Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/39332e3131332e32352e302f32342d3234203d3e20323134323039.roa
File: 39332e3131332e32352e302f32342d3234203d3e20323134323039.roa (raw, json)
Hash identifier: 2/naNLsZWsKbctisH+91/rgvttkXh//515D4Dxt3bfg=
Subject key identifier: 73:83:72:F6:54:D4:62:C9:F9:DD:BA:82:9D:89:84:1B:1D:47:D8:A9
Certificate issuer: /CN=ed9edb2a15871785fbae38e23c38820dbfa2cca4
Certificate serial: 23D8FC193AC7EBA601C7656BD67C541E3CA9622B
Authority key identifier: ED:9E:DB:2A:15:87:17:85:FB:AE:38:E2:3C:38:82:0D:BF:A2:CC:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/39332e3131332e32352e302f32342d3234203d3e20323134323039.roa
Signing time: Mon 23 Sep 2024 19:28:24 +0000
ROA not before: Mon 23 Sep 2024 19:23:24 +0000
ROA not after: Mon 22 Sep 2025 19:28:24 +0000
asID: 214209
IP address blocks: 93.113.25.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.crl
rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.mft
rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:d8:fc:19:3a:c7:eb:a6:01:c7:65:6b:d6:7c:54:1e:3c:a9:62:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed9edb2a15871785fbae38e23c38820dbfa2cca4
Validity
Not Before: Sep 23 19:23:24 2024 GMT
Not After : Sep 22 19:28:24 2025 GMT
Subject: CN=738372F654D462C9F9DDBA829D89841B1D47D8A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:2e:c5:8f:83:94:dc:86:ec:3c:98:f4:65:9a:
d5:70:93:1f:73:45:3a:14:26:41:15:7f:02:b4:8b:
bd:43:02:6a:39:7d:58:4d:84:70:03:09:e8:41:37:
b2:73:db:fc:d9:77:bd:73:1e:96:d5:8f:ba:a4:2c:
85:e1:1f:e0:c6:6d:0f:51:df:0a:8d:44:36:4c:d8:
9a:93:67:0f:24:6d:46:28:76:71:f9:fb:51:74:30:
1f:f0:96:c3:cd:6a:81:72:94:0b:8f:94:4f:d8:5d:
c7:ed:64:2e:58:7f:6c:22:5c:94:ba:e6:58:63:be:
cc:51:5c:54:67:a3:99:9c:ae:5a:25:75:8a:f4:83:
a4:eb:c0:e5:9a:fe:56:e4:72:c2:d2:89:af:c1:61:
98:63:61:1b:2c:59:81:7b:02:af:0f:4e:cd:bc:96:
f4:48:93:aa:af:4c:ee:ff:b2:f0:bd:ca:2e:51:0c:
c5:96:d1:63:41:d4:38:20:62:ab:24:dc:d7:19:0e:
48:b7:2c:53:ef:e7:2c:ed:c5:25:47:ba:b9:d8:eb:
5c:72:55:24:a7:95:08:90:01:35:1d:9b:e2:02:67:
de:3f:cd:69:af:8f:f7:eb:84:23:23:a2:60:b5:c9:
40:76:28:e8:ab:d5:a3:5e:50:25:d7:56:86:f6:11:
d8:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:83:72:F6:54:D4:62:C9:F9:DD:BA:82:9D:89:84:1B:1D:47:D8:A9
X509v3 Authority Key Identifier:
keyid:ED:9E:DB:2A:15:87:17:85:FB:AE:38:E2:3C:38:82:0D:BF:A2:CC:A4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/39332e3131332e32352e302f32342d3234203d3e20323134323039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.113.25.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:79:a1:69:fe:b4:a0:da:59:33:61:03:d5:21:dd:de:e0:33:
b6:4e:e9:cc:c1:9d:61:68:e3:84:9e:37:2c:cf:fe:c9:e9:b9:
6b:c7:79:6f:c9:b1:6e:34:f3:23:de:70:e8:af:af:e8:47:33:
8e:14:8b:ad:9e:d7:ad:07:0b:e0:c2:8a:8c:04:10:e8:86:2f:
13:78:26:05:20:60:7e:e4:02:5d:bf:77:bf:f0:1f:cb:00:01:
c9:0e:20:bc:a0:87:df:10:aa:9d:0a:29:7a:a1:2d:d6:20:f7:
0c:3f:4c:04:8b:78:f0:fe:d9:e4:3b:75:6b:47:ca:c3:e8:f1:
b8:56:7e:cd:b7:a9:22:a8:e5:b6:4b:97:4c:09:39:78:74:7f:
c0:c0:2d:58:ed:4e:fb:11:39:21:e6:f4:3c:4a:08:f8:2c:b0:
8d:7e:0e:ea:45:3f:8a:29:e2:be:32:4b:8b:7d:d3:3c:61:45:
63:2b:bb:96:76:4a:68:a9:57:3a:88:55:90:88:8d:c9:0a:ed:
55:d2:a2:15:3a:c5:38:a0:4b:24:8f:f5:bb:27:1e:e0:c4:86:
4a:94:7b:e6:a3:cb:0e:81:53:f1:ed:7c:61:74:d4:5f:ad:15:
6f:34:89:84:ee:d6:ba:bc:21:f7:b8:7b:99:29:ed:fe:99:9b:
d0:05:14:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:14:52 2024 by rpki-client on console-fra.rpki-client.org