Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3139332e3130392e3139352e302f32342d3234203d3e203634323637.roa
File: 3139332e3130392e3139352e302f32342d3234203d3e203634323637.roa (raw, json)
Hash identifier: GkvWjkk9UqNcbaCocOCZpay3UahYFySwEHa1zYkLr+I=
Subject key identifier: C9:F6:38:5F:E9:F3:F7:62:7B:79:A1:A7:56:7C:0A:6D:1B:85:C7:58
Certificate issuer: /CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Certificate serial: 2559AFC1CC3CE5953553F013EE0054EB0C9F0BF5
Authority key identifier: DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3139332e3130392e3139352e302f32342d3234203d3e203634323637.roa
Signing time: Wed 08 Nov 2023 09:22:35 +0000
ROA not before: Wed 08 Nov 2023 09:17:35 +0000
ROA not after: Wed 06 Nov 2024 09:22:35 +0000
asID: 64267
IP address blocks: 193.109.195.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.mft
rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 08:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:59:af:c1:cc:3c:e5:95:35:53:f0:13:ee:00:54:eb:0c:9f:0b:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Validity
Not Before: Nov 8 09:17:35 2023 GMT
Not After : Nov 6 09:22:35 2024 GMT
Subject: CN=C9F6385FE9F3F7627B79A1A7567C0A6D1B85C758
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:b9:78:56:40:a8:ff:4a:09:69:d6:a3:bc:8d:
37:3e:18:4f:28:ea:db:cc:bb:23:d9:7c:0d:a5:4e:
64:ed:f1:bd:46:ba:29:ec:e4:28:6c:0c:1a:1a:28:
52:ec:ae:5a:5f:8c:6a:3c:28:07:79:6c:85:ca:93:
f5:f8:bc:aa:cd:96:ef:c5:49:14:af:18:aa:38:1a:
b0:15:8b:ba:bf:e2:05:b3:61:fe:11:51:b0:07:2b:
92:56:aa:32:9e:b7:ab:13:d4:7b:a6:b5:2f:bf:67:
f5:80:de:71:b1:41:4e:78:f3:b9:0a:db:61:2f:38:
f7:28:53:65:32:87:8e:4c:b3:d3:a2:2b:c3:bf:ae:
42:fb:2e:06:25:0d:53:ce:23:16:b1:53:9c:df:96:
64:08:b9:de:75:1a:f1:b9:81:fd:eb:61:c6:db:5b:
0f:73:20:d9:76:df:ec:ab:34:d9:6c:91:9c:6f:69:
d6:da:71:19:ff:a0:b2:9d:49:3b:23:b3:8e:60:aa:
70:e8:bc:76:1c:7a:1c:9b:b9:5d:d3:6b:35:91:f7:
45:7e:68:10:57:53:7b:bf:5b:2c:27:32:dd:26:b6:
1d:e4:02:08:2d:ea:62:04:e9:cf:1d:d5:da:55:e4:
5f:9b:68:08:78:8b:2d:66:d7:d9:d0:93:c2:95:9f:
40:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:F6:38:5F:E9:F3:F7:62:7B:79:A1:A7:56:7C:0A:6D:1B:85:C7:58
X509v3 Authority Key Identifier:
keyid:DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3139332e3130392e3139352e302f32342d3234203d3e203634323637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.109.195.0/24
Signature Algorithm: sha256WithRSAEncryption
35:10:31:a2:6a:f3:bd:37:03:dc:be:db:03:fb:ec:71:4f:ab:
1c:39:7a:26:4b:64:35:d7:10:30:b3:75:82:36:de:43:29:a0:
50:6b:4a:8d:7c:1e:24:19:65:cc:82:03:d6:7e:28:87:be:8d:
b7:b9:f4:7b:35:02:a2:c8:96:73:96:b5:2a:80:12:39:b5:69:
35:6e:7a:82:6e:a5:50:0c:50:1a:04:d0:78:86:94:8c:26:00:
fe:09:0f:f5:b1:e7:36:ab:02:78:26:d5:b6:d4:6a:0b:fb:96:
16:fe:b6:2d:da:fb:c6:6f:22:4e:b4:ab:21:35:b7:a8:90:3e:
74:e6:71:75:7a:4b:59:b4:af:29:1d:31:04:b0:82:39:97:6e:
37:a6:3a:56:05:65:44:14:01:f1:d7:9b:32:7b:05:e6:d5:ee:
2e:b6:b4:92:1b:e1:85:ce:9d:a5:fb:3a:84:0c:e3:36:bb:03:
74:6f:16:41:f6:f1:d2:06:2e:af:c4:fd:cc:2f:0c:57:52:3e:
b1:14:27:01:55:95:a8:b6:e5:b8:00:78:75:f6:c8:9e:fc:cc:
39:e9:97:31:2d:66:64:d2:4f:06:b0:d9:a0:2d:80:e6:b4:1c:
bf:00:4b:39:8a:e4:9f:48:85:b9:f5:97:bf:a5:bb:31:5b:4a:
4f:1c:8a:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 11:31:39 2024 by rpki-client on console-fra.rpki-client.org