Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/3133302e3139332e37352e302f32342d3234203d3e20323132383135.roa
File: 3133302e3139332e37352e302f32342d3234203d3e20323132383135.roa (raw, json)
Hash identifier: sauTAmE6BTFv0fqhDWP93Ws0LY3QFJyEkCA0EENpy1g=
Subject key identifier: 63:74:56:16:42:BA:07:D6:9A:04:6A:B4:9F:05:41:A8:FB:89:19:D5
Certificate issuer: /CN=cefce449bea8deaedb1804dba25c584df5873dc4
Certificate serial: 1F38271C476369C50A61C4DD7B7F473888269912
Authority key identifier: CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/3133302e3139332e37352e302f32342d3234203d3e20323132383135.roa
Signing time: Thu 19 Oct 2023 08:50:14 +0000
ROA not before: Thu 19 Oct 2023 08:45:14 +0000
ROA not after: Thu 17 Oct 2024 08:50:14 +0000
asID: 212815
IP address blocks: 130.193.75.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.crl
rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.mft
rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 13:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:38:27:1c:47:63:69:c5:0a:61:c4:dd:7b:7f:47:38:88:26:99:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cefce449bea8deaedb1804dba25c584df5873dc4
Validity
Not Before: Oct 19 08:45:14 2023 GMT
Not After : Oct 17 08:50:14 2024 GMT
Subject: CN=6374561642BA07D69A046AB49F0541A8FB8919D5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:bd:ec:d6:c1:43:87:d3:e5:07:dc:ce:a1:37:
59:3a:86:c8:4f:81:6c:36:c8:df:14:ab:01:97:20:
46:43:c2:fb:88:55:6a:34:09:ae:73:a1:10:fa:30:
31:b3:cf:a4:0b:7a:92:67:5f:07:c9:38:9b:f2:b6:
c5:36:f1:9f:d5:c1:0f:a0:f7:a3:60:52:df:e9:b8:
39:d5:de:c4:14:74:51:f2:24:2e:28:cc:49:cb:af:
1d:fa:dc:84:0d:1a:88:ce:a8:a4:cf:0a:17:14:56:
6f:46:34:b8:17:02:df:ed:b9:77:3d:c3:51:90:99:
50:bd:0e:6f:24:e1:9c:ce:a5:6d:09:1a:40:58:2c:
37:92:d3:c1:32:f5:ce:72:26:06:64:76:42:a0:41:
35:f0:a3:38:e7:65:02:96:41:a9:d5:a2:91:43:1d:
5e:99:a0:3d:dc:a2:24:a7:d0:af:bd:df:93:4e:16:
67:59:ce:90:c4:df:fe:a0:0f:93:a2:9d:5f:84:c8:
97:d8:02:3e:1a:56:ff:d7:94:6d:85:dd:26:93:ce:
e7:f0:5c:81:a5:aa:3c:ae:9b:38:a5:fc:d8:40:64:
42:cf:1d:ca:b4:e6:42:fc:da:da:43:17:1a:f8:66:
e0:82:e6:0e:a4:e2:8c:fb:49:94:7e:39:92:9f:c5:
4a:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:74:56:16:42:BA:07:D6:9A:04:6A:B4:9F:05:41:A8:FB:89:19:D5
X509v3 Authority Key Identifier:
keyid:CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/3133302e3139332e37352e302f32342d3234203d3e20323132383135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.193.75.0/24
Signature Algorithm: sha256WithRSAEncryption
84:a0:56:f7:d0:ea:3a:7d:29:20:17:19:27:a6:99:b1:00:97:
c6:5c:b5:e0:87:d5:41:0c:f8:ab:fa:df:80:15:34:91:1f:5a:
81:0b:9a:09:a6:23:bf:3e:e8:0a:a3:dd:b8:66:7c:10:32:67:
cb:08:52:c1:3d:cd:75:0e:0d:5c:e0:67:9a:7a:56:48:5f:a3:
5e:fa:9d:c9:95:98:43:5b:c4:d5:f7:24:f3:de:cf:2c:dc:96:
f7:22:47:25:1a:21:df:61:aa:31:29:32:72:a7:6f:d1:91:c9:
da:a4:14:c6:ed:ed:58:f5:4b:85:f4:a5:d4:61:f1:0d:f2:9d:
20:66:8b:fe:54:89:5f:68:56:c8:d4:32:83:3c:df:56:4e:ae:
4d:26:6c:1f:17:c5:7a:a6:cc:ac:e4:84:7d:9f:f0:d9:b2:4b:
07:29:fb:5c:bb:2c:75:97:7c:7a:64:c9:58:49:36:fd:60:22:
ab:ba:57:b9:6a:b2:46:eb:69:11:31:ce:7e:69:22:c3:83:00:
10:74:6b:ff:87:4f:52:0b:b9:7e:6b:ba:2d:24:b4:b1:7d:ef:
f7:39:96:4b:49:e9:23:a4:a2:9c:c3:3b:c0:b6:56:b2:0a:67:
f3:a5:82:33:9a:f9:22:d2:66:d9:a6:7c:29:86:3f:eb:97:f1:
46:93:6e:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 16:48:15 2024 by rpki-client on console-fra.rpki-client.org