Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/3139332e332e3136352e302f32342d3234203d3e20323130353631.roa
File: 3139332e332e3136352e302f32342d3234203d3e20323130353631.roa (raw, json)
Hash identifier: kgJm7QxW3056WU2qVS0bMlupt4ZftbFqvvGE+R8JlHA=
Subject key identifier: 21:26:71:8F:72:CA:4A:78:14:45:5F:9B:9C:D3:3D:6E:38:69:F1:EB
Certificate issuer: /CN=11ad49c47e2d0e40cfc9b36a2bd2c514e2a6267b
Certificate serial: 7BB7744395D614965C0A5B67A342CB0624543A80
Authority key identifier: 11:AD:49:C4:7E:2D:0E:40:CF:C9:B3:6A:2B:D2:C5:14:E2:A6:26:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/3139332e332e3136352e302f32342d3234203d3e20323130353631.roa
Signing time: Wed 08 Nov 2023 14:49:33 +0000
ROA not before: Wed 08 Nov 2023 14:44:33 +0000
ROA not after: Wed 06 Nov 2024 14:49:33 +0000
asID: 210561
IP address blocks: 193.3.165.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.crl
rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 20:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:b7:74:43:95:d6:14:96:5c:0a:5b:67:a3:42:cb:06:24:54:3a:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11ad49c47e2d0e40cfc9b36a2bd2c514e2a6267b
Validity
Not Before: Nov 8 14:44:33 2023 GMT
Not After : Nov 6 14:49:33 2024 GMT
Subject: CN=2126718F72CA4A7814455F9B9CD33D6E3869F1EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a0:d6:66:44:ee:1f:a6:b4:fd:e1:ca:bf:85:
8d:bd:bc:64:b8:bf:30:a4:25:15:cf:2f:3d:17:61:
f9:16:00:24:e5:bc:09:46:0e:f4:48:38:ea:cc:2e:
04:36:7c:9e:66:e4:b3:23:fc:93:55:9f:c7:73:c8:
a1:21:5c:f6:7a:11:78:fc:d6:1f:a6:6b:e8:e2:a6:
75:07:38:fa:ca:fd:7d:ed:63:e9:3f:c3:03:9a:f2:
08:fe:a2:40:d9:58:e4:e9:0b:75:ae:0b:34:c9:9f:
5c:92:7e:f7:2a:f8:a3:f1:62:9d:20:43:29:f3:4a:
2d:70:04:78:2a:10:a5:41:61:b4:22:ab:95:a5:98:
ae:9a:bb:49:81:fe:09:5a:11:42:f2:d5:64:d5:be:
89:fb:25:a1:22:72:c3:0e:54:c1:2d:29:64:d8:b4:
3a:8e:b2:ff:84:e0:8c:a0:27:c3:aa:35:8d:15:5f:
66:7a:a7:b2:eb:b5:bd:f1:e1:bf:58:3f:1a:45:b5:
de:88:db:d8:5c:8d:9e:52:9e:02:2d:de:2e:ae:2a:
54:e3:ff:cd:66:1c:97:4a:ab:24:65:84:d1:80:37:
8b:00:fb:48:7a:94:5d:9e:65:5d:55:6c:63:cc:73:
8e:56:f2:f8:f6:dd:6b:16:e4:a0:46:82:82:3f:ba:
58:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:26:71:8F:72:CA:4A:78:14:45:5F:9B:9C:D3:3D:6E:38:69:F1:EB
X509v3 Authority Key Identifier:
keyid:11:AD:49:C4:7E:2D:0E:40:CF:C9:B3:6A:2B:D2:C5:14:E2:A6:26:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/3139332e332e3136352e302f32342d3234203d3e20323130353631.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.3.165.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:76:9b:43:3d:a5:e7:3e:5d:fb:27:d6:e9:ff:24:3d:8e:a4:
9d:aa:3b:eb:a8:84:84:8d:9e:22:7e:3a:46:11:65:7b:07:c1:
20:c7:fa:f7:d2:ce:75:4d:5e:cc:f4:20:fa:2b:82:23:e1:02:
9a:4d:62:38:f0:65:be:02:b2:ac:29:11:ea:59:18:63:0a:fb:
99:fd:d6:ca:93:96:86:23:68:00:d7:ae:b7:47:3b:ca:47:63:
6f:6d:d9:0b:9e:44:36:d0:1e:3e:f7:a3:ef:2b:9a:bd:51:44:
b8:92:1a:82:70:b1:8f:e9:24:0b:c2:06:11:00:be:1b:b8:d8:
2e:57:2a:3c:e7:37:44:4b:04:33:94:fd:9c:1a:25:ae:56:c6:
c5:b0:7d:ac:7d:87:cf:fa:6f:7a:77:74:78:2d:71:ca:68:db:
bc:61:e1:69:76:a5:02:6c:f3:48:85:57:3a:f2:d9:9b:60:d4:
05:86:1a:47:4c:d2:bb:62:6b:cf:ab:68:e5:cb:da:c3:bb:b7:
2e:cd:4f:e1:b6:ff:7a:7f:ea:45:d4:1e:dc:2a:ca:71:af:e1:
05:00:e4:ec:6b:ba:2e:4e:db:4e:44:f9:4e:f2:a5:83:94:75:
4d:6b:80:2c:76:4a:50:14:a0:ce:01:db:71:b6:93:47:7f:22:
53:2d:1c:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 01:54:33 2024 by rpki-client on console-fra.rpki-client.org