Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/39332e3131352e3234382e302f32332d3234203d3e203631333137.roa
File: 39332e3131352e3234382e302f32332d3234203d3e203631333137.roa (raw, json)
Hash identifier: 0/T6IoKQBi00uh7Y09G6cYWB2BOwaTjGjtIb2V0Qu7A=
Subject key identifier: 5F:B9:11:67:E5:2A:22:BC:5E:E2:83:8B:EA:4F:17:CB:72:BA:2E:0E
Certificate issuer: /CN=ed9edb2a15871785fbae38e23c38820dbfa2cca4
Certificate serial: 7F5D5536BAF5A083AC519D06ADDC8C59775684A8
Authority key identifier: ED:9E:DB:2A:15:87:17:85:FB:AE:38:E2:3C:38:82:0D:BF:A2:CC:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/39332e3131352e3234382e302f32332d3234203d3e203631333137.roa
Signing time: Tue 08 Oct 2024 09:43:22 +0000
ROA not before: Tue 08 Oct 2024 09:38:22 +0000
ROA not after: Tue 07 Oct 2025 09:43:22 +0000
asID: 61317
IP address blocks: 93.115.248.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.crl
rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.mft
rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:5d:55:36:ba:f5:a0:83:ac:51:9d:06:ad:dc:8c:59:77:56:84:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed9edb2a15871785fbae38e23c38820dbfa2cca4
Validity
Not Before: Oct 8 09:38:22 2024 GMT
Not After : Oct 7 09:43:22 2025 GMT
Subject: CN=5FB91167E52A22BC5EE2838BEA4F17CB72BA2E0E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:98:cd:61:c0:bb:ab:7e:b0:3c:39:c8:81:e4:
8d:20:bb:29:a2:da:0e:0e:43:f4:a8:45:b4:d0:ac:
6b:e1:7d:e6:86:85:d3:4c:2f:26:47:0a:b2:4f:05:
ac:37:a9:dd:4d:9b:8b:08:2f:e7:62:34:73:83:02:
e3:12:1b:d2:0d:e5:ee:c2:26:3d:c6:93:44:39:69:
21:ba:45:91:04:08:67:6b:e9:ab:ac:26:bd:ea:27:
2a:87:8c:b2:9a:44:47:ca:ee:98:9e:c6:ae:0e:7f:
67:37:d7:23:d9:0f:65:7f:f4:66:73:bb:25:18:28:
25:90:e0:fe:8e:a4:35:ca:db:a3:d6:9b:03:19:eb:
7d:07:aa:c9:72:6e:c8:d5:f2:5d:a9:7f:1e:78:fd:
c5:8a:cc:44:e1:96:23:aa:94:37:3a:3c:0a:d7:0c:
9d:bc:be:a8:9f:49:59:d9:1f:2b:25:92:b7:e8:a8:
b4:a6:33:ac:8f:fb:18:ef:8f:f4:4b:5d:45:5a:0d:
f2:90:27:77:8f:9d:ad:54:8f:bb:26:61:6f:f3:e7:
09:32:0d:6d:5c:6f:57:8d:e9:06:4f:01:ea:a2:be:
c2:0e:67:ff:3d:79:bc:2f:cb:26:c6:2f:c3:58:5d:
ed:15:4c:07:fe:47:9d:0d:37:83:c2:4f:72:0b:9e:
e6:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:B9:11:67:E5:2A:22:BC:5E:E2:83:8B:EA:4F:17:CB:72:BA:2E:0E
X509v3 Authority Key Identifier:
keyid:ED:9E:DB:2A:15:87:17:85:FB:AE:38:E2:3C:38:82:0D:BF:A2:CC:A4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/39332e3131352e3234382e302f32332d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.115.248.0/23
Signature Algorithm: sha256WithRSAEncryption
82:35:ac:d7:6e:de:b3:84:65:40:9b:1d:44:d4:b5:32:5c:08:
01:de:18:10:25:d0:17:53:6b:07:0e:53:28:b7:a7:5d:21:91:
bc:47:10:8b:d6:4f:66:a6:dd:63:5d:8f:69:75:6e:f7:53:a9:
5f:66:f7:21:cd:80:5b:99:66:a5:55:12:af:dd:67:5f:84:b9:
e6:79:81:34:e6:c9:29:2a:62:de:e2:3c:96:d6:41:44:65:d6:
d7:96:7a:f7:10:a8:ff:03:aa:c2:65:39:f0:5c:3a:47:0a:1f:
68:92:0c:1a:6e:8d:8c:f0:31:9f:85:74:bf:6b:f6:e3:a7:a2:
89:d3:3a:99:2c:8c:84:af:ac:a1:c8:fc:fd:ff:a3:e5:5e:ef:
35:ca:06:4d:ca:23:73:07:cb:0a:a4:6e:7e:f5:c4:3e:7a:0c:
9a:a9:db:cc:38:ba:85:9b:00:3b:28:0e:c1:cb:28:36:94:81:
22:4b:e3:f1:5a:e7:4d:8a:34:76:e3:b1:37:e5:2f:3c:91:6f:
68:27:09:71:7c:30:92:dc:fb:95:67:2d:58:6b:23:28:e5:94:
64:bd:d3:70:7b:56:67:42:1d:0d:ad:6e:94:5f:2e:6a:85:1c:
2e:b6:b9:cf:af:5f:98:cb:35:05:a8:72:bd:0d:55:2f:67:d5:
b8:f4:48:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:58:17 2024 by rpki-client on console-ams.rpki-client.org