Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e39312e302f32342d3234203d3e2039303039.roa
File: 3231332e3133392e39312e302f32342d3234203d3e2039303039.roa (raw, json)
Hash identifier: xgaIqdtwavjhzG1jXVp6EFDMpjflmhfZfviz1IzDLuw=
Subject key identifier: 80:CF:BA:28:30:08:20:E8:6F:61:2B:AC:1E:7A:57:B0:22:B4:0F:8A
Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Certificate serial: 7F82B026F05F5F720506A184595540924EBEEFE0
Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e39312e302f32342d3234203d3e2039303039.roa
Signing time: Tue 21 May 2024 08:14:47 +0000
ROA not before: Tue 21 May 2024 08:09:47 +0000
ROA not after: Tue 20 May 2025 08:14:47 +0000
asID: 9009
IP address blocks: 213.139.91.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.mft
rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:82:b0:26:f0:5f:5f:72:05:06:a1:84:59:55:40:92:4e:be:ef:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Validity
Not Before: May 21 08:09:47 2024 GMT
Not After : May 20 08:14:47 2025 GMT
Subject: CN=80CFBA28300820E86F612BAC1E7A57B022B40F8A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:85:23:6f:7f:77:5b:5e:ed:ba:81:31:b7:10:
e6:f9:64:ca:18:3d:b6:be:e4:24:c2:40:38:1b:27:
bb:fa:ba:78:ed:94:3c:f9:f5:06:cd:16:b6:ac:f6:
c5:55:c4:9a:4b:a8:4d:e6:18:77:6b:5e:bd:eb:4e:
93:72:16:d1:76:77:ba:aa:13:a8:45:13:c5:82:81:
f3:72:e7:44:30:86:a7:0a:39:82:62:38:37:47:c8:
02:d0:1a:26:b9:ce:fe:00:9f:a6:fe:ba:bc:d8:9c:
ba:99:df:61:9a:ce:9c:91:d6:6c:c8:14:8f:14:ef:
0a:df:ba:4d:42:69:3c:c0:44:8c:9a:aa:be:f7:d6:
db:a0:f7:99:e4:f0:d9:54:61:d9:b1:44:19:7e:e9:
e6:93:5e:25:31:2e:48:99:7b:03:cc:b5:6f:4a:0e:
e5:d6:34:93:bb:16:94:86:1a:67:c6:5a:5b:f3:89:
8d:1c:c3:4d:5b:a3:88:00:dd:9f:5b:ff:29:42:ea:
88:29:47:32:c2:d2:ae:97:9f:91:5f:6a:59:f0:48:
a4:0c:1d:c6:2b:c1:aa:36:26:0c:9b:1e:8b:4c:91:
37:b4:0a:f4:97:75:71:d5:66:1b:f3:16:41:92:3a:
03:f3:f3:d6:5f:ba:a4:13:10:98:01:b1:b1:33:36:
5b:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:CF:BA:28:30:08:20:E8:6F:61:2B:AC:1E:7A:57:B0:22:B4:0F:8A
X509v3 Authority Key Identifier:
keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e39312e302f32342d3234203d3e2039303039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.91.0/24
Signature Algorithm: sha256WithRSAEncryption
36:09:0f:c4:bd:a7:c3:3e:05:21:6e:d3:19:ec:7e:a7:2b:7e:
f9:ef:1d:c4:0e:23:9d:45:45:df:4f:89:d8:f4:53:5c:0d:8b:
a2:18:98:b9:eb:e6:aa:05:60:c1:f9:c1:09:24:63:ef:55:6a:
d0:88:a4:6e:22:c7:fc:6d:9d:dd:b7:8f:74:38:2e:c0:11:8f:
45:39:c3:20:c2:79:a6:f6:cd:84:f7:9b:d8:3f:e0:c2:22:e4:
4f:ad:0c:24:bd:d6:ac:48:de:e0:60:6c:5b:61:af:77:21:4d:
5c:83:13:f0:53:bc:3e:70:ea:be:91:a6:0e:39:1d:c7:4e:23:
be:30:8b:e0:c6:94:75:d5:1e:dc:4e:92:bb:9c:c2:8f:35:a2:
28:2d:93:14:34:35:a2:14:cd:a7:bf:73:1a:d9:7c:eb:56:e3:
79:10:be:00:ee:02:9d:2e:55:79:da:94:45:8e:6f:82:ea:55:
d0:e1:c1:5d:98:c6:a2:7a:60:01:0a:b6:9d:d1:c4:8e:5a:ab:
d7:cd:ed:6d:36:59:b9:d2:55:52:b2:ed:5f:f6:88:9f:df:97:
18:16:d7:bc:7a:a9:9c:e3:8f:1b:38:57:d2:bd:8c:5b:43:59:
80:47:3e:b2:82:d2:78:bb:ec:f8:fa:30:fb:b7:d4:29:56:28:
ff:00:04:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 06:58:17 2024 by rpki-client on console-fra.rpki-client.org