Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/3139332e39332e3135332e302f32342d3234203d3e203439313237.roa
File: 3139332e39332e3135332e302f32342d3234203d3e203439313237.roa (raw, json)
Hash identifier: muToXyQQPQk1kATIKIk2PX93pnZZn2qQ05PiLXKydlA=
Subject key identifier: D0:0D:EC:3F:E1:94:5B:FA:0D:99:C0:F1:5B:DF:D6:DC:F5:B7:2F:AC
Certificate issuer: /CN=f29fbab4db867f6bd9a7eff6aa55d98c162e1aad
Certificate serial: 58F822D74E8BC25D7A648C0B6B793D89A41EB23D
Authority key identifier: F2:9F:BA:B4:DB:86:7F:6B:D9:A7:EF:F6:AA:55:D9:8C:16:2E:1A:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/3139332e39332e3135332e302f32342d3234203d3e203439313237.roa
Signing time: Thu 11 Jul 2024 09:50:17 +0000
ROA not before: Thu 11 Jul 2024 09:45:17 +0000
ROA not after: Thu 10 Jul 2025 09:50:17 +0000
asID: 49127
IP address blocks: 193.93.153.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl
rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft
rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:f8:22:d7:4e:8b:c2:5d:7a:64:8c:0b:6b:79:3d:89:a4:1e:b2:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f29fbab4db867f6bd9a7eff6aa55d98c162e1aad
Validity
Not Before: Jul 11 09:45:17 2024 GMT
Not After : Jul 10 09:50:17 2025 GMT
Subject: CN=D00DEC3FE1945BFA0D99C0F15BDFD6DCF5B72FAC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:48:60:7d:70:0f:40:92:19:d7:ef:ac:38:5f:
15:f5:d6:88:c0:81:dc:7b:4d:b9:90:e3:76:56:bf:
9d:3f:9d:5d:9b:ec:21:c3:9d:04:81:4f:4d:e9:9a:
99:07:bf:1a:bd:3a:34:29:81:a6:82:d2:f2:42:33:
b5:70:a5:15:13:c1:31:b6:eb:94:71:9b:52:b9:a7:
b1:00:17:55:06:89:98:d4:c8:d5:62:e6:93:9d:89:
66:c3:11:3c:b4:82:d5:d8:ae:12:4f:80:f7:d1:d0:
bc:80:67:b8:3b:c8:9b:e4:de:ef:95:fb:5c:59:4c:
79:2d:4a:c5:0a:1f:f9:a1:15:09:a6:e4:ca:cb:c2:
4d:dd:e8:60:0c:5e:79:9d:f0:1e:b5:af:ca:54:c8:
5f:30:c3:00:b1:b3:20:27:6b:03:93:71:b0:93:95:
57:3b:42:78:6a:70:5f:f9:97:84:ab:40:cd:8b:f0:
c3:09:07:95:50:89:86:8c:31:a1:68:26:58:17:93:
30:da:b4:6b:8e:91:7f:e1:75:09:21:fe:5b:7c:a2:
e0:ab:b1:10:2c:1e:e7:42:a7:46:0e:32:01:9a:c7:
a4:c9:93:36:b5:98:63:6e:af:c6:09:07:f9:1f:fe:
f7:48:40:40:71:26:79:49:f6:42:14:45:a2:b4:f9:
ec:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:0D:EC:3F:E1:94:5B:FA:0D:99:C0:F1:5B:DF:D6:DC:F5:B7:2F:AC
X509v3 Authority Key Identifier:
keyid:F2:9F:BA:B4:DB:86:7F:6B:D9:A7:EF:F6:AA:55:D9:8C:16:2E:1A:AD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/3139332e39332e3135332e302f32342d3234203d3e203439313237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.93.153.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:d0:3d:a2:e2:d5:6c:9f:ac:7c:a3:fc:0a:33:56:23:37:fd:
85:e0:22:9f:bc:a6:de:09:16:d1:2d:a3:ae:38:03:5f:e0:00:
c8:5b:5f:f7:34:a5:60:16:26:88:75:e9:2d:44:8a:c8:07:d6:
49:00:68:c3:86:ff:da:d8:f0:22:af:a5:3d:41:cb:b7:78:60:
5b:79:97:39:9e:2c:1e:67:22:cd:42:ff:f5:77:fb:cd:dd:e8:
ab:d7:35:62:1e:62:52:ac:83:53:1c:04:2a:fe:a6:18:c7:5c:
86:59:0f:70:30:5d:33:52:b4:d5:21:15:e4:60:3c:6d:b1:90:
58:68:c9:9d:a0:55:94:75:ff:a5:85:9d:79:60:1c:6f:01:78:
b2:08:b6:a4:d3:29:d2:bb:f3:48:fc:44:7d:1f:a7:be:58:53:
b8:03:33:e8:25:d6:16:a2:ae:f6:3e:ec:92:94:b2:90:2e:47:
0f:72:4a:50:25:8f:4e:28:00:ac:8f:bf:d1:62:ce:50:bc:1d:
e7:23:5b:d1:14:0a:cd:37:44:4d:b9:5a:69:a9:88:9f:4c:b8:
aa:80:f2:9a:07:2a:c1:c4:ee:df:ba:a9:e6:a7:8c:e3:b1:bc:
c1:d1:0b:a5:e3:82:5f:9a:9c:93:59:f9:4e:30:41:4d:0a:08:
24:dd:7e:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 06:41:51 2024 by rpki-client on console-ams.rpki-client.org