Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/3139332e39332e3135342e302f32342d3234203d3e20323131343135.roa
File: 3139332e39332e3135342e302f32342d3234203d3e20323131343135.roa (raw, json)
Hash identifier: xMcsrC67odGaWyaR2hxgrCfYPETddSEG0xxrhNfldwA=
Subject key identifier: 08:57:15:0F:A9:19:3F:8D:0E:9B:E2:01:DB:9B:8E:76:6F:B9:04:1F
Certificate issuer: /CN=f29fbab4db867f6bd9a7eff6aa55d98c162e1aad
Certificate serial: 78008F44A78F011D75676079F5E1BAB8C7CC4951
Authority key identifier: F2:9F:BA:B4:DB:86:7F:6B:D9:A7:EF:F6:AA:55:D9:8C:16:2E:1A:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/3139332e39332e3135342e302f32342d3234203d3e20323131343135.roa
Signing time: Sat 11 Nov 2023 18:07:33 +0000
ROA not before: Sat 11 Nov 2023 18:02:33 +0000
ROA not after: Sat 09 Nov 2024 18:07:33 +0000
asID: 211415
IP address blocks: 193.93.154.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl
rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft
rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 15 May 2024 22:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:00:8f:44:a7:8f:01:1d:75:67:60:79:f5:e1:ba:b8:c7:cc:49:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f29fbab4db867f6bd9a7eff6aa55d98c162e1aad
Validity
Not Before: Nov 11 18:02:33 2023 GMT
Not After : Nov 9 18:07:33 2024 GMT
Subject: CN=0857150FA9193F8D0E9BE201DB9B8E766FB9041F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:1d:b0:95:81:92:3f:6e:4e:23:c2:81:ce:2d:
bd:21:67:09:39:a6:01:76:de:36:dd:b6:d4:27:80:
03:22:41:36:ab:43:6f:ae:3d:c7:04:c3:db:77:6d:
09:2f:cb:b6:15:de:22:63:81:bb:37:b1:71:f6:82:
ba:7c:e3:f6:32:f6:2a:21:f6:54:1b:11:0b:e8:cb:
19:7b:d2:35:5a:40:ff:60:c7:43:72:93:e9:df:94:
3e:9d:62:37:45:69:38:c3:27:14:68:a8:85:09:0b:
6d:9f:9a:3f:71:36:1f:7d:4b:87:0d:e7:32:25:e9:
1b:54:ff:a7:41:90:f8:86:ab:2c:91:16:2a:52:13:
aa:2a:48:98:17:c6:54:48:69:bb:b8:e1:0b:67:26:
8c:a7:5b:82:e6:44:f2:12:37:b7:b6:c6:76:39:e8:
e4:db:e5:56:26:25:69:7e:66:a4:e0:50:b1:79:8b:
3e:19:a4:67:44:81:37:ae:14:0e:1e:53:34:ed:7e:
5c:bc:69:d7:0a:cf:d8:04:4e:6c:a8:80:3e:35:c2:
1f:fc:1a:71:d2:b4:be:9e:49:33:98:bf:8e:78:17:
3a:00:c4:8d:2e:cf:9e:e2:6d:72:1f:ab:50:32:e2:
d2:2a:4c:cb:fa:7d:ad:12:e5:9a:5c:37:85:8f:d0:
c4:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:57:15:0F:A9:19:3F:8D:0E:9B:E2:01:DB:9B:8E:76:6F:B9:04:1F
X509v3 Authority Key Identifier:
keyid:F2:9F:BA:B4:DB:86:7F:6B:D9:A7:EF:F6:AA:55:D9:8C:16:2E:1A:AD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/3139332e39332e3135342e302f32342d3234203d3e20323131343135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.93.154.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:eb:53:39:7c:70:f7:f8:4c:3f:5d:29:af:ff:03:22:63:3d:
02:33:36:4b:84:4c:f7:cc:b1:aa:fe:de:48:e4:dc:04:25:43:
4e:27:da:29:12:98:ee:49:11:39:3a:77:9a:71:e5:5f:f9:90:
39:9b:22:82:dc:b5:e1:5a:eb:75:e4:4d:9e:55:4c:2d:34:de:
f7:09:9f:37:23:f6:72:01:b6:ac:84:ee:b9:3b:1c:b4:63:9a:
2f:77:78:80:0c:ef:3d:c9:e8:18:b5:6d:7c:70:a0:d0:24:58:
e6:fc:97:99:b8:e2:6c:04:2f:eb:be:96:47:ff:34:90:35:46:
76:7b:42:47:78:c7:5a:81:ff:fb:4f:9b:13:00:94:c7:36:6a:
bf:73:99:f9:93:34:8f:c3:2c:db:94:4e:f9:28:2e:98:e2:70:
13:dd:88:ff:a9:cd:96:e4:4a:0f:55:58:23:64:a4:57:92:a0:
f4:84:a2:49:b8:a8:88:d2:46:c1:3b:60:ab:13:9c:83:ee:a9:
1a:a8:10:c3:2c:35:41:64:44:e8:97:bd:25:53:4d:2a:1d:39:
8a:bd:ac:2b:18:35:84:a1:1e:63:24:b7:3b:5b:62:ad:70:c2:
14:24:66:2b:57:3c:01:2d:63:d5:8b:d0:fd:77:8b:74:c1:66:
a4:ec:71:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 15 03:09:23 2024 by rpki-client on console-fra.rpki-client.org