Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a94df714-d37d-4942-8e94-91dd853ef7e3/0/3133392e32382e32362e302f32342d3234203d3e20313337343039.roa
File: 3133392e32382e32362e302f32342d3234203d3e20313337343039.roa (raw, json)
Hash identifier: 6P6m6ZrLWIoOiHXMDPcTOdM6dCPJ/lr/ReXaIqC/Z7M=
Subject key identifier: FD:F0:ED:36:C9:7D:77:43:70:6F:9E:A5:B9:EB:C1:EB:48:A1:37:D9
Certificate issuer: /CN=637fd1ba3fed44454d6d7030247709d28db3491a
Certificate serial: 01808D9A6C875A2CCF25732729FE35A79F8319F6
Authority key identifier: 63:7F:D1:BA:3F:ED:44:45:4D:6D:70:30:24:77:09:D2:8D:B3:49:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y3_Ruj_tREVNbXAwJHcJ0o2zSRo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a94df714-d37d-4942-8e94-91dd853ef7e3/0/3133392e32382e32362e302f32342d3234203d3e20313337343039.roa
Signing time: Mon 30 Oct 2023 07:34:40 +0000
ROA not before: Mon 30 Oct 2023 07:29:40 +0000
ROA not after: Mon 28 Oct 2024 07:34:40 +0000
asID: 137409
IP address blocks: 139.28.26.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a94df714-d37d-4942-8e94-91dd853ef7e3/0/637FD1BA3FED44454D6D7030247709D28DB3491A.crl
rsync://rsync.paas.rpki.ripe.net/repository/a94df714-d37d-4942-8e94-91dd853ef7e3/0/637FD1BA3FED44454D6D7030247709D28DB3491A.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y3_Ruj_tREVNbXAwJHcJ0o2zSRo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 May 2024 11:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:80:8d:9a:6c:87:5a:2c:cf:25:73:27:29:fe:35:a7:9f:83:19:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=637fd1ba3fed44454d6d7030247709d28db3491a
Validity
Not Before: Oct 30 07:29:40 2023 GMT
Not After : Oct 28 07:34:40 2024 GMT
Subject: CN=FDF0ED36C97D7743706F9EA5B9EBC1EB48A137D9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:d9:f1:4c:19:d3:b5:e9:20:d8:d9:31:e1:09:
42:53:99:be:29:11:be:04:03:c0:9a:42:9f:5a:8c:
e4:25:4c:f0:37:e4:b5:d6:79:fa:00:dc:bb:ea:9b:
f6:2e:37:54:b0:f5:24:4f:f8:b0:28:b9:49:29:79:
1b:b5:36:b0:46:4a:a4:3d:19:f3:23:43:a8:81:67:
48:98:17:1e:1b:89:95:48:4a:f8:b0:2d:81:39:e9:
33:e2:7b:6e:29:2c:a3:64:31:a1:7e:46:61:30:d8:
c0:7f:c8:51:82:7c:e0:91:d6:28:14:0c:fd:6c:07:
46:9a:6a:54:23:67:86:fd:29:cc:fc:bb:e7:fa:9f:
64:7b:ee:81:dd:86:24:4b:84:88:27:cf:fb:db:fa:
48:7f:d4:10:4d:81:bd:b6:eb:17:1d:6e:1c:83:01:
0e:f8:93:3c:b7:fa:d1:c0:b8:7c:c9:59:13:ee:ce:
9f:08:73:32:11:1d:c4:7c:36:df:2b:7e:e8:24:1b:
4a:23:05:b9:fa:31:97:c1:22:a9:f0:b6:6c:e9:85:
66:fb:82:fa:8f:3f:63:2e:ad:ea:fa:52:b0:c4:c2:
79:cd:22:23:60:96:54:df:96:3b:25:d0:06:1a:99:
9f:4b:23:56:a6:e5:74:1d:d9:5d:a6:bc:e8:ed:b6:
43:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:F0:ED:36:C9:7D:77:43:70:6F:9E:A5:B9:EB:C1:EB:48:A1:37:D9
X509v3 Authority Key Identifier:
keyid:63:7F:D1:BA:3F:ED:44:45:4D:6D:70:30:24:77:09:D2:8D:B3:49:1A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a94df714-d37d-4942-8e94-91dd853ef7e3/0/637FD1BA3FED44454D6D7030247709D28DB3491A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y3_Ruj_tREVNbXAwJHcJ0o2zSRo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a94df714-d37d-4942-8e94-91dd853ef7e3/0/3133392e32382e32362e302f32342d3234203d3e20313337343039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.28.26.0/24
Signature Algorithm: sha256WithRSAEncryption
27:f2:1a:7d:ab:8f:b8:c3:ba:71:e5:39:32:0c:1b:b3:06:97:
db:46:b2:04:f2:85:90:6f:42:4b:22:7b:0e:6e:cd:4e:f6:a9:
9b:42:56:f3:74:5a:ac:bd:b6:cf:33:64:4d:43:76:53:62:9d:
17:d5:a9:0b:1f:c9:73:80:57:fb:d8:68:4a:c4:5d:07:e8:62:
39:86:5d:b5:44:0b:80:dd:98:63:d0:8a:87:f7:0a:c6:7a:42:
a7:ad:29:d1:45:fc:df:46:f4:84:21:fb:a1:6d:83:32:4a:30:
3a:1c:62:88:e1:c8:e8:71:ac:66:11:ad:44:cf:90:c3:ec:fe:
b9:23:42:a4:e3:a8:a5:32:97:f6:20:3c:a0:e4:be:74:72:c4:
fb:19:73:f4:cd:5e:87:93:8b:ea:6e:8d:89:43:66:b8:d9:61:
28:97:4d:4e:9b:b0:2e:75:cd:d7:28:8a:3f:af:5e:58:55:51:
b1:62:55:8c:da:f6:74:4f:ff:2a:fe:a9:85:97:db:a1:0c:7d:
9b:90:55:6f:28:b1:6a:b3:77:17:c7:15:bf:60:17:af:af:3b:
a6:6b:32:34:a4:f6:d6:89:d3:9b:6c:81:51:db:71:7f:14:31:
1b:6b:51:9c:ba:f2:19:1b:c7:9f:f3:a5:65:0c:fb:07:9b:25:
19:89:11:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 19:21:10 2024 by rpki-client on console-fra.rpki-client.org