Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a84b548c-275a-476e-bfbe-540e73e62383/0/3139332e33362e3130352e302f32342d3234203d3e20323130303336.roa
File: 3139332e33362e3130352e302f32342d3234203d3e20323130303336.roa (raw, json)
Hash identifier: UgwBQxrg9IZR0tU2A8AY1Wenj1y0FXluIB4cA2fTaP0=
Subject key identifier: 72:45:31:B5:8F:34:F1:40:48:9D:69:87:4E:D9:2C:5E:E3:EC:2F:D9
Certificate issuer: /CN=87d48146623246673056151f64abb8d1ee6b7727
Certificate serial: 27CD0B046E402E7D5DFB42B8B17222CF96A8F052
Authority key identifier: 87:D4:81:46:62:32:46:67:30:56:15:1F:64:AB:B8:D1:EE:6B:77:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h9SBRmIyRmcwVhUfZKu40e5rdyc.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a84b548c-275a-476e-bfbe-540e73e62383/0/3139332e33362e3130352e302f32342d3234203d3e20323130303336.roa
Signing time: Mon 15 Jan 2024 15:37:27 +0000
ROA not before: Mon 15 Jan 2024 15:32:27 +0000
ROA not after: Mon 13 Jan 2025 15:37:27 +0000
asID: 210036
IP address blocks: 193.36.105.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a84b548c-275a-476e-bfbe-540e73e62383/0/87D48146623246673056151F64ABB8D1EE6B7727.crl
rsync://rsync.paas.rpki.ripe.net/repository/a84b548c-275a-476e-bfbe-540e73e62383/0/87D48146623246673056151F64ABB8D1EE6B7727.mft
rsync://rpki.ripe.net/repository/DEFAULT/h9SBRmIyRmcwVhUfZKu40e5rdyc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 10:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:cd:0b:04:6e:40:2e:7d:5d:fb:42:b8:b1:72:22:cf:96:a8:f0:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87d48146623246673056151f64abb8d1ee6b7727
Validity
Not Before: Jan 15 15:32:27 2024 GMT
Not After : Jan 13 15:37:27 2025 GMT
Subject: CN=724531B58F34F140489D69874ED92C5EE3EC2FD9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:60:17:a8:f4:9b:f6:3c:ba:83:cb:24:30:a3:
26:1c:f9:80:35:bc:aa:c3:5f:2a:2d:17:4a:c8:c6:
89:8e:1e:7e:60:ab:a9:84:5d:ad:b1:56:96:73:5c:
43:53:e0:cd:f9:bd:36:ca:9e:3c:6b:2c:43:f9:04:
65:c7:8c:bf:5f:98:f4:da:a5:49:3a:71:14:54:c5:
82:66:fe:0a:4d:1d:a9:99:28:12:e3:5d:e3:18:57:
bf:21:d5:72:f9:3b:19:cb:ab:80:14:12:a3:ec:90:
f8:30:cd:a1:ec:3f:b0:a7:cc:49:80:7f:df:d1:5c:
83:7e:51:78:f7:a2:96:6d:1d:f1:69:62:f5:75:5e:
0b:4f:24:a8:58:3d:02:31:74:63:66:e6:1d:c9:53:
3a:d5:cd:cc:7e:4d:65:fa:d8:1e:bf:79:7b:b7:51:
05:62:88:bd:1c:60:bf:a9:17:0b:3f:31:81:df:62:
02:34:7f:6f:43:a3:02:d0:75:01:4a:fd:29:ab:27:
25:75:26:c1:e4:d1:f8:bd:62:a1:5e:4d:a1:b2:0a:
3d:f8:46:51:96:e8:e8:63:8e:6e:f3:2c:79:c7:ab:
29:f6:e0:dd:3f:b7:98:49:57:d1:d0:3f:c2:f8:dc:
42:fa:a5:5d:54:bb:8c:bf:b6:c6:c1:4b:20:27:cd:
88:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:45:31:B5:8F:34:F1:40:48:9D:69:87:4E:D9:2C:5E:E3:EC:2F:D9
X509v3 Authority Key Identifier:
keyid:87:D4:81:46:62:32:46:67:30:56:15:1F:64:AB:B8:D1:EE:6B:77:27
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a84b548c-275a-476e-bfbe-540e73e62383/0/87D48146623246673056151F64ABB8D1EE6B7727.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h9SBRmIyRmcwVhUfZKu40e5rdyc.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a84b548c-275a-476e-bfbe-540e73e62383/0/3139332e33362e3130352e302f32342d3234203d3e20323130303336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.36.105.0/24
Signature Algorithm: sha256WithRSAEncryption
82:2b:cc:81:62:30:6a:69:fe:f5:1f:42:0c:d9:c0:c7:8d:bd:
11:60:89:66:05:9f:d7:cc:5e:06:cb:3c:03:ce:3f:24:23:d8:
22:83:fa:39:69:e0:5e:94:ba:8d:a3:fc:41:2f:a8:bc:49:79:
3a:99:4b:bb:cd:32:41:84:26:5f:06:bd:06:4e:53:13:3f:ee:
fa:f9:d8:72:d5:eb:ed:01:5b:b3:84:3a:16:2f:a0:01:54:d4:
38:75:ec:b0:1d:fe:c8:02:9d:b9:0c:a2:c0:70:00:89:6a:c0:
2d:97:ab:86:49:90:8e:1e:06:02:e7:a2:48:c4:17:ba:64:25:
e5:4c:90:47:0c:91:26:1d:89:f0:60:eb:cb:96:31:f9:dc:ab:
96:cf:9e:ca:f7:f8:4e:5f:e8:9e:9b:a7:62:db:7d:3d:17:d4:
9d:dd:8f:88:0d:9b:34:6f:49:4b:a1:9a:5f:2d:50:f7:33:f3:
98:6e:7b:a5:fc:55:b7:86:3c:7f:7e:3a:f8:f9:96:cc:f5:fa:
6a:de:06:85:64:86:c6:4f:d0:43:96:c7:a5:1f:9e:10:52:2d:
77:1a:bc:3c:97:da:19:a6:4a:0c:f8:e7:0e:02:e3:2a:20:fb:
94:ea:e0:88:82:b8:83:29:b9:57:e6:80:99:49:c1:aa:16:98:
ae:14:db:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 12:58:21 2024 by rpki-client on console-fra.rpki-client.org