Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/3139332e3136332e3132372e302f32342d3234203d3e20313439393438.roa
File: 3139332e3136332e3132372e302f32342d3234203d3e20313439393438.roa (raw, json)
Hash identifier: fxo20se8NonJpKay03pSLcHBpJzDwzRcqPei2XVKBrY=
Subject key identifier: 12:1B:A1:69:63:DE:B8:2D:78:A5:EB:43:B3:D8:4D:A3:01:73:1B:7B
Certificate issuer: /CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Certificate serial: 20232B81AAF43B33C85FFAF0351B36EB6C9CEA51
Authority key identifier: 8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/3139332e3136332e3132372e302f32342d3234203d3e20313439393438.roa
Signing time: Thu 28 Sep 2023 12:13:40 +0000
ROA not before: Thu 28 Sep 2023 12:08:40 +0000
ROA not after: Thu 26 Sep 2024 12:13:40 +0000
asID: 149948
IP address blocks: 193.163.127.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.mft
rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 12 May 2024 15:47:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:23:2b:81:aa:f4:3b:33:c8:5f:fa:f0:35:1b:36:eb:6c:9c:ea:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Validity
Not Before: Sep 28 12:08:40 2023 GMT
Not After : Sep 26 12:13:40 2024 GMT
Subject: CN=121BA16963DEB82D78A5EB43B3D84DA301731B7B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:64:6b:bd:7d:0d:df:e7:8e:1b:9a:fe:7c:c5:
8a:86:d5:57:8b:7c:f0:11:fc:07:42:10:14:c9:40:
e6:6a:96:3b:23:c9:12:1d:27:73:17:c7:d8:5f:f8:
64:46:cd:21:08:f2:25:a3:f7:1e:69:46:c0:30:9b:
28:2c:2f:69:60:c5:fe:aa:3c:49:63:3b:f6:7a:85:
33:86:31:6e:53:a4:c9:5d:07:3e:cc:9f:54:23:43:
e3:50:ce:e3:a7:71:5e:00:c7:e4:b3:64:ed:75:db:
16:1d:0f:62:5f:0c:24:ff:75:77:0e:f4:b9:85:26:
43:94:cd:da:ed:75:f5:77:29:8c:f8:cb:6b:77:9c:
ec:2c:03:5f:99:ee:39:12:d5:1f:2a:27:d7:e9:bf:
42:7c:5b:f5:47:4e:d8:b7:5d:76:28:c9:86:cd:97:
58:14:94:47:6f:3e:5a:cb:7a:aa:8e:07:e9:e5:10:
fd:f6:b5:61:38:e4:b2:24:b1:a9:de:4f:0b:b8:8b:
27:29:45:f4:40:b9:b4:67:65:39:3f:cc:ad:28:0e:
bf:06:b1:b3:5b:02:c1:44:3e:35:84:15:51:c6:d1:
07:a8:d0:bd:f1:53:e7:51:cc:85:9b:29:0e:9a:ca:
e8:92:95:c5:51:15:9f:5f:32:59:49:13:5a:f1:ab:
3f:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:1B:A1:69:63:DE:B8:2D:78:A5:EB:43:B3:D8:4D:A3:01:73:1B:7B
X509v3 Authority Key Identifier:
keyid:8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/3139332e3136332e3132372e302f32342d3234203d3e20313439393438.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.127.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:59:41:38:91:1a:e2:a8:2f:62:97:ba:e4:9e:98:ea:80:41:
62:60:c6:eb:64:16:d7:4e:8c:4a:ed:67:39:61:ae:eb:9a:85:
65:ff:33:c8:d8:c4:3b:6f:38:c1:df:94:ec:a3:24:a6:4d:17:
44:4c:4a:a8:35:96:8d:68:e1:1a:53:3f:99:5a:bb:dd:97:c9:
d5:b5:03:42:93:b1:8b:72:46:79:93:23:c0:1a:86:5b:c6:7d:
aa:3e:5f:28:31:55:c1:a1:cc:96:e7:50:80:ee:02:35:ee:fb:
45:d5:c6:c7:f8:81:f2:1f:d2:87:42:60:ad:79:2d:02:92:73:
95:9c:cc:e9:87:7d:eb:80:57:78:f9:79:df:c2:a3:35:54:98:
53:c3:9a:4e:cc:59:2b:50:e0:f4:85:06:6f:4f:00:c1:08:1b:
71:8e:c2:78:85:34:93:1a:d3:77:55:88:c3:d2:69:04:be:9d:
63:23:8d:f4:56:bf:e3:fa:ef:77:c3:7a:29:5b:f3:96:86:21:
9a:53:b7:0a:03:4a:6e:db:9b:42:1b:d2:a6:82:9f:91:f2:02:
4a:84:b7:46:30:39:5a:e4:96:c1:cc:c1:b0:dd:26:b2:94:49:
de:02:a5:78:6d:2d:41:b0:9b:a9:dd:01:49:7e:80:67:d2:89:
0a:7b:2a:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 11 20:11:49 2024 by rpki-client on console-fra.rpki-client.org