Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/3139332e39332e3135352e302f32342d3234203d3e203631333137.roa
File: 3139332e39332e3135352e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: CQ8GZzI1c7CqTnsVBjS8FkgsO1OVVGRKDoqwe+OZXuU=
Subject key identifier: 2C:C0:39:E9:2D:BB:32:F5:5D:BA:6A:23:C5:E9:BA:8B:C4:25:BF:F3
Certificate issuer: /CN=f29fbab4db867f6bd9a7eff6aa55d98c162e1aad
Certificate serial: 05FB06F66F3ADE37697ED0D62C0E323E140C4BF7
Authority key identifier: F2:9F:BA:B4:DB:86:7F:6B:D9:A7:EF:F6:AA:55:D9:8C:16:2E:1A:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/3139332e39332e3135352e302f32342d3234203d3e203631333137.roa
Signing time: Sat 11 Nov 2023 18:07:33 +0000
ROA not before: Sat 11 Nov 2023 18:02:33 +0000
ROA not after: Sat 09 Nov 2024 18:07:33 +0000
asID: 61317
IP address blocks: 193.93.155.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl
rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft
rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 20 Apr 2024 08:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:fb:06:f6:6f:3a:de:37:69:7e:d0:d6:2c:0e:32:3e:14:0c:4b:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f29fbab4db867f6bd9a7eff6aa55d98c162e1aad
Validity
Not Before: Nov 11 18:02:33 2023 GMT
Not After : Nov 9 18:07:33 2024 GMT
Subject: CN=2CC039E92DBB32F55DBA6A23C5E9BA8BC425BFF3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:9b:06:b7:80:79:59:5a:40:6f:f5:eb:68:0c:
fe:4e:4e:a0:92:11:04:e4:82:26:3d:2a:69:32:67:
47:9d:07:0b:46:bf:c9:34:b5:ff:57:d1:ce:88:cc:
61:1a:7f:3b:1a:8e:c4:c8:85:43:c2:eb:b0:66:22:
a2:8d:81:e3:34:cd:b1:96:09:5c:98:4e:4a:ef:35:
ca:6f:e5:61:93:75:07:d9:89:3f:da:a6:28:56:3c:
83:b0:6f:9d:ea:c0:1b:ec:74:df:53:fc:c8:3a:a9:
c0:89:ad:f5:0b:48:29:8c:34:87:8a:53:dc:c7:5f:
ee:29:90:39:86:97:93:69:3c:8d:94:08:88:1f:91:
45:e8:26:14:24:c9:61:56:9d:6d:3d:3a:71:fa:a9:
2a:79:c1:39:79:89:8b:4d:ab:83:4f:78:76:b7:46:
2d:b5:d6:10:2f:6c:4e:a8:df:02:f2:ba:66:2a:8a:
66:40:4a:f7:6c:0e:14:e0:18:bd:ff:8f:72:14:b0:
8a:47:b3:f2:1a:27:b4:b6:79:02:89:ae:4f:09:77:
dd:48:4d:45:b9:82:ee:3c:e0:88:59:79:9d:b1:64:
ae:00:7e:74:a6:c8:b4:21:2b:8f:2a:75:9e:ba:ab:
38:0b:84:72:20:00:94:67:7e:ca:0e:43:cd:d3:c3:
64:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:C0:39:E9:2D:BB:32:F5:5D:BA:6A:23:C5:E9:BA:8B:C4:25:BF:F3
X509v3 Authority Key Identifier:
keyid:F2:9F:BA:B4:DB:86:7F:6B:D9:A7:EF:F6:AA:55:D9:8C:16:2E:1A:AD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/3139332e39332e3135352e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.93.155.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:5e:2d:3f:b3:02:62:a9:b8:ff:5b:a8:ed:30:2c:aa:44:cc:
83:85:83:e7:61:82:92:3f:60:b8:38:dc:d0:7d:21:1c:d8:28:
19:fc:1e:f0:fa:ef:25:e6:ff:e6:88:0b:4e:fb:92:3e:da:87:
88:7e:29:e0:94:73:14:bc:c3:30:40:9b:bf:fb:4f:d5:65:94:
fb:09:ec:a4:17:84:9b:42:8d:72:56:86:f6:dd:94:8a:7d:7d:
e9:c3:22:4a:aa:d3:7d:34:7f:a5:66:bb:85:ba:14:ec:ec:d9:
9f:0c:c5:29:64:83:db:95:e5:c2:d5:c1:ea:c1:8c:a5:1f:0a:
77:16:4f:5f:1e:0d:e7:a3:e5:f4:45:27:f4:b1:12:14:86:6c:
ca:83:80:32:8d:d0:ba:d5:68:8d:d9:57:aa:69:c1:6a:c6:1d:
20:33:8e:b0:68:bb:40:57:4c:e7:0f:0e:80:af:c6:a0:08:4a:
f1:f1:5a:cc:f5:cb:fd:a6:84:e2:d5:d5:3c:ce:5f:e6:22:c1:
35:e9:74:02:72:79:74:c4:c7:5a:1f:1a:a0:24:04:d8:d5:29:
1a:bf:3d:28:c5:76:a0:c8:c7:74:19:0d:11:55:5d:a5:17:1d:
4d:62:78:90:80:42:28:6f:7d:42:66:13:2a:96:e5:c9:b7:4f:
03:32:38:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 15:26:19 2024 by rpki-client on console-ams.rpki-client.org