Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/3139332e39332e3135322e302f32342d3234203d3e20313939363134.roa
File: 3139332e39332e3135322e302f32342d3234203d3e20313939363134.roa (raw, json)
Hash identifier: nT7gvnfkgYFNmxNunVHYHFHUN5YuSFJyH0PB1mpE4/s=
Subject key identifier: 6B:9A:ED:69:5E:45:6E:5F:28:F1:2D:E0:59:88:C3:C3:F8:BB:E9:0C
Certificate issuer: /CN=f29fbab4db867f6bd9a7eff6aa55d98c162e1aad
Certificate serial: 670BE876D8A3ABBE37CB5C1A7829740B660C3F3D
Authority key identifier: F2:9F:BA:B4:DB:86:7F:6B:D9:A7:EF:F6:AA:55:D9:8C:16:2E:1A:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/3139332e39332e3135322e302f32342d3234203d3e20313939363134.roa
Signing time: Wed 29 Nov 2023 23:43:43 +0000
ROA not before: Wed 29 Nov 2023 23:38:43 +0000
ROA not after: Wed 27 Nov 2024 23:43:43 +0000
asID: 199614
IP address blocks: 193.93.152.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl
rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft
rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 May 2024 23:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:0b:e8:76:d8:a3:ab:be:37:cb:5c:1a:78:29:74:0b:66:0c:3f:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f29fbab4db867f6bd9a7eff6aa55d98c162e1aad
Validity
Not Before: Nov 29 23:38:43 2023 GMT
Not After : Nov 27 23:43:43 2024 GMT
Subject: CN=6B9AED695E456E5F28F12DE05988C3C3F8BBE90C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:5d:67:35:f5:6a:c7:f5:33:5a:64:fd:ff:91:
b8:e3:92:71:63:18:55:bd:18:32:3f:15:cc:9f:19:
b7:06:99:71:65:91:24:b1:ab:09:a4:ae:5d:9c:14:
2f:67:32:28:f2:d2:c1:4c:1b:92:ae:11:88:7d:c6:
ff:dd:29:85:fb:75:71:6e:d5:3f:8f:ed:ea:ac:48:
86:52:8f:b0:2d:10:69:ec:07:72:2c:8a:e5:98:a7:
e5:5b:e9:65:a3:d9:31:0d:11:07:d9:1d:45:ec:26:
9f:f3:7a:de:54:4c:fb:bb:e6:b7:b9:c3:22:c4:74:
74:8f:7c:d7:00:3d:aa:63:86:bd:38:d7:a4:dc:72:
ab:08:5f:85:8c:2b:05:d9:97:4e:f4:d4:c5:e5:3a:
55:22:b0:a4:26:ed:a6:ee:a2:47:42:d5:1a:9c:c3:
18:f2:c8:87:27:32:77:74:7c:68:66:12:2d:6e:d7:
69:d8:49:61:e4:6c:11:a8:a8:48:2b:65:ea:eb:82:
42:4d:9c:89:a4:16:e1:27:21:73:fc:0f:47:c8:90:
47:3a:df:a7:09:08:76:53:5a:c4:28:4a:ea:d9:fe:
8b:31:53:90:23:41:b4:64:2e:5d:16:c7:c1:85:51:
7a:35:c0:1c:ea:7d:e0:b1:77:51:d1:0b:2a:cf:21:
0d:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:9A:ED:69:5E:45:6E:5F:28:F1:2D:E0:59:88:C3:C3:F8:BB:E9:0C
X509v3 Authority Key Identifier:
keyid:F2:9F:BA:B4:DB:86:7F:6B:D9:A7:EF:F6:AA:55:D9:8C:16:2E:1A:AD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/3139332e39332e3135322e302f32342d3234203d3e20313939363134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.93.152.0/24
Signature Algorithm: sha256WithRSAEncryption
05:ec:37:fe:0b:21:14:2e:2f:74:fc:3a:d8:9c:59:79:c9:0e:
26:04:69:5d:b8:05:0c:9f:69:66:ab:19:ed:aa:82:51:af:c5:
ee:6a:dd:ff:13:e0:8c:06:f3:79:54:03:bc:09:be:8b:a2:27:
96:16:99:57:3b:9d:1c:6e:54:e4:f8:e8:f6:99:7d:74:8c:01:
61:0c:c6:28:9e:06:85:1d:78:a0:cc:4c:2e:06:e2:66:13:0c:
c0:45:e1:f6:d8:d4:89:31:44:33:f9:bb:39:83:95:4b:58:ef:
91:1d:c8:b9:1e:1e:23:7b:5e:d2:98:6f:de:56:30:f1:31:99:
1a:cc:bc:c3:80:b7:de:32:71:5a:03:fd:19:33:53:6e:7d:5a:
8d:01:14:13:ac:1a:ef:20:15:ea:25:50:79:0c:7e:07:4c:d4:
99:ec:88:61:a0:24:72:b3:7f:65:25:97:ad:70:7e:a1:2b:bc:
68:f9:c0:6c:4b:56:15:ba:ff:7b:16:95:b7:60:43:c5:99:13:
4c:14:f8:9e:76:19:f7:5f:3d:dd:b8:06:d0:6b:74:9c:4d:bf:
26:0f:e5:b1:ff:4a:d4:96:29:0a:0f:eb:ec:89:02:3b:cc:67:
9c:ae:84:c5:c4:02:72:41:9a:b6:e6:93:f2:29:b0:f5:70:7d:
7f:d8:60:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 08:09:14 2024 by rpki-client on console-ams.rpki-client.org