Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS139989.roa
File: AS139989.roa (raw, json)
Hash identifier: c0e44sRyE3KJqWIGgKI8026oQFZPKLKHI8Ym4ZuOXsY=
Subject key identifier: C8:6A:D5:94:D0:96:13:82:D5:7D:C7:31:DD:2E:59:AD:9A:E0:04:0F
Certificate issuer: /CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Certificate serial: 177E004D1199BC5B8AC67C28EFF082B127D3BBCD
Authority key identifier: 03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS139989.roa
Signing time: Thu 11 Jul 2024 17:02:32 +0000
ROA not before: Thu 11 Jul 2024 16:57:32 +0000
ROA not after: Thu 10 Jul 2025 17:02:32 +0000
asID: 139989
IP address blocks: 193.111.124.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.mft
rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:7e:00:4d:11:99:bc:5b:8a:c6:7c:28:ef:f0:82:b1:27:d3:bb:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Validity
Not Before: Jul 11 16:57:32 2024 GMT
Not After : Jul 10 17:02:32 2025 GMT
Subject: CN=C86AD594D0961382D57DC731DD2E59AD9AE0040F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:6e:0a:90:00:16:e2:bf:b1:f5:57:5a:69:89:
48:ec:cf:78:a7:97:4e:24:3d:bc:56:bd:5d:86:d7:
4d:7b:7c:0f:f8:14:47:18:9b:de:7e:86:9b:74:5d:
dd:b3:8b:60:f9:fc:85:36:23:67:6f:21:bd:b0:5b:
45:d9:52:d3:a4:3f:af:e9:a3:c4:8f:c4:8b:1b:23:
26:db:61:11:19:d7:0d:0b:67:7e:ab:73:f0:a6:a7:
47:1f:33:56:68:35:a2:7d:a6:5e:a5:7d:74:f2:66:
15:48:ab:53:75:c4:56:b2:75:62:f0:13:f1:5a:9c:
73:03:de:ee:1e:a8:3c:bc:28:79:b7:af:e8:7c:b7:
2b:f1:3f:3d:1b:e3:2b:00:14:5d:e2:50:3e:df:6a:
35:09:9d:f0:68:42:b5:87:23:40:a0:ae:93:47:4f:
3d:bf:49:f3:eb:0c:5a:b3:18:c6:ed:3f:47:56:c5:
57:4a:f2:95:79:ec:8c:45:99:20:f9:38:0c:53:3a:
e9:08:1d:5f:49:ac:aa:43:9f:b9:9d:76:46:01:a5:
a6:c0:ce:31:48:a0:33:25:8d:c8:b6:17:9a:38:b4:
18:f0:e7:b1:19:5d:2b:3d:25:2b:61:74:6a:59:64:
ae:a1:f6:8e:1f:f2:b2:f8:5a:27:a1:2a:5d:d8:16:
ae:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:6A:D5:94:D0:96:13:82:D5:7D:C7:31:DD:2E:59:AD:9A:E0:04:0F
X509v3 Authority Key Identifier:
keyid:03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS139989.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.111.124.0/24
Signature Algorithm: sha256WithRSAEncryption
27:3a:83:e1:99:a9:8e:75:17:e6:4a:9c:be:1f:38:1b:18:c3:
3c:99:bf:3f:bd:57:24:41:c7:e9:6e:d0:99:21:e0:50:70:52:
a1:f8:cb:0c:45:96:43:35:aa:ef:27:04:c9:58:1f:d6:c5:db:
23:ee:8f:e6:45:5a:bf:9c:b8:0a:c2:58:89:e6:6a:d1:07:3e:
fc:7e:ef:8c:c2:20:07:78:d1:91:99:fc:30:bb:1f:fb:ef:ce:
10:bf:bc:9c:f0:b0:eb:f9:cf:d4:b0:3e:52:f7:53:c3:c0:72:
08:6f:b7:f6:fa:fc:16:21:91:21:88:38:97:e2:3e:71:a2:a3:
9c:aa:10:ae:5a:11:08:19:25:7f:64:4d:8d:26:d1:c6:b9:89:
ed:07:34:d3:96:d0:75:d7:44:a7:89:58:28:3a:f0:52:ed:37:
73:83:fe:02:13:11:b8:10:ac:ec:59:14:16:9f:81:e3:4c:28:
a3:4a:9d:c9:7d:1a:55:fd:cf:2d:2e:2f:ce:08:0e:7e:a9:af:
b0:df:b1:13:a7:2e:63:0e:d4:09:5d:a8:95:d6:89:dc:8b:ef:
24:65:0c:46:fa:ee:43:e7:bb:29:40:8a:50:3f:3a:e1:7f:05:
81:88:ca:af:b5:f7:d2:6b:42:dc:11:11:dd:d7:4d:6d:7c:e5:
ce:aa:03:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 00:15:23 2024 by rpki-client on console-ams.rpki-client.org