Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e36372e302f32342d3234203d3e203538303631.roa
File: 3231332e3133392e36372e302f32342d3234203d3e203538303631.roa (raw, json)
Hash identifier: vlom6lZKeYJIfUE9Gp+HYzZ8jvFOPvpCrdTMVjm5P1I=
Subject key identifier: 30:DB:0F:65:99:25:EB:DA:58:5F:1C:0F:1D:98:BD:4D:06:96:E8:46
Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Certificate serial: 6BFB374C8CDD01D2949379B2F21FC4EE04AD53E0
Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e36372e302f32342d3234203d3e203538303631.roa
Signing time: Thu 30 Nov 2023 06:33:06 +0000
ROA not before: Thu 30 Nov 2023 06:28:06 +0000
ROA not after: Thu 28 Nov 2024 06:33:06 +0000
asID: 58061
IP address blocks: 213.139.67.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.mft
rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 May 2024 05:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:fb:37:4c:8c:dd:01:d2:94:93:79:b2:f2:1f:c4:ee:04:ad:53:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Validity
Not Before: Nov 30 06:28:06 2023 GMT
Not After : Nov 28 06:33:06 2024 GMT
Subject: CN=30DB0F659925EBDA585F1C0F1D98BD4D0696E846
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:24:33:51:d7:56:68:96:8f:f9:b4:38:5b:11:
5b:f9:94:d0:a2:05:e9:86:e9:ea:ec:19:8c:25:89:
40:a5:85:b8:67:4a:72:1c:a5:ae:71:50:53:89:8c:
94:81:28:10:a4:1e:ba:ee:20:d3:10:e4:f6:8e:67:
91:f9:59:e9:f3:b4:d2:df:e7:33:da:57:14:d5:dd:
73:ed:2d:81:d4:89:2d:49:b1:b1:f3:6d:54:3d:cd:
cb:d3:0e:4b:e8:a9:56:bf:41:f9:de:6c:9e:9b:cb:
ca:6d:1d:37:4b:45:c4:62:43:bf:3d:c3:60:58:d2:
3f:d2:0e:23:9a:16:fb:cb:09:ab:2d:bb:c1:4b:f1:
75:d0:d3:88:11:7f:dc:da:c1:fc:41:a2:df:6c:03:
49:c0:2e:c9:5d:12:c2:1d:50:14:d2:b9:0b:b4:e4:
33:9f:24:7e:5b:6c:30:ba:10:d6:a8:fe:bb:95:93:
4b:57:a0:a8:fe:0e:10:dd:74:15:f3:4a:05:cb:31:
ad:10:0b:69:e1:e2:ce:93:24:e5:d8:6b:06:24:53:
ef:2d:87:5c:39:66:89:a7:25:c8:c0:ff:ab:5e:fa:
02:ad:68:dc:61:3b:ff:a3:02:0c:ac:73:3c:28:36:
11:0c:dd:88:c3:46:e1:ea:8c:4e:b5:fc:eb:42:57:
b9:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:DB:0F:65:99:25:EB:DA:58:5F:1C:0F:1D:98:BD:4D:06:96:E8:46
X509v3 Authority Key Identifier:
keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e36372e302f32342d3234203d3e203538303631.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.67.0/24
Signature Algorithm: sha256WithRSAEncryption
70:d9:a8:4b:4e:9e:6a:bf:ca:4b:2f:35:82:9c:2f:4c:de:48:
60:0b:06:a1:6f:0f:74:74:65:44:de:cc:79:1b:53:4b:ce:38:
a9:fa:f3:f0:06:2f:69:9c:ac:1b:e5:57:c5:2b:fc:22:af:1e:
69:72:74:81:d8:65:04:83:b8:25:03:5d:81:90:37:69:6a:e8:
f6:b7:c4:2a:2a:7e:d5:7a:ac:c9:b5:c3:50:5d:d9:cd:dc:e9:
20:39:fc:b7:a1:c8:4c:2b:b2:a6:a0:17:6d:c3:68:cf:c4:75:
f5:85:6b:a8:d9:69:8c:ad:eb:9f:05:1f:4a:2f:08:2f:30:05:
f3:22:83:d7:8f:eb:32:51:19:91:ba:2a:c2:dc:f9:13:6f:c0:
1a:9e:76:84:d0:ae:47:8b:c9:96:6b:4e:17:a3:97:25:2b:1f:
22:cd:16:66:a2:9a:37:0f:7d:60:9b:f5:37:59:62:e4:05:9c:
21:03:1c:a5:63:26:53:7e:66:2a:38:d0:f6:6f:11:5c:e7:14:
94:e8:79:f7:d4:91:ec:44:cf:0c:a8:aa:d7:08:77:4a:15:67:
ba:d6:72:ec:26:29:1c:f0:aa:1b:1f:9e:26:a2:25:64:61:dd:
66:14:71:2b:15:71:a2:2e:0f:33:8e:87:f7:d9:73:c9:a9:63:
58:e5:b0:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 25 09:14:48 2024 by rpki-client on console-fra.rpki-client.org