Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e38382e302f32342d3234203d3e203239383032.roa
File: 3231332e3133392e38382e302f32342d3234203d3e203239383032.roa (raw, json)
Hash identifier: 0I9qeXVBmaSAPY8no67OszUeXgHZ1DHZLPqkhi27538=
Subject key identifier: 96:3E:38:F1:6D:81:97:B6:9C:4E:84:30:75:D8:8B:D1:B8:71:E4:20
Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Certificate serial: 3B5A5229EBB98A70C42F175B5BC18C46BEA36533
Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e38382e302f32342d3234203d3e203239383032.roa
Signing time: Thu 21 Mar 2024 11:05:14 +0000
ROA not before: Thu 21 Mar 2024 11:00:14 +0000
ROA not after: Thu 20 Mar 2025 11:05:14 +0000
asID: 29802
IP address blocks: 213.139.88.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.mft
rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 00:09:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:5a:52:29:eb:b9:8a:70:c4:2f:17:5b:5b:c1:8c:46:be:a3:65:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Validity
Not Before: Mar 21 11:00:14 2024 GMT
Not After : Mar 20 11:05:14 2025 GMT
Subject: CN=963E38F16D8197B69C4E843075D88BD1B871E420
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:e5:41:b6:5a:40:db:8c:77:fd:59:db:1d:cf:
da:66:12:b4:ba:ac:24:53:9b:ab:a9:8d:b1:33:79:
9e:b4:bf:98:be:69:44:08:83:c9:ca:e5:ef:c7:14:
9f:d4:4b:7d:eb:1d:57:67:79:3d:a8:ce:a1:4f:79:
f8:a7:64:04:15:75:08:87:7d:a9:62:bd:15:a9:4e:
99:f5:ba:66:2f:3b:7c:6b:8b:ef:56:37:41:e2:66:
ca:40:72:bc:59:bd:92:51:41:6e:f7:4d:2a:43:f9:
dd:d8:e1:99:c3:4a:b7:e7:85:5b:09:30:2d:2d:b6:
ef:cd:1a:8f:fe:73:19:dd:8c:1c:60:86:37:d9:bd:
5c:63:cf:a0:3d:a1:43:f9:f7:d5:4a:35:97:b3:d4:
1f:7e:3e:7a:97:eb:ad:02:62:06:e7:bd:a3:6f:d6:
49:20:87:c7:91:0a:58:48:0c:bd:d8:f0:94:23:a5:
13:a9:77:c4:38:18:83:45:4c:30:38:85:a5:cb:00:
9f:7c:ed:72:1d:44:74:10:f8:11:e5:83:e9:26:50:
87:82:43:5c:cb:7c:f4:16:b0:40:36:e7:37:de:b6:
48:9e:59:a4:7d:74:1f:a2:ce:1e:39:36:17:15:52:
ca:fe:6e:8f:94:91:72:b9:d0:0d:7b:35:cc:58:fa:
28:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:3E:38:F1:6D:81:97:B6:9C:4E:84:30:75:D8:8B:D1:B8:71:E4:20
X509v3 Authority Key Identifier:
keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e38382e302f32342d3234203d3e203239383032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.88.0/24
Signature Algorithm: sha256WithRSAEncryption
60:92:ad:e8:ff:15:48:83:0a:20:ee:0b:28:4f:33:d4:66:9c:
20:e4:0d:ba:c6:55:c4:e8:c5:90:27:3a:84:f0:49:a2:1d:ad:
c6:3a:ab:3e:05:72:28:72:23:49:4b:ff:49:7c:c6:14:f5:9f:
8f:94:94:c3:b0:47:80:f1:42:11:99:b5:3a:69:ba:f9:b1:be:
ca:c4:93:a6:18:af:31:80:0e:f1:a1:1d:82:c0:32:fa:d3:bf:
de:4a:d4:95:1e:18:a8:48:9b:4d:cb:c9:28:e1:17:23:54:df:
f7:f5:b1:8b:a7:5e:73:2e:31:d8:0b:36:b3:11:48:23:0b:11:
13:7f:af:21:af:d1:9f:4f:64:64:55:0d:af:13:b4:60:bf:ad:
70:ea:2c:89:84:2d:ad:e9:34:ad:a8:06:c3:dd:97:9a:66:cf:
dd:cb:0c:7f:60:9d:4f:a5:43:6c:05:67:6a:4c:b0:93:e7:c0:
4b:84:05:96:fe:3b:ec:65:89:70:99:ec:f3:c6:6e:5e:01:69:
74:d0:26:eb:05:22:69:1d:08:4c:fd:c7:e9:bb:11:c4:11:32:
65:3b:8b:bf:13:5a:21:0e:ae:83:e7:e7:f7:a9:8d:63:75:cd:
86:ac:e4:a0:ba:27:79:b5:13:d5:7f:40:29:7d:5e:3c:02:f1:
eb:c8:72:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 03:44:58 2024 by rpki-client on console-ams.rpki-client.org