Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/3139332e3230332e3230342e302f32332d3233203d3e203339373538.roa
File: 3139332e3230332e3230342e302f32332d3233203d3e203339373538.roa (raw, json)
Hash identifier: sy1xbnCpmmlSpsfVNCpvBk9YmRVUrdF00XiehvS4+u8=
Subject key identifier: 5E:D8:1E:2A:05:67:BA:12:4C:53:9C:B1:83:1F:84:B1:43:F9:A8:50
Certificate issuer: /CN=ed9edb2a15871785fbae38e23c38820dbfa2cca4
Certificate serial: 625BE5ECCE4C95D0846EE275C80AD08FCEA40B4F
Authority key identifier: ED:9E:DB:2A:15:87:17:85:FB:AE:38:E2:3C:38:82:0D:BF:A2:CC:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/3139332e3230332e3230342e302f32332d3233203d3e203339373538.roa
Signing time: Wed 23 Aug 2023 11:20:04 +0000
ROA not before: Wed 23 Aug 2023 11:15:04 +0000
ROA not after: Wed 21 Aug 2024 11:20:04 +0000
asID: 39758
IP address blocks: 193.203.204.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.crl
rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.mft
rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 01:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:5b:e5:ec:ce:4c:95:d0:84:6e:e2:75:c8:0a:d0:8f:ce:a4:0b:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed9edb2a15871785fbae38e23c38820dbfa2cca4
Validity
Not Before: Aug 23 11:15:04 2023 GMT
Not After : Aug 21 11:20:04 2024 GMT
Subject: CN=5ED81E2A0567BA124C539CB1831F84B143F9A850
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:25:96:25:5b:77:b7:83:26:45:a3:a3:d3:6f:
32:c7:c4:1e:89:30:0e:0e:2c:c3:32:a9:c2:74:c0:
4e:f1:79:34:db:74:e7:c5:22:77:23:4a:48:c5:5d:
ee:f4:6b:e0:03:1f:f9:a6:5d:14:51:f3:eb:0a:a5:
e9:62:ef:91:96:a1:f8:e4:0c:dd:ae:5a:4e:be:21:
6b:41:ea:82:33:1b:2f:91:0f:ad:18:c8:f0:e1:85:
b3:88:d8:b2:ef:b7:24:f0:c4:6b:18:d0:7a:37:24:
4a:28:c2:48:29:a7:da:57:f4:bd:5d:3c:d3:b0:59:
1a:83:ef:eb:cc:fe:81:db:a7:95:59:87:5d:2c:be:
e0:6e:3d:dd:9a:a2:17:70:66:44:86:f8:8c:b7:80:
ed:e3:42:c4:73:d8:ea:0f:b6:ec:b2:f5:58:7c:c7:
e3:0e:dc:3f:dc:f0:13:fb:41:24:5a:1a:37:51:90:
44:51:6a:96:f3:12:5e:b2:92:f4:36:10:ea:a8:bd:
a5:b9:ea:c6:a5:4f:78:26:86:31:ff:5a:15:6a:d6:
a7:40:7a:7e:c2:fd:49:b1:d2:f8:ba:f7:eb:08:be:
f3:71:37:5a:eb:02:74:c1:e8:be:7b:22:13:10:a6:
38:f2:41:77:ff:f0:5c:79:39:71:3e:41:96:b0:20:
1d:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:D8:1E:2A:05:67:BA:12:4C:53:9C:B1:83:1F:84:B1:43:F9:A8:50
X509v3 Authority Key Identifier:
keyid:ED:9E:DB:2A:15:87:17:85:FB:AE:38:E2:3C:38:82:0D:BF:A2:CC:A4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/3139332e3230332e3230342e302f32332d3233203d3e203339373538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.203.204.0/23
Signature Algorithm: sha256WithRSAEncryption
1f:2b:30:59:a9:02:60:9b:55:32:6c:e1:58:9b:22:5f:39:1b:
5c:3d:a1:77:58:82:9b:2e:a3:e8:09:b1:55:00:98:e0:f2:78:
d7:76:b7:d6:ae:fa:af:d0:9b:48:13:38:14:0c:86:21:78:63:
21:e7:d0:01:b7:3d:b0:fa:d2:06:02:28:4b:af:5d:00:8b:4a:
c7:3b:57:c9:fe:71:69:d0:72:86:53:8a:81:e2:68:94:0b:15:
0a:f5:9c:33:e2:e5:e8:54:0d:44:92:97:a5:33:7a:d8:f4:45:
5f:17:f0:a0:7b:e9:00:93:48:16:76:45:db:69:12:37:72:cf:
d5:dd:cd:ec:a9:0b:2d:bd:ac:d4:3e:e6:57:53:c0:10:22:47:
40:99:b9:2a:3d:20:2f:95:62:2b:74:27:71:d4:66:48:21:c9:
ac:be:1e:65:d3:42:22:01:a4:f9:e8:f8:3e:2c:13:c8:30:98:
07:9f:df:91:5d:fb:01:74:bc:42:fb:b4:72:5e:7a:58:b1:7e:
cb:aa:34:a3:d1:7c:6f:c6:51:21:3e:fd:89:b3:ab:70:5d:d0:
7a:71:2b:c3:a9:0e:eb:b6:46:14:67:2a:f3:7b:96:33:20:b6:
28:42:83:dd:db:58:d2:53:6f:5d:9e:24:16:28:c1:c2:d7:aa:
06:4c:bc:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 07:23:14 2024 by rpki-client on console-ams.rpki-client.org