Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d08bc49d-0338-4b5f-8204-0004a66105c9/0/3139332e3230312e37332e302f32342d3234203d3e20323039313738.roa
File: 3139332e3230312e37332e302f32342d3234203d3e20323039313738.roa (raw, json)
Hash identifier: YdPbeCKeHzTxC+uWm2ow9Rgx+NRyUqOYKhW8jZLhclE=
Subject key identifier: AD:42:5B:ED:75:54:92:F0:37:4E:F4:FE:BA:39:36:A7:0A:E4:12:59
Certificate issuer: /CN=5511f6d7def4c0ffb6e2b3b3f0c4455dcd14c160
Certificate serial: 4CAC268D6202BFEDA5BE53E1F1543ED2ED9B8E38
Authority key identifier: 55:11:F6:D7:DE:F4:C0:FF:B6:E2:B3:B3:F0:C4:45:5D:CD:14:C1:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VRH21970wP-24rOz8MRFXc0UwWA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d08bc49d-0338-4b5f-8204-0004a66105c9/0/3139332e3230312e37332e302f32342d3234203d3e20323039313738.roa
Signing time: Mon 30 Sep 2024 07:03:36 +0000
ROA not before: Mon 30 Sep 2024 06:58:36 +0000
ROA not after: Mon 29 Sep 2025 07:03:36 +0000
asID: 209178
IP address blocks: 193.201.73.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d08bc49d-0338-4b5f-8204-0004a66105c9/0/5511F6D7DEF4C0FFB6E2B3B3F0C4455DCD14C160.crl
rsync://rsync.paas.rpki.ripe.net/repository/d08bc49d-0338-4b5f-8204-0004a66105c9/0/5511F6D7DEF4C0FFB6E2B3B3F0C4455DCD14C160.mft
rsync://rpki.ripe.net/repository/DEFAULT/VRH21970wP-24rOz8MRFXc0UwWA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:ac:26:8d:62:02:bf:ed:a5:be:53:e1:f1:54:3e:d2:ed:9b:8e:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5511f6d7def4c0ffb6e2b3b3f0c4455dcd14c160
Validity
Not Before: Sep 30 06:58:36 2024 GMT
Not After : Sep 29 07:03:36 2025 GMT
Subject: CN=AD425BED755492F0374EF4FEBA3936A70AE41259
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:59:11:89:52:6e:db:4d:48:ff:16:01:ff:d7:
4b:db:d1:7d:df:8a:35:35:0e:f4:d2:5a:97:a9:ce:
de:7b:8c:3e:04:b8:a0:1e:08:60:51:60:2f:56:8c:
b6:27:43:22:16:21:2d:23:bd:d3:87:2f:f6:c3:70:
e5:73:05:8f:6a:2b:ff:08:8d:d1:9f:59:7c:0a:5b:
cc:c5:5d:c0:53:d1:9c:ac:0f:cf:80:44:0d:91:ab:
39:0a:d0:37:ee:45:b4:34:2b:b9:c8:43:63:c4:5f:
47:f8:69:b9:f3:f2:65:b9:e2:16:2b:eb:6f:7a:f4:
fa:56:7a:f0:9a:dc:50:36:d1:76:3a:d2:8f:8a:b3:
f3:20:3b:66:5b:34:fa:13:14:83:7c:49:8e:4f:a5:
0a:fd:e2:ca:2b:58:73:da:a3:53:a0:a2:9d:7f:d0:
1a:8e:40:2e:70:18:29:db:f2:35:1a:13:2d:4a:1e:
e5:47:a3:53:99:ad:2a:dc:74:3e:05:e2:3c:70:a4:
8f:54:79:bf:7a:53:0c:34:31:fd:9d:cc:58:f0:30:
bf:92:2c:be:9f:d7:fc:1d:91:c8:e5:7f:be:74:76:
5f:cd:8e:48:ca:a4:d8:45:cf:6f:f6:6d:dd:6e:db:
27:36:de:22:a1:f6:fc:d8:66:92:c3:5d:ff:b7:59:
31:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:42:5B:ED:75:54:92:F0:37:4E:F4:FE:BA:39:36:A7:0A:E4:12:59
X509v3 Authority Key Identifier:
keyid:55:11:F6:D7:DE:F4:C0:FF:B6:E2:B3:B3:F0:C4:45:5D:CD:14:C1:60
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d08bc49d-0338-4b5f-8204-0004a66105c9/0/5511F6D7DEF4C0FFB6E2B3B3F0C4455DCD14C160.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VRH21970wP-24rOz8MRFXc0UwWA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d08bc49d-0338-4b5f-8204-0004a66105c9/0/3139332e3230312e37332e302f32342d3234203d3e20323039313738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.201.73.0/24
Signature Algorithm: sha256WithRSAEncryption
96:7b:87:5a:a2:a9:47:ea:89:10:de:dc:d5:a4:14:a7:4c:e7:
01:34:5a:00:97:03:bc:8f:d9:b7:de:84:b4:4c:1a:53:4a:59:
33:aa:40:aa:2b:3e:78:75:c6:c6:e4:f3:b6:97:3a:4e:f6:b7:
b8:d1:3b:5a:5f:c9:4e:68:02:d4:c1:9c:af:20:2e:b4:58:12:
2d:7b:43:39:f0:88:d4:ed:37:a6:30:2e:0e:d4:12:fb:ce:e5:
57:00:54:97:47:e4:20:bf:61:2d:66:36:e7:59:ac:6e:8f:b0:
25:4b:7d:1e:f5:aa:03:3b:40:ed:a1:6a:c9:de:d1:ac:88:3d:
fa:6c:10:de:d0:36:52:5d:b1:d0:f5:20:cf:9a:d3:c8:17:ad:
dd:67:2c:da:14:4b:94:c5:f2:ca:e4:8f:ec:e8:a3:61:17:49:
a6:74:91:2b:41:54:c7:1b:c9:ed:8e:6e:15:93:8b:6f:6c:c7:
27:09:e3:93:4e:43:dd:78:87:54:3e:c3:ef:1b:a3:2a:52:d0:
75:ca:5c:f1:50:17:93:b5:a7:68:a1:53:3a:e8:58:aa:6b:66:
d7:16:1e:49:4e:ce:da:1c:04:91:12:a1:ea:5c:86:d4:7d:4b:
2d:36:50:66:0d:43:1e:73:f2:55:71:9b:b7:a5:af:2a:38:e0:
9a:13:46:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 12:19:07 2024 by rpki-client on console-fra.rpki-client.org