:62:de:fd:19:68:f4:78:16:b6:7c:2a:
f2:ec:f1:c3:c1:1b:72:71:b7:4b:88:02:53:d3:20:ad:10:92:
9e:13:cb:3a:98:d8:6e:92:47:99:d1:19:c6:4c:b9:a4:62:04:
f5:28:85:bd:3f:f1:a9:cd:31:32:97:d5:41:93:c3:f8:75:60:
d0:25:bb:a8:95:ca:76:82:9a:e1:54:9b:71:b7:5a:37:90:27:
39:a4:2e:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 06:22:50 2024 by rpki-client on console-ams.rpki-client.org