Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e38372e302f32342d3234203d3e2039303039.roa
File: 3231332e3133392e38372e302f32342d3234203d3e2039303039.roa (raw, json)
Hash identifier: CDL0jvyMQodplKp33qHE8utNJuEvgr8dJgi4XDSuhbM=
Subject key identifier: D9:43:6F:16:C8:CF:B9:1D:52:EB:8E:9B:C3:57:EB:74:34:86:03:20
Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Certificate serial: 47DA500D205510BCACE42C2F512755CE9E85B22C
Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e38372e302f32342d3234203d3e2039303039.roa
Signing time: Mon 20 May 2024 10:11:19 +0000
ROA not before: Mon 20 May 2024 10:06:19 +0000
ROA not after: Mon 19 May 2025 10:11:19 +0000
asID: 9009
IP address blocks: 213.139.87.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.mft
rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:da:50:0d:20:55:10:bc:ac:e4:2c:2f:51:27:55:ce:9e:85:b2:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Validity
Not Before: May 20 10:06:19 2024 GMT
Not After : May 19 10:11:19 2025 GMT
Subject: CN=D9436F16C8CFB91D52EB8E9BC357EB7434860320
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:7f:4b:a3:54:78:4a:31:4c:5e:f1:51:35:f0:
67:aa:39:a7:76:6a:f5:39:60:95:37:e2:9f:f3:08:
92:8b:6a:e0:2f:ee:b1:c9:e7:f9:02:da:24:26:49:
3a:0f:f8:f1:b5:74:cc:ac:c9:f3:7d:29:f9:41:59:
ea:b0:c2:94:68:77:49:88:4a:b7:a6:cf:e6:35:b2:
e3:b0:f4:81:4f:7a:6f:74:82:b8:15:53:8f:c0:72:
12:7e:45:b7:ca:c4:c9:fd:85:71:e2:9e:65:12:b5:
c3:8d:66:df:23:50:67:f5:c3:eb:25:2b:2b:2f:18:
8a:6b:26:f7:dc:ab:de:86:97:3e:0a:dd:3b:da:2d:
bb:81:d6:b3:e4:1a:8c:83:a7:4d:e1:68:47:d7:3b:
4a:65:4b:0d:d2:05:87:1f:bc:e8:97:75:15:92:2d:
b0:82:b9:f4:39:b0:b0:7b:6e:9d:ef:e9:cf:62:56:
45:97:c0:7b:94:46:57:d7:e5:02:8e:42:d7:b4:06:
65:1a:46:ca:15:e5:63:7b:4b:b1:b8:7a:0c:73:14:
59:ef:3d:46:8c:22:41:ea:91:3d:a7:7c:16:eb:6d:
31:f8:af:a7:7a:fa:ff:ff:40:b4:44:ef:f2:0d:3b:
3a:e4:7b:d5:90:cd:8d:9c:b3:c7:1d:35:63:91:d3:
08:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:43:6F:16:C8:CF:B9:1D:52:EB:8E:9B:C3:57:EB:74:34:86:03:20
X509v3 Authority Key Identifier:
keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e38372e302f32342d3234203d3e2039303039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.87.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:41:16:7e:d7:b9:3c:27:23:87:4b:27:59:80:34:d8:34:a5:
26:14:ff:42:26:14:7a:87:e9:74:19:4e:06:b8:94:d9:c7:a1:
3f:1f:1f:7d:bc:1a:05:e1:82:fa:c8:3a:40:df:0f:aa:d0:cf:
69:4f:4c:36:9d:d5:42:0a:c3:01:f5:6a:89:d6:98:3c:a2:8f:
f9:55:9b:0d:1e:a7:f2:94:ba:b7:0d:95:d7:1b:db:a8:70:0c:
37:39:0d:c1:6e:34:9b:b5:74:af:65:47:64:19:f4:e7:f9:51:
98:59:93:18:af:0b:23:76:96:ac:46:53:8d:59:2e:9e:e3:65:
29:4f:08:91:89:34:e2:96:e6:c4:4b:cb:7a:78:20:fd:4e:4b:
e5:19:00:05:2e:37:10:90:bc:3f:ff:68:48:4b:c6:c6:e3:28:
1b:a0:f1:02:86:d3:1d:46:85:3f:36:a2:64:7b:8c:8b:f0:aa:
df:53:5e:3d:a3:81:31:3f:83:2f:5c:4d:88:72:c5:30:ad:f3:
00:f1:64:4f:cb:70:9f:ac:c2:44:7d:21:2f:98:47:22:f0:5a:
1c:6d:38:d9:40:c8:41:cb:29:3b:b7:a0:90:3f:7f:a1:29:05:
bc:18:bd:2f:a3:77:99:88:72:87:0d:29:ed:12:b4:05:a5:93:
d1:d2:d2:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 06:58:17 2024 by rpki-client on console-fra.rpki-client.org