Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/189/33372e31362e38392e302f32342d3234203d3e20323035363539.roa
File: 33372e31362e38392e302f32342d3234203d3e20323035363539.roa (raw, json)
Hash identifier: 9ho5gS2Rqes16b0/kRoKbjGXfSvcRNyqLVfNWwLmyo8=
Subject key identifier: D8:91:3F:B1:39:2C:B9:2B:C4:F8:FE:56:79:A1:50:EF:0B:24:CE:8B
Certificate issuer: /CN=b056811cb944a23c757f57affd483c6fcfb80119
Certificate serial: 07ED80A07C897C1B9811176E589BC7EFB2854043
Authority key identifier: B0:56:81:1C:B9:44:A2:3C:75:7F:57:AF:FD:48:3C:6F:CF:B8:01:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sFaBHLlEojx1f1ev_Ug8b8-4ARk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/189/33372e31362e38392e302f32342d3234203d3e20323035363539.roa
Signing time: Mon 26 Feb 2024 08:52:58 +0000
ROA not before: Mon 26 Feb 2024 08:47:58 +0000
ROA not after: Mon 24 Feb 2025 08:52:58 +0000
asID: 205659
IP address blocks: 37.16.89.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/189/B056811CB944A23C757F57AFFD483C6FCFB80119.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/189/B056811CB944A23C757F57AFFD483C6FCFB80119.mft
rsync://rpki.ripe.net/repository/DEFAULT/sFaBHLlEojx1f1ev_Ug8b8-4ARk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:ed:80:a0:7c:89:7c:1b:98:11:17:6e:58:9b:c7:ef:b2:85:40:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b056811cb944a23c757f57affd483c6fcfb80119
Validity
Not Before: Feb 26 08:47:58 2024 GMT
Not After : Feb 24 08:52:58 2025 GMT
Subject: CN=D8913FB1392CB92BC4F8FE5679A150EF0B24CE8B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:01:a7:0c:d6:c6:d3:2a:c3:30:c2:78:f9:d3:
4d:0d:0b:1c:ab:ae:e9:e5:62:01:ad:88:56:6b:75:
09:60:f2:1c:8a:52:c4:67:a2:84:99:9b:3f:b9:da:
9d:c2:0a:5c:82:81:01:1a:67:e4:f3:a0:ca:62:af:
b3:eb:0d:5e:2a:82:32:0b:de:94:de:48:3f:4a:ce:
b2:88:7e:5e:89:df:f3:8d:67:09:d4:8b:d6:41:ee:
14:a3:ae:4c:45:0d:43:4a:81:14:bd:9e:ad:0e:88:
da:07:69:23:ac:2b:81:8d:b8:09:9b:da:3f:06:04:
01:50:b1:d2:fc:63:f2:4e:d3:82:d7:92:dc:83:6d:
aa:c5:ca:11:9d:30:55:87:69:46:1c:97:2e:29:d2:
70:ab:61:5d:39:e8:f4:fe:01:18:e1:13:cc:c3:39:
b7:04:57:cf:eb:24:02:30:b7:49:24:5c:59:94:be:
4a:3c:a9:85:88:3a:92:24:5e:f5:87:d4:24:7e:17:
24:f1:50:26:44:a3:7e:f9:27:a0:ad:7e:82:5f:ce:
2d:50:19:a1:e1:ff:d0:0d:43:f2:f9:68:4b:9d:a3:
4f:4a:aa:10:47:c0:aa:93:1b:7b:9a:0c:9b:b9:54:
6f:b7:eb:3e:83:9f:b5:d3:4a:5f:1f:6d:7c:2e:2d:
8a:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:91:3F:B1:39:2C:B9:2B:C4:F8:FE:56:79:A1:50:EF:0B:24:CE:8B
X509v3 Authority Key Identifier:
keyid:B0:56:81:1C:B9:44:A2:3C:75:7F:57:AF:FD:48:3C:6F:CF:B8:01:19
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/189/B056811CB944A23C757F57AFFD483C6FCFB80119.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sFaBHLlEojx1f1ev_Ug8b8-4ARk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/189/33372e31362e38392e302f32342d3234203d3e20323035363539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.16.89.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:84:17:74:52:47:fd:19:4f:8d:22:bd:cf:e4:ec:c7:65:04:
7e:de:67:ff:3d:ad:2a:b4:6a:d6:b9:c5:f9:38:ea:29:29:fd:
cb:53:10:f3:c8:d8:c8:1e:cd:71:1b:5b:83:2e:d9:f1:a3:d9:
fe:29:f7:ef:87:9e:42:42:76:d0:b7:e7:40:ad:a9:66:17:dd:
40:c0:f1:76:2c:26:c0:4f:8a:c0:d4:d9:b6:73:ef:c3:47:cd:
9c:f5:22:09:9d:8e:09:19:92:92:d9:de:ad:e7:b6:f5:ce:67:
72:77:e0:eb:a7:e8:92:e5:d0:95:b0:11:16:86:66:d7:cc:1b:
a4:a0:16:06:3c:df:64:aa:1a:09:b8:92:60:57:60:dd:e1:c8:
72:e9:58:1d:70:dc:c7:50:38:33:d0:44:80:51:b3:0e:17:55:
0d:7e:32:28:0b:2f:8c:60:30:37:e3:55:e1:3f:af:a6:dc:72:
7a:0f:9c:5e:31:bb:5d:61:ef:60:fa:ce:0c:fa:3f:30:f3:7c:
41:eb:1f:de:55:80:48:1b:bc:a7:8e:11:2b:81:26:fb:77:c9:
2b:5c:99:16:49:ec:94:92:9f:34:7c:9a:cb:59:e8:d9:4a:84:
71:36:1a:6a:d0:0a:a3:ce:9a:28:99:92:de:83:6a:bb:58:1d:
2d:57:37:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:02 2024 by rpki-client on console-fra.rpki-client.org