Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3139332e3234362e3136352e302f32342d3234203d3e20323136313539.roa
File: 3139332e3234362e3136352e302f32342d3234203d3e20323136313539.roa (raw, json)
Hash identifier: lHJT67JgoiNbRjp+w02aGIDV+Q9kxKFY9n3ck5mgPZM=
Subject key identifier: 2F:D9:F0:E6:3E:52:DF:3E:14:51:C9:60:CE:A8:94:CF:A5:E1:34:E4
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 5B74BFE7C4949B31A6EF5A56246124B8EEEBA833
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3139332e3234362e3136352e302f32342d3234203d3e20323136313539.roa
Signing time: Fri 03 Nov 2023 16:03:03 +0000
ROA not before: Fri 03 Nov 2023 15:58:03 +0000
ROA not after: Fri 01 Nov 2024 16:03:03 +0000
asID: 216159
IP address blocks: 193.246.165.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 01:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:74:bf:e7:c4:94:9b:31:a6:ef:5a:56:24:61:24:b8:ee:eb:a8:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Nov 3 15:58:03 2023 GMT
Not After : Nov 1 16:03:03 2024 GMT
Subject: CN=2FD9F0E63E52DF3E1451C960CEA894CFA5E134E4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:8e:ad:ca:0d:1f:15:6d:01:da:df:74:b5:c4:
9f:23:b1:30:f5:77:04:8f:b1:01:93:59:ee:0e:ad:
d5:43:e0:37:1b:7c:de:6a:e0:eb:ab:89:fa:66:b3:
ca:a6:56:2a:36:18:46:09:67:33:a8:4e:72:47:15:
96:e2:de:24:ea:6c:fe:f3:63:a3:9b:5e:2d:ea:76:
38:7e:08:e4:58:ea:d1:10:6e:78:29:41:5c:2f:dc:
73:d6:4d:80:c1:76:fc:a1:84:37:30:a1:61:9b:21:
cc:36:8d:a4:0e:9d:16:b6:45:8b:82:ab:6c:79:1b:
43:6d:41:9f:6d:81:5d:a7:08:83:17:55:44:11:ee:
71:ab:36:c3:67:76:a6:61:4f:0c:53:67:b6:96:03:
da:54:81:89:f4:09:32:68:b3:56:eb:dc:1e:96:90:
6a:89:28:9a:d9:bc:a1:34:26:15:88:7f:7f:43:b5:
56:05:bb:7a:9a:41:dc:f4:03:f8:9f:29:c8:6d:4d:
dd:58:33:36:cc:3f:9a:64:38:03:51:7f:46:89:37:
f0:81:f2:e2:9a:bf:2a:de:d0:6e:32:9b:56:f2:2b:
c3:3d:0e:11:00:1e:be:a6:11:aa:9f:f9:25:75:28:
be:a8:4c:2c:f9:30:07:40:a7:0e:66:e8:ff:88:e6:
ea:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:D9:F0:E6:3E:52:DF:3E:14:51:C9:60:CE:A8:94:CF:A5:E1:34:E4
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3139332e3234362e3136352e302f32342d3234203d3e20323136313539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.246.165.0/24
Signature Algorithm: sha256WithRSAEncryption
97:40:51:3a:07:7d:1e:1d:72:c9:ec:39:9c:e9:de:64:fa:66:
24:d7:bb:ca:cd:23:18:ba:45:ed:f2:da:98:78:fa:32:bc:79:
21:ca:63:c3:9e:e2:cf:fc:39:ba:2f:eb:6c:71:db:d5:af:28:
be:44:89:70:ac:08:e1:ed:cd:8a:58:78:f2:fc:00:95:97:fd:
93:7c:7a:f0:f4:5f:82:20:4b:50:76:b0:e1:01:aa:12:2d:4b:
89:fd:fe:bd:52:20:5e:63:86:c2:70:8e:2c:4e:f1:58:18:d6:
7f:3a:25:43:b4:57:03:c1:a1:9c:fc:2c:70:c2:c3:e5:db:3d:
34:cf:b5:e9:13:35:31:73:53:06:82:c3:f1:3e:56:f1:46:07:
35:7a:e0:18:31:56:ce:80:1f:66:29:d0:06:01:50:79:cb:87:
23:84:34:d6:7b:f8:cd:2b:50:d0:b4:d7:48:0a:2c:22:dc:46:
fc:5e:6b:a1:53:aa:7f:7d:79:5a:c4:95:95:56:ec:d1:e5:08:
69:e9:2b:d7:a2:5d:89:45:06:83:fe:16:6c:7f:33:61:73:5a:
82:fb:11:14:1a:24:74:63:7a:9b:bd:58:cc:68:48:b9:52:ac:
5b:66:6b:66:38:4d:57:a2:59:a1:27:ee:61:8d:c1:57:0f:58:
66:2a:fb:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 04:19:26 2024 by rpki-client on console-fra.rpki-client.org