Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/3231372e3131342e3230382e302f32302d3234203d3e203331313033.roa
File: 3231372e3131342e3230382e302f32302d3234203d3e203331313033.roa (raw, json)
Hash identifier: xZLpIU9DMOijoaUoPAcW4EoDxmUzp7u0nz1I4uyqCAs=
Subject key identifier: F5:E7:2D:6B:F6:77:5B:E4:00:4C:00:58:74:FE:EC:97:F8:91:80:1E
Certificate issuer: /CN=9e576996388e94b8c7ab20effb23bd11becb4108
Certificate serial: 4D6667A35C51181D81A9B61D5D66FF312AE0725F
Authority key identifier: 9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/3231372e3131342e3230382e302f32302d3234203d3e203331313033.roa
Signing time: Fri 31 May 2024 13:50:49 +0000
ROA not before: Fri 31 May 2024 13:45:49 +0000
ROA not after: Fri 30 May 2025 13:50:49 +0000
asID: 31103
IP address blocks: 217.114.208.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.mft
rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:66:67:a3:5c:51:18:1d:81:a9:b6:1d:5d:66:ff:31:2a:e0:72:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e576996388e94b8c7ab20effb23bd11becb4108
Validity
Not Before: May 31 13:45:49 2024 GMT
Not After : May 30 13:50:49 2025 GMT
Subject: CN=F5E72D6BF6775BE4004C005874FEEC97F891801E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:a8:c8:43:ea:8b:a5:54:58:5e:ff:7f:31:3b:
ad:93:e7:cd:23:c4:69:5c:c9:84:91:5d:0c:ad:09:
b2:83:e2:37:17:e4:7d:11:93:15:88:74:c7:6d:45:
f9:04:0e:8a:26:69:8f:1e:f4:3e:53:aa:01:fb:d6:
c3:82:78:e3:3a:cb:53:ea:d1:da:1d:54:81:5e:62:
0c:ae:30:8b:3e:74:bd:88:ae:a3:36:9f:3d:30:02:
87:54:c5:4f:f1:0a:76:50:15:28:0b:32:26:7b:d5:
d3:9b:1b:57:c6:61:d6:f3:f0:4e:f5:13:01:24:dd:
df:66:37:9f:bd:0c:93:8f:c6:a0:26:b2:24:2e:4d:
a8:26:09:95:1e:19:94:7e:67:4d:c7:a4:e0:94:a5:
85:b5:d3:e7:32:82:e1:98:a6:ce:0c:60:dd:22:2b:
c4:6a:93:88:c3:1b:97:94:2e:1a:29:44:7d:f3:14:
26:bf:59:ba:10:91:fa:2b:78:f3:2a:4b:e5:4d:bc:
f9:ff:53:a7:e2:66:5d:f0:30:79:45:48:db:cd:ea:
4c:da:ef:78:5a:b5:36:13:e3:3e:52:eb:47:2e:65:
a3:86:c4:de:95:a0:29:78:35:f6:23:4c:81:97:1d:
03:51:fa:57:ef:e1:4f:13:f9:a7:c2:b4:99:18:b8:
4d:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:E7:2D:6B:F6:77:5B:E4:00:4C:00:58:74:FE:EC:97:F8:91:80:1E
X509v3 Authority Key Identifier:
keyid:9E:57:69:96:38:8E:94:B8:C7:AB:20:EF:FB:23:BD:11:BE:CB:41:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/9E576996388E94B8C7AB20EFFB23BD11BECB4108.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nldpljiOlLjHqyDv-yO9Eb7LQQg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f5e64030-2f28-42c9-b004-354bb28f6123/0/3231372e3131342e3230382e302f32302d3234203d3e203331313033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.114.208.0/20
Signature Algorithm: sha256WithRSAEncryption
59:af:62:e0:18:8b:de:09:2d:0b:1a:ec:5a:19:57:e8:80:02:
34:63:5e:c7:39:bb:0f:3a:80:db:a4:bc:66:32:22:ab:fe:9d:
46:81:66:2a:04:91:99:e6:6b:0d:02:d5:16:dc:34:03:2a:0a:
19:b3:d7:f3:78:e6:69:6e:9f:4c:4a:72:17:13:b4:54:ea:88:
04:94:06:1b:9a:41:3f:4b:e8:62:ad:5f:57:e9:a7:7c:f2:65:
80:11:fb:85:26:cd:25:70:93:ec:06:42:49:8c:a6:36:7c:09:
71:2a:7c:07:1b:a4:6b:90:02:e9:6e:d0:96:e8:8f:bd:7d:02:
74:47:fc:90:8e:4e:30:d7:72:06:e5:1a:1a:5d:34:d0:15:13:
1a:da:80:9d:9b:c7:6f:e2:37:68:2f:25:84:60:10:6b:f5:c8:
18:4b:2f:59:cc:9b:89:92:10:b8:aa:f1:bc:7b:ea:b4:6f:22:
d5:67:60:4f:bd:0a:89:51:e5:b9:06:58:a8:8f:d6:fe:b8:b4:
9f:b5:2a:12:71:e5:5a:05:e7:72:3c:15:e0:26:94:2c:54:5d:
73:31:d4:ea:ef:9e:98:3e:d2:9f:5f:76:4e:a4:e4:88:59:8f:
15:ca:f9:57:1d:38:8b:93:3e:eb:0b:6d:ef:77:e4:9f:6f:91:
00:80:b0:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 12:00:56 2024 by rpki-client on console-ams.rpki-client.org