Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/3133302e3139332e37352e302f32342d3234203d3e20313938383833.roa
File: 3133302e3139332e37352e302f32342d3234203d3e20313938383833.roa (raw, json)
Hash identifier: 3/1wWOBxy9MsbptxM8YAFJOoZRkvJkitK53LHBTZdI8=
Subject key identifier: 9B:7E:E8:28:6E:BC:B8:F2:C2:B8:15:30:E2:01:EC:FE:D5:FF:36:AC
Certificate issuer: /CN=cefce449bea8deaedb1804dba25c584df5873dc4
Certificate serial: 4BA6364FBE7F19EC9BB5D546F2C3E8440E9AEEF3
Authority key identifier: CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/3133302e3139332e37352e302f32342d3234203d3e20313938383833.roa
Signing time: Tue 26 Sep 2023 02:01:46 +0000
ROA not before: Tue 26 Sep 2023 01:56:46 +0000
ROA not after: Tue 24 Sep 2024 02:01:46 +0000
asID: 198883
IP address blocks: 130.193.75.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.crl
rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.mft
rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 23:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:a6:36:4f:be:7f:19:ec:9b:b5:d5:46:f2:c3:e8:44:0e:9a:ee:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cefce449bea8deaedb1804dba25c584df5873dc4
Validity
Not Before: Sep 26 01:56:46 2023 GMT
Not After : Sep 24 02:01:46 2024 GMT
Subject: CN=9B7EE8286EBCB8F2C2B81530E201ECFED5FF36AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a6:e1:ad:ad:c6:b8:14:bb:e6:de:b8:4a:b0:
36:3b:17:92:93:f9:64:d6:35:99:c7:73:d7:34:58:
86:bc:79:43:de:e9:f0:66:e3:d9:42:77:1e:de:e0:
01:68:a5:ed:90:ca:00:83:ac:9b:9d:f0:6b:dd:2b:
05:36:a8:af:50:5d:2b:c9:a9:22:a8:61:99:c7:59:
50:31:78:04:bb:8c:1e:2c:af:a2:f6:dc:24:e5:93:
6e:1e:51:64:cf:6a:9f:c0:0f:af:21:3e:00:93:36:
64:d6:90:cf:f4:78:3b:7b:d2:aa:24:5c:1d:e1:f3:
c0:e9:fd:81:ad:e0:79:e3:d0:d0:db:8b:74:4f:0b:
4a:82:45:7f:30:6d:a0:41:16:d2:f3:35:ab:c1:78:
1d:09:bf:59:47:aa:db:56:2a:29:47:06:d9:86:1c:
75:31:88:6f:3f:f5:87:8b:ad:21:24:45:23:43:47:
0a:04:ea:6c:88:d7:90:84:aa:9a:2b:1c:c2:1e:c0:
11:91:c5:99:56:2a:81:fd:39:e9:31:65:d5:5b:3c:
e0:a0:22:ef:af:b8:6d:d6:f8:35:64:fd:89:d2:02:
48:c6:61:6a:f6:75:14:d4:a2:be:0a:eb:99:ea:33:
1c:75:19:59:87:50:60:97:5b:41:d1:19:03:af:5b:
18:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:7E:E8:28:6E:BC:B8:F2:C2:B8:15:30:E2:01:EC:FE:D5:FF:36:AC
X509v3 Authority Key Identifier:
keyid:CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/3133302e3139332e37352e302f32342d3234203d3e20313938383833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.193.75.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:37:1b:c6:b9:e3:e0:3f:26:21:fe:80:40:2a:7c:ff:0c:f1:
45:bf:b1:a6:a5:c0:0c:73:21:d5:cd:38:06:dc:48:b8:cc:4e:
5f:4f:08:cf:ea:a4:4e:94:21:07:1b:82:6b:26:45:2b:f2:bb:
e5:e8:9e:cf:bc:b4:74:f2:cb:01:64:be:82:f7:1c:99:ab:b6:
42:67:6d:19:32:dc:23:cc:c3:27:31:46:3d:1a:5c:4b:e5:a5:
57:db:2e:99:77:c2:5d:04:f0:b5:c3:59:de:0e:cf:38:b3:c6:
84:9b:37:7e:47:4d:a7:5d:a5:b6:52:b3:b8:6a:a0:2e:1f:55:
c2:96:7c:e5:f1:f8:f1:94:49:b8:03:c5:7d:75:17:e5:34:44:
8b:41:db:bc:b0:53:18:33:e6:90:cf:ea:b0:e8:9f:12:c1:85:
3b:3e:ca:40:b7:f6:55:a0:1c:91:20:3d:23:d8:02:7e:d0:9f:
99:e8:31:2a:89:ff:fb:7d:62:da:12:92:d0:7a:48:6e:c2:47:
14:f3:b5:97:60:e1:1b:4a:1c:d7:d6:87:36:33:43:58:72:74:
e2:e1:5c:9a:cf:52:28:d6:90:b5:be:06:7d:44:08:2c:88:c5:
b1:63:cb:ed:63:9b:78:50:bd:b0:3a:f1:cf:05:3a:cc:6c:0d:
ec:dc:e5:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 8 07:55:57 2024 by rpki-client on console-ams.rpki-client.org