Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37302e302f32342d3234203d3e203631333137.roa
File: 3231332e3133392e37302e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: vqZLjJNuzsHV7ZyjR5MAzsGFKtnqbkYxEe3fUziAUxQ=
Subject key identifier: 07:D3:24:D0:4F:84:AC:60:10:16:62:FA:7A:71:18:BA:C1:DD:1F:65
Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Certificate serial: 502B4DD5485E0AFBDC8577161CB8758C656A718E
Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37302e302f32342d3234203d3e203631333137.roa
Signing time: Wed 27 Dec 2023 13:05:08 +0000
ROA not before: Wed 27 Dec 2023 13:00:08 +0000
ROA not after: Wed 25 Dec 2024 13:05:08 +0000
asID: 61317
IP address blocks: 213.139.70.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.mft
rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 26 Apr 2024 14:10:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:2b:4d:d5:48:5e:0a:fb:dc:85:77:16:1c:b8:75:8c:65:6a:71:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Validity
Not Before: Dec 27 13:00:08 2023 GMT
Not After : Dec 25 13:05:08 2024 GMT
Subject: CN=07D324D04F84AC60101662FA7A7118BAC1DD1F65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:9b:7a:aa:ee:a6:d8:d9:d0:96:24:52:65:63:
ea:23:95:35:6e:00:64:2e:3f:b3:66:a7:2b:aa:72:
f7:27:64:37:fe:7d:5d:25:e1:e9:6d:be:7f:6b:9a:
8b:a3:b9:33:00:5b:a8:92:d5:a8:64:5e:32:85:57:
63:f1:26:4b:c7:0b:12:c9:3c:a9:39:9c:96:1e:e8:
37:0b:eb:ae:28:da:af:29:9c:07:a2:f7:f7:8a:a0:
d4:5c:20:7e:3f:f5:cc:3d:b8:4f:14:82:16:d5:18:
74:f7:07:34:eb:15:27:fc:87:41:62:4a:57:d8:6f:
3c:99:72:1d:4b:c7:ca:44:82:aa:c1:fe:84:b2:da:
7b:0f:b3:b8:33:eb:1e:40:fc:86:f1:b3:44:77:7e:
cb:7f:54:33:99:9a:13:a9:e4:6b:c9:07:94:40:85:
d5:5c:a7:b7:2d:f5:fc:5c:e1:e9:58:fa:8e:a5:1c:
a6:2e:d1:69:29:84:54:4e:3e:8e:ff:78:26:d5:f2:
72:60:59:fe:e2:db:35:fc:c9:70:0f:ff:11:f9:ca:
4d:4b:90:4c:ba:a2:64:0c:15:20:f3:a4:d7:1e:1e:
09:50:0d:ac:05:ef:98:05:50:cc:0f:f8:ac:70:97:
d8:49:86:27:67:09:54:3b:f3:64:e9:14:ac:d2:00:
61:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:D3:24:D0:4F:84:AC:60:10:16:62:FA:7A:71:18:BA:C1:DD:1F:65
X509v3 Authority Key Identifier:
keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37302e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.70.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:b3:de:d8:e5:87:97:3c:d5:d1:3d:5c:f0:d6:10:de:6e:c6:
5e:35:59:91:a7:53:4c:1f:cd:cd:60:ab:aa:16:8b:01:ae:f8:
eb:ba:a4:be:6f:67:07:d2:cc:48:98:11:b2:42:a9:16:b3:76:
fe:e8:04:f2:e3:3f:49:7d:c9:77:95:40:5a:14:ab:b7:cc:af:
66:08:6f:2f:ff:8b:87:5b:de:a1:9f:33:a8:67:e4:ed:60:26:
00:55:60:42:c5:46:2f:b1:01:86:25:f7:44:8e:ba:13:8f:b3:
56:ec:bf:04:f6:7f:1d:88:4a:00:42:6c:8e:82:b6:7e:f9:28:
ee:da:87:0c:85:f8:40:e1:1b:7f:68:05:bb:25:be:70:c2:a8:
82:f6:36:ef:f5:c3:ce:95:67:e6:b6:29:7a:32:51:3a:86:36:
18:6e:8a:79:2b:92:f6:fa:22:37:82:c3:83:2b:a7:37:ee:94:
c7:1a:0e:9d:3f:b1:2c:4b:7c:ee:b4:ca:67:21:16:88:87:3f:
ad:0e:14:d1:8d:90:79:6f:e4:77:ac:ae:3a:56:ea:2b:3c:33:
0f:d9:03:c4:3c:cd:26:81:b8:06:35:a7:2b:eb:05:0d:c3:f6:
60:a6:a7:29:81:59:52:21:44:52:f1:69:ca:27:ce:bf:bf:51:
c7:eb:5b:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 18:15:03 2024 by rpki-client on console-ams.rpki-client.org