Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/39332e39322e32312e302f32342d3234203d3e203631333137.roa
File: 39332e39322e32312e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: s+DJCjuexS+8LR+L9+cEHa8sRxFXs3Ux+/vLkX1MZWQ=
Subject key identifier: 82:A0:9E:26:17:D6:6C:4A:41:AF:3A:22:18:54:C2:E9:D8:3E:1E:56
Certificate issuer: /CN=d01ba013bc1e6d86f0d6d58eafa54e27fada3444
Certificate serial: 388689D1435689AA5ACB9A33313B09D651E2E143
Authority key identifier: D0:1B:A0:13:BC:1E:6D:86:F0:D6:D5:8E:AF:A5:4E:27:FA:DA:34:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0BugE7webYbw1tWOr6VOJ_raNEQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/39332e39322e32312e302f32342d3234203d3e203631333137.roa
Signing time: Tue 30 May 2023 10:24:25 +0000
ROA not before: Tue 30 May 2023 10:19:25 +0000
ROA not after: Tue 28 May 2024 10:24:25 +0000
asID: 61317
IP address blocks: 93.92.21.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.crl
rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.mft
rsync://rpki.ripe.net/repository/DEFAULT/0BugE7webYbw1tWOr6VOJ_raNEQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 19 Apr 2024 05:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:86:89:d1:43:56:89:aa:5a:cb:9a:33:31:3b:09:d6:51:e2:e1:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d01ba013bc1e6d86f0d6d58eafa54e27fada3444
Validity
Not Before: May 30 10:19:25 2023 GMT
Not After : May 28 10:24:25 2024 GMT
Subject: CN=82A09E2617D66C4A41AF3A221854C2E9D83E1E56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:6a:7f:b9:38:87:29:96:a1:36:83:3a:16:70:
f7:a7:f5:b9:eb:63:d4:57:c0:38:d2:9b:bf:d4:5d:
08:91:57:99:8e:46:a5:82:6e:4f:d8:23:fe:47:01:
b2:f6:b5:f6:4c:29:7a:a9:0a:b7:72:77:6c:2c:42:
f2:8f:0e:f5:15:e1:5c:6d:1d:4b:26:08:8e:dd:67:
3b:d2:a9:11:31:50:3e:5d:a8:c8:6e:a5:fe:cd:85:
a5:2b:cc:7f:a3:e5:d8:41:d1:05:29:7a:1c:35:b1:
5e:17:c6:4e:40:28:5e:36:da:6f:01:59:87:25:ce:
77:6d:8c:72:a2:f1:69:13:2b:a5:6a:bb:ab:d3:56:
45:65:31:11:88:42:14:a0:2f:c8:f9:8a:93:3c:bc:
65:cb:a3:71:db:44:3f:ea:4c:d5:fd:19:b6:f2:d8:
ea:4e:bd:31:36:de:30:56:09:de:52:82:d5:98:90:
01:cd:55:70:96:07:9b:72:08:01:70:89:60:5d:76:
8a:4a:26:d2:8f:11:1b:6e:f7:fb:40:53:55:96:fa:
a5:8c:51:03:d4:cb:49:23:cc:70:f5:3a:ae:3e:cf:
c5:85:b8:47:8e:c6:3d:8b:7d:37:2e:b5:86:c0:e7:
fd:31:fa:5a:f7:0d:5f:bd:0b:04:61:67:39:34:94:
cc:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:A0:9E:26:17:D6:6C:4A:41:AF:3A:22:18:54:C2:E9:D8:3E:1E:56
X509v3 Authority Key Identifier:
keyid:D0:1B:A0:13:BC:1E:6D:86:F0:D6:D5:8E:AF:A5:4E:27:FA:DA:34:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0BugE7webYbw1tWOr6VOJ_raNEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/39332e39322e32312e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.92.21.0/24
Signature Algorithm: sha256WithRSAEncryption
29:bd:69:ce:70:52:65:a7:29:93:e3:5f:81:1f:f8:94:38:a1:
fe:62:5a:eb:db:fb:a6:71:53:55:17:34:a5:86:aa:99:83:a3:
f1:cf:92:d1:d7:50:b0:b8:0a:41:55:04:90:fe:c6:b2:a5:00:
05:2f:ab:1a:a0:7e:06:10:ec:a0:48:b4:00:1b:af:6b:3a:24:
fd:a7:f7:08:67:1e:13:d4:20:2d:d0:61:27:2f:bc:d3:b2:cc:
bc:a2:bf:48:b2:fc:19:00:0d:2b:56:43:1c:ae:ee:6d:7c:d0:
79:e1:84:1a:9a:c0:16:1d:f7:4c:a8:07:10:2e:9d:12:30:11:
8e:b2:f2:c5:51:53:d0:4e:8f:b0:29:f6:ea:06:f5:8e:93:2c:
c9:4b:03:48:4e:4f:22:97:3b:f5:11:a7:70:71:e6:ab:73:3a:
12:28:24:a3:b4:db:9b:4d:d7:e2:87:50:92:6d:b6:71:9c:14:
af:ef:64:cd:fe:a6:e9:3a:60:42:93:84:63:3e:4a:12:22:4b:
6f:fe:60:1c:29:f3:37:46:cc:8e:13:47:2c:cd:c4:ea:4c:3a:
fc:95:cd:70:14:aa:1e:ac:a7:18:37:68:cd:21:34:fe:7f:53:
d9:83:5f:38:63:26:10:85:e6:69:6a:7d:4e:4b:3e:cb:1b:88:
6c:4c:ff:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 18 15:34:44 2024 by rpki-client on console-fra.rpki-client.org