Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a94df714-d37d-4942-8e94-91dd853ef7e3/0/3133392e32382e32342e302f32342d3234203d3e20323131343430.roa
File: 3133392e32382e32342e302f32342d3234203d3e20323131343430.roa (raw, json)
Hash identifier: sQzRaIn68UKgeOhWa3EKecj44XiFcDfTSSWOvDZfL50=
Subject key identifier: C0:F4:03:D6:1B:E9:D1:E2:D7:C1:2C:42:5A:3C:29:AC:15:E4:73:80
Certificate issuer: /CN=637fd1ba3fed44454d6d7030247709d28db3491a
Certificate serial: 7F5270BDC00DF919B1BECFEBD110B008E27EFBB5
Authority key identifier: 63:7F:D1:BA:3F:ED:44:45:4D:6D:70:30:24:77:09:D2:8D:B3:49:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y3_Ruj_tREVNbXAwJHcJ0o2zSRo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a94df714-d37d-4942-8e94-91dd853ef7e3/0/3133392e32382e32342e302f32342d3234203d3e20323131343430.roa
Signing time: Fri 27 Sep 2024 14:43:22 +0000
ROA not before: Fri 27 Sep 2024 14:38:22 +0000
ROA not after: Fri 26 Sep 2025 14:43:22 +0000
asID: 211440
IP address blocks: 139.28.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a94df714-d37d-4942-8e94-91dd853ef7e3/0/637FD1BA3FED44454D6D7030247709D28DB3491A.crl
rsync://rsync.paas.rpki.ripe.net/repository/a94df714-d37d-4942-8e94-91dd853ef7e3/0/637FD1BA3FED44454D6D7030247709D28DB3491A.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y3_Ruj_tREVNbXAwJHcJ0o2zSRo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:52:70:bd:c0:0d:f9:19:b1:be:cf:eb:d1:10:b0:08:e2:7e:fb:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=637fd1ba3fed44454d6d7030247709d28db3491a
Validity
Not Before: Sep 27 14:38:22 2024 GMT
Not After : Sep 26 14:43:22 2025 GMT
Subject: CN=C0F403D61BE9D1E2D7C12C425A3C29AC15E47380
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:e4:c6:76:a9:0e:5c:d2:84:91:d3:98:f1:c1:
5d:ae:8f:58:df:2b:1d:30:80:b8:3b:4b:26:ea:72:
f5:36:43:55:0e:86:f4:e5:19:2f:57:c5:4b:e0:6e:
e4:ba:d4:bc:c4:de:78:55:71:0b:f0:e7:0e:1f:e9:
33:9e:6a:67:05:a1:61:81:5e:74:48:c7:a7:18:92:
98:a3:73:be:6a:24:aa:a3:2e:6f:6c:c7:b4:a8:66:
2e:3d:a5:bc:ac:85:42:09:4b:75:52:1e:d5:42:fb:
a5:09:25:fa:5e:7a:27:d1:46:3f:9f:41:cb:d9:ab:
09:d9:33:a0:7c:fd:c6:99:a5:db:3f:23:ce:b4:a9:
2a:3b:02:bc:96:31:56:1d:20:15:8b:45:3b:b5:b0:
a0:d4:fe:26:aa:43:ce:6b:68:bf:ab:b2:31:cc:0a:
16:a5:78:04:3d:4c:b3:cc:bd:7e:5d:c1:51:d6:34:
a3:17:e4:b8:2b:8a:ea:a3:83:af:75:30:5f:65:cf:
bb:61:c2:30:c1:f1:34:45:9c:14:eb:9c:2e:15:5b:
a3:53:cc:02:ce:48:e0:78:fb:10:67:e3:99:14:a0:
70:ea:e6:b6:5b:f7:d6:49:82:8b:2e:73:49:28:c9:
07:e0:5a:69:b9:79:20:e7:93:68:e3:c3:39:7e:11:
3e:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:F4:03:D6:1B:E9:D1:E2:D7:C1:2C:42:5A:3C:29:AC:15:E4:73:80
X509v3 Authority Key Identifier:
keyid:63:7F:D1:BA:3F:ED:44:45:4D:6D:70:30:24:77:09:D2:8D:B3:49:1A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a94df714-d37d-4942-8e94-91dd853ef7e3/0/637FD1BA3FED44454D6D7030247709D28DB3491A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y3_Ruj_tREVNbXAwJHcJ0o2zSRo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a94df714-d37d-4942-8e94-91dd853ef7e3/0/3133392e32382e32342e302f32342d3234203d3e20323131343430.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.28.24.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:1c:f4:4b:72:c4:d2:53:29:b2:45:7f:88:fa:d1:93:b6:19:
81:e8:16:ca:55:27:e5:84:23:3d:08:df:34:04:4c:bd:bb:f5:
14:5e:4b:98:f3:10:0e:59:56:85:76:6c:49:96:26:5a:53:fe:
06:f6:cd:b5:fa:46:61:de:57:48:36:92:d7:5a:28:29:53:10:
ad:1a:67:4f:87:5c:e0:fe:d8:f9:02:a1:10:e4:ac:1c:e7:26:
60:a9:3c:88:28:fd:6c:33:66:f6:f8:df:5a:8a:6b:ee:cc:10:
05:45:9f:f6:92:7a:8d:2a:66:07:16:89:5b:6a:27:9e:8c:c2:
eb:c8:e9:3f:85:85:28:9b:2a:75:7f:13:d0:c7:46:5b:1e:5f:
c2:40:c7:d2:ec:b7:6e:d5:b2:50:ba:3e:e8:51:f2:c9:82:e4:
da:03:af:af:b1:95:81:b5:a9:da:f6:e2:5c:20:1a:d1:79:59:
0f:fa:c2:45:a4:14:73:c4:a1:e5:04:1b:82:32:45:64:f5:01:
c2:f7:df:90:3f:41:90:61:b8:3f:61:8e:3c:33:6f:99:b7:44:
02:cd:41:1a:bb:50:11:f0:38:fd:a7:9b:27:7e:14:2a:54:4d:
1f:61:dc:61:76:16:b2:24:f3:c1:b8:22:70:b3:e7:dc:74:58:
76:45:33:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:40:00 2024 by rpki-client on console-ams.rpki-client.org