Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a94df714-d37d-4942-8e94-91dd853ef7e3/0/3133392e32382e32352e302f32342d3234203d3e20323131343135.roa
File: 3133392e32382e32352e302f32342d3234203d3e20323131343135.roa (raw, json)
Hash identifier: o6zOw5l/y8kgTkSv4+d1CJx8Nokcx+1ZjqL9E9OOnmo=
Subject key identifier: 3B:D0:83:CA:D1:21:6B:59:43:6D:74:BB:2A:39:DF:51:94:8B:F2:19
Certificate issuer: /CN=637fd1ba3fed44454d6d7030247709d28db3491a
Certificate serial: 593BEFFC83F889B282B1A7C846492A65258EA23C
Authority key identifier: 63:7F:D1:BA:3F:ED:44:45:4D:6D:70:30:24:77:09:D2:8D:B3:49:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y3_Ruj_tREVNbXAwJHcJ0o2zSRo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a94df714-d37d-4942-8e94-91dd853ef7e3/0/3133392e32382e32352e302f32342d3234203d3e20323131343135.roa
Signing time: Fri 27 Oct 2023 14:01:19 +0000
ROA not before: Fri 27 Oct 2023 13:56:19 +0000
ROA not after: Fri 25 Oct 2024 14:01:19 +0000
asID: 211415
IP address blocks: 139.28.25.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a94df714-d37d-4942-8e94-91dd853ef7e3/0/637FD1BA3FED44454D6D7030247709D28DB3491A.crl
rsync://rsync.paas.rpki.ripe.net/repository/a94df714-d37d-4942-8e94-91dd853ef7e3/0/637FD1BA3FED44454D6D7030247709D28DB3491A.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y3_Ruj_tREVNbXAwJHcJ0o2zSRo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 15 May 2024 22:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:3b:ef:fc:83:f8:89:b2:82:b1:a7:c8:46:49:2a:65:25:8e:a2:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=637fd1ba3fed44454d6d7030247709d28db3491a
Validity
Not Before: Oct 27 13:56:19 2023 GMT
Not After : Oct 25 14:01:19 2024 GMT
Subject: CN=3BD083CAD1216B59436D74BB2A39DF51948BF219
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:94:9b:50:9f:be:a4:c9:09:9f:e0:ea:b5:77:
ac:cd:40:79:74:bf:77:68:9e:e8:d1:c5:ee:e0:02:
ba:fa:11:bf:5a:b8:8d:01:3e:9f:56:d5:be:84:de:
bf:80:e7:c7:e6:d7:4e:78:2b:b3:e8:06:7b:4c:b6:
f3:f1:a5:6c:71:d4:99:75:bf:d4:82:3f:a5:af:d1:
56:1b:3d:e9:86:a3:ae:ee:8d:f6:7b:25:be:f3:5b:
9c:8f:42:62:44:86:5c:b2:2c:dc:53:da:ac:c1:1d:
01:30:28:6f:43:7b:57:49:cf:f3:43:07:78:58:cf:
6c:31:d4:b9:2d:45:43:e5:72:e7:75:82:42:b5:6e:
7d:0a:7f:8c:28:10:a9:c6:eb:04:5d:32:f5:97:38:
6e:af:91:7d:5d:dd:93:89:59:48:34:c4:47:3a:2e:
a7:bc:1a:e4:7a:10:bc:84:48:1e:97:46:16:77:d5:
40:cc:ed:a2:38:91:fd:c0:d8:18:e1:61:d6:a3:02:
af:20:34:62:ed:02:08:61:2e:e0:60:d4:f9:ce:87:
5c:45:dd:b6:0d:bf:19:f4:eb:ff:f2:8b:3f:88:dc:
d8:b2:cc:4d:03:5b:5c:56:ff:ce:ff:d0:23:b8:b6:
96:ac:da:35:a8:ad:85:5c:3f:66:11:ad:7e:42:a2:
fd:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:D0:83:CA:D1:21:6B:59:43:6D:74:BB:2A:39:DF:51:94:8B:F2:19
X509v3 Authority Key Identifier:
keyid:63:7F:D1:BA:3F:ED:44:45:4D:6D:70:30:24:77:09:D2:8D:B3:49:1A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a94df714-d37d-4942-8e94-91dd853ef7e3/0/637FD1BA3FED44454D6D7030247709D28DB3491A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y3_Ruj_tREVNbXAwJHcJ0o2zSRo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a94df714-d37d-4942-8e94-91dd853ef7e3/0/3133392e32382e32352e302f32342d3234203d3e20323131343135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.28.25.0/24
Signature Algorithm: sha256WithRSAEncryption
09:2f:f9:79:4a:da:a9:6a:fa:ab:e1:46:36:ec:9d:3d:f7:78:
17:6e:a7:8f:e1:af:52:fe:c5:7b:ec:b0:99:d2:ce:53:bd:fe:
e6:01:5b:6f:b1:38:5f:4b:26:54:95:71:c6:a3:a0:61:98:4a:
33:6a:11:40:ee:ac:7a:f5:88:63:12:d0:ca:2c:06:38:ef:38:
49:df:43:cb:28:34:fc:e9:03:2b:54:7f:88:01:14:33:54:86:
25:04:ae:8e:08:40:5f:8c:62:40:af:e4:c2:a4:5c:b5:9b:72:
c7:d9:0c:15:ea:b3:df:31:76:3f:9b:b9:2a:69:fd:9c:de:bd:
a3:a7:4e:c7:19:ed:3d:f0:23:3a:52:b5:b9:22:d2:35:d5:56:
23:f6:87:c8:2e:d1:23:67:40:5c:87:45:3b:f0:5c:d9:57:b9:
1e:8c:8f:2e:45:e2:b9:cf:d1:33:e5:f6:6d:10:ae:99:6c:61:
11:d9:97:ce:42:66:c0:02:a0:7f:eb:9b:32:d9:aa:98:48:95:
4f:94:a2:e5:9c:e0:68:8c:42:fd:92:6a:54:3c:37:ca:6a:e4:
8d:a1:ca:c8:5d:58:88:3a:46:59:4c:10:f3:b7:0e:7f:d9:e9:
9b:3b:d9:ab:15:25:3d:1b:2d:58:b7:18:06:e5:25:3e:6b:51:
f0:e3:78:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 15 03:53:26 2024 by rpki-client on console-ams.rpki-client.org