Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/3139332e33352e3232362e302f32342d3234203d3e20323038373936.roa
File: 3139332e33352e3232362e302f32342d3234203d3e20323038373936.roa (raw, json)
Hash identifier: IDDxRZv6Tut7CUxuLQ2t7Z9DsZn6wpFak28gbbQX2i8=
Subject key identifier: CE:D9:79:43:BF:F4:EC:3D:A0:51:27:88:D7:88:BB:09:85:8E:DD:05
Certificate issuer: /CN=cefce449bea8deaedb1804dba25c584df5873dc4
Certificate serial: 4648BD5B9508F7439DEC65054C40E753A45C0A3C
Authority key identifier: CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/3139332e33352e3232362e302f32342d3234203d3e20323038373936.roa
Signing time: Tue 26 Sep 2023 02:02:26 +0000
ROA not before: Tue 26 Sep 2023 01:57:26 +0000
ROA not after: Tue 24 Sep 2024 02:02:26 +0000
asID: 208796
IP address blocks: 193.35.226.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.crl
rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.mft
rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 10:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:48:bd:5b:95:08:f7:43:9d:ec:65:05:4c:40:e7:53:a4:5c:0a:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cefce449bea8deaedb1804dba25c584df5873dc4
Validity
Not Before: Sep 26 01:57:26 2023 GMT
Not After : Sep 24 02:02:26 2024 GMT
Subject: CN=CED97943BFF4EC3DA0512788D788BB09858EDD05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:85:2c:07:a1:c6:8b:7c:41:c0:73:5a:82:c1:
3c:d0:9d:07:27:1e:d5:1f:ec:9b:7b:25:8a:f4:ab:
56:7e:49:70:07:ca:57:d2:7d:c0:94:8b:4c:56:73:
12:8b:e2:33:c3:a7:70:53:44:f6:bb:29:47:8a:f0:
2b:42:24:db:c8:88:78:b8:ff:05:0e:2f:15:04:40:
ac:58:b1:30:45:8e:ff:f4:3c:8f:13:1b:a9:a0:0a:
e3:c1:26:0d:95:4b:c4:e8:f5:7b:e2:d8:04:a2:12:
45:da:2e:fd:ef:b7:ac:2f:08:80:20:e1:57:b3:da:
0f:5d:d5:7a:18:f6:fb:48:55:c5:44:d6:2e:4f:c8:
2a:5d:45:50:03:fd:73:0a:1d:96:d3:30:79:cc:0a:
af:5e:ee:8c:de:62:84:d4:b9:3f:64:a8:f6:4a:38:
25:11:13:45:ab:e6:78:95:58:43:c8:ae:44:3c:72:
dc:63:cd:5b:95:fe:54:34:41:52:f3:61:f6:c3:1e:
b1:85:19:71:b8:50:88:f8:b7:3d:3e:3d:88:1a:b5:
cc:fe:7e:40:8a:e6:5f:b4:6d:d2:f3:c3:fc:71:42:
02:ee:af:3f:66:ad:c1:de:8a:5e:8f:0c:0d:cf:5d:
51:47:f8:b6:55:6a:0b:40:c5:c1:15:17:a0:ce:e0:
38:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:D9:79:43:BF:F4:EC:3D:A0:51:27:88:D7:88:BB:09:85:8E:DD:05
X509v3 Authority Key Identifier:
keyid:CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/3139332e33352e3232362e302f32342d3234203d3e20323038373936.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.35.226.0/24
Signature Algorithm: sha256WithRSAEncryption
46:af:56:43:14:98:8a:d0:82:77:79:b1:d8:30:02:62:f1:6a:
bc:97:f3:4f:dd:7b:58:cc:8b:40:99:c6:c6:68:7b:96:11:63:
e2:35:0a:8d:95:8c:35:d5:2b:ef:12:72:0d:ac:12:dd:8f:8d:
18:43:17:2a:0d:db:45:9b:e0:e7:8d:73:ba:be:80:88:f4:57:
fb:ea:83:51:31:9a:75:e7:65:0f:30:07:ca:c3:95:ce:eb:2c:
e5:94:f5:0c:35:52:6a:ab:ea:5d:d5:72:e4:38:5d:d7:78:07:
75:23:5c:aa:1c:64:5c:f1:fe:e9:61:6c:75:74:56:92:18:46:
bc:01:20:bc:a6:e3:04:f6:65:1d:3c:80:bc:42:8a:eb:68:9a:
c4:68:d5:fc:33:ca:9b:a3:f7:b6:c3:fb:fa:8a:31:ed:b8:75:
3e:36:7b:27:c3:a1:93:da:97:b9:60:22:63:21:96:78:fa:c7:
5b:7a:9d:24:63:57:ff:83:13:93:1a:20:88:9d:27:1f:87:c1:
60:41:61:aa:5a:da:e5:40:a9:77:72:16:f6:6a:85:97:81:95:
52:75:ea:2f:44:51:72:83:79:e3:b5:2c:e8:9f:8c:2a:f9:e4:
c6:d4:c1:fb:50:5b:e5:65:3f:18:56:cb:42:37:14:38:2d:e8:
d6:28:58:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 17:04:29 2024 by rpki-client on console-ams.rpki-client.org