Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a94df714-d37d-4942-8e94-91dd853ef7e3/0/3133392e32382e32372e302f32342d3234203d3e20323036313530.roa
File: 3133392e32382e32372e302f32342d3234203d3e20323036313530.roa (raw, json)
Hash identifier: k3A7kdn3TS+9Eoz1EQAxW3mBwDNp5bJPRYJ9MerPXHM=
Subject key identifier: 57:4C:C7:51:1E:5B:DC:D2:D4:9C:7D:94:44:21:3B:51:AE:3C:9C:15
Certificate issuer: /CN=637fd1ba3fed44454d6d7030247709d28db3491a
Certificate serial: 7688770675F5419B4A88625418C88D93DB6BEE47
Authority key identifier: 63:7F:D1:BA:3F:ED:44:45:4D:6D:70:30:24:77:09:D2:8D:B3:49:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y3_Ruj_tREVNbXAwJHcJ0o2zSRo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a94df714-d37d-4942-8e94-91dd853ef7e3/0/3133392e32382e32372e302f32342d3234203d3e20323036313530.roa
Signing time: Fri 27 Oct 2023 14:01:21 +0000
ROA not before: Fri 27 Oct 2023 13:56:21 +0000
ROA not after: Fri 25 Oct 2024 14:01:21 +0000
asID: 206150
IP address blocks: 139.28.27.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a94df714-d37d-4942-8e94-91dd853ef7e3/0/637FD1BA3FED44454D6D7030247709D28DB3491A.crl
rsync://rsync.paas.rpki.ripe.net/repository/a94df714-d37d-4942-8e94-91dd853ef7e3/0/637FD1BA3FED44454D6D7030247709D28DB3491A.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y3_Ruj_tREVNbXAwJHcJ0o2zSRo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 23:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:88:77:06:75:f5:41:9b:4a:88:62:54:18:c8:8d:93:db:6b:ee:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=637fd1ba3fed44454d6d7030247709d28db3491a
Validity
Not Before: Oct 27 13:56:21 2023 GMT
Not After : Oct 25 14:01:21 2024 GMT
Subject: CN=574CC7511E5BDCD2D49C7D9444213B51AE3C9C15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:bd:5b:53:75:81:da:30:a2:c9:37:96:32:1c:
69:a0:c9:01:db:79:a9:70:b4:dd:a0:67:f7:21:12:
30:69:6a:00:b4:e1:06:34:cf:e7:32:83:43:b8:35:
2b:36:5c:c5:89:c7:64:7a:19:41:da:c9:3c:56:40:
4b:9f:e7:3c:c2:fd:9b:0f:85:ce:0d:ee:e9:c0:20:
90:31:18:c6:6d:1e:96:0d:9f:fe:21:a9:8f:26:b4:
6b:2c:1b:04:28:2e:cc:cf:c6:5f:62:0c:74:93:24:
e3:de:1b:8f:22:db:b5:2f:85:e1:59:53:65:4d:02:
1e:e5:10:8d:2d:82:ac:d3:59:90:2e:58:6a:a7:8b:
86:5a:f3:1e:dd:3b:12:ec:39:b4:0c:ef:90:6b:7f:
5d:62:49:fc:b2:d7:d2:c6:96:8b:61:b4:db:c1:d3:
84:1b:55:f9:f5:ec:40:db:62:12:03:87:de:30:00:
96:19:2e:ea:fe:59:0a:94:37:63:25:b8:ae:3d:fa:
ba:07:31:10:eb:9b:83:a0:23:8a:e7:b4:2a:ab:b6:
87:5c:ed:c7:dd:73:50:fd:2e:0e:b8:41:4f:9c:1f:
52:a2:b4:47:7c:04:30:14:f2:b3:b1:96:23:b8:f4:
d4:ee:b0:9d:ba:a2:f4:76:9f:3e:b9:34:5e:0c:99:
ea:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:4C:C7:51:1E:5B:DC:D2:D4:9C:7D:94:44:21:3B:51:AE:3C:9C:15
X509v3 Authority Key Identifier:
keyid:63:7F:D1:BA:3F:ED:44:45:4D:6D:70:30:24:77:09:D2:8D:B3:49:1A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a94df714-d37d-4942-8e94-91dd853ef7e3/0/637FD1BA3FED44454D6D7030247709D28DB3491A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y3_Ruj_tREVNbXAwJHcJ0o2zSRo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a94df714-d37d-4942-8e94-91dd853ef7e3/0/3133392e32382e32372e302f32342d3234203d3e20323036313530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.28.27.0/24
Signature Algorithm: sha256WithRSAEncryption
43:12:37:dc:46:d0:74:9a:d5:b8:13:4a:fc:33:f4:b1:23:a1:
a7:79:e3:5f:b8:8f:a4:20:0b:f8:d3:71:21:6c:75:59:33:88:
a5:2d:ae:54:79:40:d9:b2:1d:6d:51:47:76:fc:81:d0:9a:40:
6d:2c:63:17:7b:49:2f:f1:36:fc:e0:b9:f1:b3:b7:f3:f7:b0:
e5:83:ce:00:9b:1d:2d:3e:83:a1:6f:e5:d6:1c:08:fd:47:f6:
a0:d2:1a:23:b2:51:49:86:e7:07:58:af:16:e4:fc:e8:f5:d3:
26:ca:87:25:36:59:50:2b:37:67:18:64:aa:d5:e9:31:8f:b2:
a8:7c:9d:88:ba:a8:a9:55:ef:59:2c:f2:a1:03:4f:86:53:4c:
3b:da:91:6d:d2:e5:ec:19:8b:67:c5:f0:d5:e9:eb:ff:6f:23:
86:a9:9b:40:ed:27:24:b0:50:e2:9d:8f:ee:7f:69:53:e6:78:
b0:7f:a5:9a:de:97:8f:f2:cb:43:fc:3f:0a:21:1e:51:7f:d7:
61:ee:81:39:9e:31:3d:64:10:6c:50:99:24:c3:31:67:8b:71:
70:ed:60:f1:a9:15:15:5b:e4:4d:d4:d7:15:ae:ce:67:fa:7e:
41:1d:be:97:ca:03:16:b2:d6:7f:b8:5a:4d:c6:f8:7c:4e:ed:
73:83:b5:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 8 06:22:30 2024 by rpki-client on console-fra.rpki-client.org