Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/3139332e39332e3135352e302f32342d3234203d3e203631333137.roa
File: 3139332e39332e3135352e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: SV7SbziqH7eMIEMJIbsVc3dV1p2SM237aRtzHljTDkg=
Subject key identifier: 83:D1:F0:A2:30:25:DB:3B:FA:48:61:0E:9E:F5:4E:69:DD:94:50:FC
Certificate issuer: /CN=f29fbab4db867f6bd9a7eff6aa55d98c162e1aad
Certificate serial: 978F56DCA86E9070256D5CB10FB5CCAEB372D6
Authority key identifier: F2:9F:BA:B4:DB:86:7F:6B:D9:A7:EF:F6:AA:55:D9:8C:16:2E:1A:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/3139332e39332e3135352e302f32342d3234203d3e203631333137.roa
Signing time: Sat 12 Oct 2024 18:43:25 +0000
ROA not before: Sat 12 Oct 2024 18:38:25 +0000
ROA not after: Sat 11 Oct 2025 18:43:25 +0000
asID: 61317
IP address blocks: 193.93.155.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl
rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft
rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
97:8f:56:dc:a8:6e:90:70:25:6d:5c:b1:0f:b5:cc:ae:b3:72:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f29fbab4db867f6bd9a7eff6aa55d98c162e1aad
Validity
Not Before: Oct 12 18:38:25 2024 GMT
Not After : Oct 11 18:43:25 2025 GMT
Subject: CN=83D1F0A23025DB3BFA48610E9EF54E69DD9450FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:7c:a3:1c:fd:32:cf:c8:db:48:d2:61:69:d7:
d6:82:67:60:0f:7e:ad:1c:56:ef:1b:a9:4d:43:b1:
ad:bb:30:51:d1:dc:44:d5:9e:9e:37:26:ec:7d:c8:
5f:97:d8:36:36:0f:4e:f2:7f:58:d6:44:ad:e7:a1:
d2:c3:f4:ce:26:09:d6:7e:91:d8:c0:f0:f0:ca:03:
52:66:00:5c:23:4b:7c:48:45:48:45:06:74:32:59:
37:86:94:a5:84:a9:02:05:be:92:f2:82:e8:95:1e:
dc:97:b1:11:70:1f:70:4d:af:c0:4c:c4:19:9b:83:
d8:61:2d:2e:6b:b3:75:cf:54:0a:1f:96:f8:53:76:
2a:80:80:90:8c:34:c2:51:98:91:d8:da:e3:43:33:
ac:11:70:bd:78:10:7f:31:dc:66:37:64:a6:df:81:
2e:7a:57:f0:e4:c6:e6:8b:e9:64:20:d7:36:ba:57:
8c:0a:57:a6:3b:5c:dc:4b:88:3a:b1:38:1b:41:1f:
6e:0e:bc:2d:63:b5:17:6c:81:5c:8c:1c:ca:ce:d7:
57:95:50:e6:9a:5e:76:63:46:05:28:c8:4d:54:8e:
b5:70:ca:9c:52:ef:bc:7a:91:16:9c:9a:4c:a8:0b:
a9:5a:ce:82:69:61:80:48:78:5e:e6:14:56:89:66:
4b:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:D1:F0:A2:30:25:DB:3B:FA:48:61:0E:9E:F5:4E:69:DD:94:50:FC
X509v3 Authority Key Identifier:
keyid:F2:9F:BA:B4:DB:86:7F:6B:D9:A7:EF:F6:AA:55:D9:8C:16:2E:1A:AD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/3139332e39332e3135352e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.93.155.0/24
Signature Algorithm: sha256WithRSAEncryption
52:17:6c:55:40:fd:f5:4c:eb:9a:6c:e0:5a:94:c4:e1:3a:05:
2b:5c:fc:e3:c8:e3:15:95:62:06:c8:6b:81:7a:8d:af:38:c0:
23:b3:a7:b8:82:78:8e:15:ea:90:0f:9f:63:4f:14:54:ec:de:
d3:7c:22:0a:78:89:72:10:13:34:00:cb:71:06:1f:f9:9a:58:
14:4a:3d:cc:54:45:7c:f7:48:8d:8a:76:7f:73:f5:d1:94:03:
41:7c:92:39:c7:0b:37:16:77:65:28:1a:2c:0e:99:68:6b:7b:
16:1c:8e:4d:a7:5b:e1:26:e3:da:30:0e:90:a0:7d:b2:17:37:
0f:c0:14:e3:e4:9d:96:27:7d:a5:8f:df:13:48:6f:4f:08:97:
fb:98:96:26:fe:cd:48:7f:1a:29:28:f5:27:ee:3c:c0:c6:4b:
01:a3:d0:0a:d8:78:7f:5e:b8:dd:6d:96:0f:b6:2c:e4:18:38:
c1:4c:3e:22:8c:cb:fc:20:eb:8d:7a:07:8e:56:11:ff:0e:8a:
11:27:b8:4e:ff:1a:5d:80:87:e6:4d:b9:8f:63:ac:6e:f9:32:
3e:53:f6:f5:43:a2:53:34:f1:d2:3f:cd:0a:bd:20:e1:ff:71:
d5:94:e9:87:1c:0e:1c:65:d3:2c:a3:3a:da:c6:3e:07:a4:48:
7d:b3:6c:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 16:53:46 2024 by rpki-client on console-ams.rpki-client.org