Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3134372e37382e3132392e302f32342d3234203d3e20313336373837.roa
File: 3134372e37382e3132392e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: 4baMLvjymfv9E0unSSv66EiKjQMCjf4kleV844ifQmQ=
Subject key identifier: 50:59:86:1B:F0:A9:2F:C0:32:C8:76:36:CF:3D:59:BC:B6:31:77:0D
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 395478B0EF6F5D07BFEA74D6F68BF15CAE2D2BC5
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3134372e37382e3132392e302f32342d3234203d3e20313336373837.roa
Signing time: Thu 30 Nov 2023 14:00:34 +0000
ROA not before: Thu 30 Nov 2023 13:55:34 +0000
ROA not after: Thu 28 Nov 2024 14:00:34 +0000
asID: 136787
IP address blocks: 147.78.129.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:54:78:b0:ef:6f:5d:07:bf:ea:74:d6:f6:8b:f1:5c:ae:2d:2b:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Nov 30 13:55:34 2023 GMT
Not After : Nov 28 14:00:34 2024 GMT
Subject: CN=5059861BF0A92FC032C87636CF3D59BCB631770D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:30:78:87:95:a3:d5:13:ac:85:04:06:df:34:
7f:a8:de:6c:c9:4f:c4:71:26:79:a7:d2:12:e7:24:
e7:85:61:99:ea:98:ce:ae:61:23:a9:91:83:37:f3:
32:16:12:38:db:52:5d:2c:1d:a5:2b:5f:7f:e5:0c:
76:f1:e1:9e:27:9f:2d:96:57:96:23:ea:b0:3e:74:
53:d9:d0:21:17:e1:4b:63:73:6f:13:3b:08:b8:d7:
e0:cd:09:09:09:02:fd:96:ea:b6:ae:0e:e4:30:53:
ed:55:70:c4:30:00:d2:8e:d2:05:d9:a4:9a:b6:cd:
4c:de:bf:7a:e5:8f:7a:02:7b:33:1c:ec:3c:ac:59:
d3:21:ec:ca:0f:77:0a:8e:36:51:03:c7:ce:52:f9:
35:3d:c8:ed:b5:61:93:fa:47:6e:74:1b:9b:6e:d2:
bf:02:07:62:ba:ec:6c:6d:46:e1:5a:f3:29:57:4a:
cc:eb:cf:37:ba:df:95:0e:50:25:3e:2c:e4:22:17:
00:48:a2:4e:64:72:1f:47:66:9d:84:f6:c1:6e:ff:
66:be:af:df:49:e5:3a:02:45:4c:ca:69:21:c3:a1:
cb:18:b2:7d:2d:6d:73:b1:1d:90:66:1e:a8:ba:ba:
17:86:bf:53:0f:3a:cd:0a:10:f7:ea:1f:f5:45:32:
60:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:59:86:1B:F0:A9:2F:C0:32:C8:76:36:CF:3D:59:BC:B6:31:77:0D
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3134372e37382e3132392e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.129.0/24
Signature Algorithm: sha256WithRSAEncryption
85:7b:ee:b1:56:65:1e:eb:04:c1:60:7c:dd:47:1d:44:05:29:
d4:90:92:05:90:70:31:77:d9:71:2b:05:66:ad:e4:e2:eb:4f:
0b:3f:26:cf:d4:0f:9f:d4:de:11:26:bf:ba:52:b2:2d:ea:d4:
c4:69:be:26:70:bd:34:55:ea:c4:4e:36:d2:c7:e0:99:fe:66:
a7:f1:b6:bd:52:b7:c3:f5:24:1a:8c:a9:75:96:30:fe:13:d2:
0d:ff:c6:80:ba:8a:c3:99:2f:55:eb:d7:d4:e6:c3:2d:65:10:
45:52:4a:cd:cc:f0:33:e8:c6:a2:57:54:9f:3a:b7:c3:3d:27:
ac:87:16:17:7a:d0:b5:16:60:62:be:84:5e:4b:7e:25:b9:24:
fc:1a:27:ea:95:38:52:bf:0e:c2:bd:fb:37:5c:81:fb:27:77:
1c:32:1b:36:cd:d8:91:bf:48:e6:aa:bc:85:1f:6f:44:88:52:
51:26:59:a5:36:0c:28:3f:f7:72:b9:92:72:8b:e5:cd:bf:92:
ed:0a:3e:38:a2:ca:8f:e6:c2:39:9d:8b:d1:2e:3c:9c:a8:0b:
9d:28:7f:6e:96:23:a3:73:58:94:48:40:21:6e:f6:c3:e4:f7:
12:2a:15:10:3a:7c:f4:c0:71:bc:69:ba:fc:0f:55:8e:29:d2:
5c:dc:9a:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 11:32:57 2024 by rpki-client on console-ams.rpki-client.org