Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/3139332e33372e3233362e302f32342d3234203d3e203631333137.roa
File: 3139332e33372e3233362e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: WiqoWKXOz7ZQhMXXduL0+zFQFmjEeKBsMMHhWo7WoIA=
Subject key identifier: F1:36:B8:73:9F:63:1C:03:BE:C5:1A:01:3D:0E:F7:CC:B3:15:66:7A
Certificate issuer: /CN=9f0d24c855eee00fe4abf3903c6e8fcc7083ed4d
Certificate serial: 2A6474CC20B92A43DF187132A80E498D9A137159
Authority key identifier: 9F:0D:24:C8:55:EE:E0:0F:E4:AB:F3:90:3C:6E:8F:CC:70:83:ED:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nw0kyFXu4A_kq_OQPG6PzHCD7U0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/3139332e33372e3233362e302f32342d3234203d3e203631333137.roa
Signing time: Wed 22 May 2024 09:05:16 +0000
ROA not before: Wed 22 May 2024 09:00:16 +0000
ROA not after: Wed 21 May 2025 09:05:16 +0000
asID: 61317
IP address blocks: 193.37.236.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/9F0D24C855EEE00FE4ABF3903C6E8FCC7083ED4D.crl
rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/9F0D24C855EEE00FE4ABF3903C6E8FCC7083ED4D.mft
rsync://rpki.ripe.net/repository/DEFAULT/nw0kyFXu4A_kq_OQPG6PzHCD7U0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:64:74:cc:20:b9:2a:43:df:18:71:32:a8:0e:49:8d:9a:13:71:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f0d24c855eee00fe4abf3903c6e8fcc7083ed4d
Validity
Not Before: May 22 09:00:16 2024 GMT
Not After : May 21 09:05:16 2025 GMT
Subject: CN=F136B8739F631C03BEC51A013D0EF7CCB315667A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:20:8d:a0:49:32:97:1e:95:3b:5e:f8:f4:39:
0b:f3:a4:72:c7:fb:c7:bb:27:e7:ca:1a:ac:1a:7c:
49:4e:4c:e7:67:7f:c6:ac:ce:2c:31:4c:03:7e:66:
87:80:dd:77:08:03:37:df:18:4f:d4:82:5b:ab:db:
fb:00:57:43:b2:b4:57:37:a5:70:cd:36:89:97:75:
4b:08:35:f6:c8:41:dc:22:64:f3:5a:53:92:8b:12:
7e:7d:ad:ed:50:08:ac:0c:1d:01:48:6c:07:bc:c3:
8a:41:67:e8:3a:41:6f:82:0c:cd:9e:ed:69:3c:61:
78:99:f7:3c:64:c6:0b:bb:55:18:9b:7a:64:5a:06:
bb:dc:83:d4:5c:5c:3c:83:b3:25:3c:99:13:1d:4d:
27:dd:90:4d:a6:4f:9b:61:26:e4:ff:0a:b8:23:b7:
a5:50:69:f1:1b:aa:ea:67:b7:a9:51:d8:6e:7d:a1:
ae:95:39:c3:0e:b1:ee:de:a3:7a:59:41:2a:df:8a:
6d:dd:0e:8b:e7:e4:7e:bb:a3:3d:6b:08:1f:7a:d1:
00:f0:46:fa:09:c8:5b:97:0d:17:a4:3c:bd:55:e6:
d3:4e:b4:93:37:3e:5a:bd:c0:b1:f7:85:b7:66:2f:
94:0a:3e:9c:d0:99:36:10:45:75:b8:07:6a:8b:4d:
a9:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:36:B8:73:9F:63:1C:03:BE:C5:1A:01:3D:0E:F7:CC:B3:15:66:7A
X509v3 Authority Key Identifier:
keyid:9F:0D:24:C8:55:EE:E0:0F:E4:AB:F3:90:3C:6E:8F:CC:70:83:ED:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/9F0D24C855EEE00FE4ABF3903C6E8FCC7083ED4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nw0kyFXu4A_kq_OQPG6PzHCD7U0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/3139332e33372e3233362e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.37.236.0/24
Signature Algorithm: sha256WithRSAEncryption
78:06:1e:fb:6d:91:f0:fa:e7:a2:51:a5:c0:7f:84:df:d0:0a:
8a:ad:41:ac:ac:0b:c8:2b:29:fe:70:70:48:5f:1e:d9:fb:0f:
6b:69:fa:2c:9d:8c:a3:6f:80:69:61:5c:43:df:3e:4c:ec:a3:
cf:c0:44:30:18:45:b1:99:28:61:5d:60:9d:1c:57:53:48:3c:
85:5a:22:e2:56:79:38:d7:f7:dd:92:c7:32:b7:f0:63:04:83:
1e:87:13:6a:0b:4d:f7:84:62:c5:7c:18:84:28:1b:c9:e2:ba:
65:aa:ac:bc:df:72:5e:f2:63:2b:5b:78:d7:af:a0:7c:dc:7d:
bc:75:9a:aa:33:0b:4d:87:24:35:9d:9f:94:78:8d:d8:a2:9c:
61:29:3e:2a:97:93:b8:ac:bc:f8:1c:ce:59:17:5e:09:d5:0c:
b8:82:4a:34:6e:67:27:12:0b:c8:27:f7:76:c9:49:9d:f6:8f:
f5:74:4c:3e:17:a2:59:2b:24:59:1f:81:76:7c:0c:75:20:28:
c3:95:4e:53:19:af:52:7f:df:77:76:a8:ce:a7:43:66:9e:e5:
c0:7a:83:60:2e:31:71:55:86:82:3d:f1:8d:8e:b9:68:b9:71:
6a:19:fa:f2:59:76:a5:ea:39:46:32:f0:d5:98:1c:59:b8:2a:
0f:7d:cd:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 17:29:07 2024 by rpki-client on console-fra.rpki-client.org