Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3139332e3130392e3139392e302f32342d3234203d3e203133323133.roa
File: 3139332e3130392e3139392e302f32342d3234203d3e203133323133.roa (raw, json)
Hash identifier: d8Gos0dLhvDBvBj6vmH86cFvKZH4VKyBO84C+JfiZvY=
Subject key identifier: C1:46:AB:C0:F8:0D:32:4A:A8:03:0B:56:36:8F:C2:F6:80:93:4F:00
Certificate issuer: /CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Certificate serial: 73262B679530D600904F1D204006875817E12BE6
Authority key identifier: DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3139332e3130392e3139392e302f32342d3234203d3e203133323133.roa
Signing time: Wed 08 Nov 2023 09:21:02 +0000
ROA not before: Wed 08 Nov 2023 09:16:02 +0000
ROA not after: Wed 06 Nov 2024 09:21:02 +0000
asID: 13213
IP address blocks: 193.109.199.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.mft
rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 05:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:26:2b:67:95:30:d6:00:90:4f:1d:20:40:06:87:58:17:e1:2b:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Validity
Not Before: Nov 8 09:16:02 2023 GMT
Not After : Nov 6 09:21:02 2024 GMT
Subject: CN=C146ABC0F80D324AA8030B56368FC2F680934F00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:40:62:57:b6:a2:21:9d:af:6e:1e:c6:a2:05:
44:01:6e:8d:49:25:d3:72:e5:87:3a:58:3d:71:96:
ce:1f:2f:82:84:67:be:c8:02:e3:99:e6:5e:cb:05:
7b:06:2d:c3:dc:bd:5d:24:0d:12:1d:18:c2:53:4b:
39:ab:9a:81:de:9f:cd:a1:c0:66:0c:4b:ec:73:83:
d9:37:96:cd:90:50:bb:76:ca:99:41:4c:91:f5:03:
5c:37:71:89:81:07:1b:36:63:75:52:53:13:65:6e:
50:60:9c:75:0e:4b:2e:8e:fc:6d:37:bf:d0:d9:9a:
41:0a:5a:2d:d7:ef:71:6a:ce:21:85:fd:9d:86:f5:
03:69:55:fb:ae:bd:ec:84:2d:69:d1:d1:11:27:1f:
84:a0:38:c4:cb:c8:70:f3:b9:2e:c0:93:f9:b4:2c:
e0:35:51:4f:d5:7c:05:b8:2c:76:7e:e1:73:74:47:
57:65:62:a5:aa:d7:3a:ec:44:ce:63:f6:0a:bf:7d:
7d:45:1c:eb:fa:25:86:60:03:c6:1c:bb:61:71:62:
b6:9f:e6:79:36:ea:31:07:91:00:fa:54:11:b9:0e:
88:44:ad:41:68:2d:06:aa:28:0f:5f:af:01:20:57:
a2:ee:44:01:df:3e:67:d6:25:f2:2e:45:6b:9b:b8:
79:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:46:AB:C0:F8:0D:32:4A:A8:03:0B:56:36:8F:C2:F6:80:93:4F:00
X509v3 Authority Key Identifier:
keyid:DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3139332e3130392e3139392e302f32342d3234203d3e203133323133.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.109.199.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:43:b6:a8:52:f0:3c:be:7d:07:70:99:e7:ea:99:3a:cb:17:
26:46:9e:ba:c0:57:e8:22:ec:ac:b7:8c:10:13:bb:9d:36:56:
d1:8a:3b:1d:13:e9:97:40:90:d5:5d:fc:eb:5d:f1:14:0e:68:
93:91:03:b7:48:86:62:e0:a7:57:fb:c3:5f:74:c4:d2:05:60:
70:db:e1:98:dc:f3:97:6d:36:ad:d9:d8:73:a7:18:33:64:ac:
77:f1:f1:ed:de:e8:0d:a5:0a:90:43:f2:d9:eb:c4:ed:e7:a8:
6e:47:b8:69:43:e0:2e:bf:46:35:4e:2c:06:26:cd:90:6b:32:
40:6b:5d:1a:42:4a:a7:77:5d:7d:8d:b8:ae:2f:7c:c6:f3:09:
23:75:13:66:65:f5:4f:16:92:37:75:c0:29:67:b8:58:a0:cb:
a8:be:1d:36:cf:87:33:46:b6:07:23:71:1a:45:26:75:42:b4:
75:e7:49:f4:24:f9:1c:3b:b1:c4:23:d6:b8:32:ee:f9:a2:72:
b4:5f:e4:ff:25:5a:44:8c:3b:20:d9:dd:90:58:bf:d6:67:7f:
4e:84:f3:05:a9:7d:9a:62:e6:73:bb:a7:49:d2:27:aa:44:94:
22:31:83:9a:71:f0:0b:4c:28:ea:1b:d1:b1:11:33:d5:60:9e:
a4:b3:5f:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 14:45:24 2024 by rpki-client on console-fra.rpki-client.org