Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139332e3230332e31352e302f32342d3332203d3e203531313637.roa
File: 3139332e3230332e31352e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: OqhuKFi1d/S7+MwAB/9npj0ntwET4q7hjffJtZju2aw=
Subject key identifier: DB:FF:FA:C6:F7:F1:AF:41:40:75:DA:5F:12:D1:66:50:19:6A:98:9D
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 5CC66806B20088FB9CE3BB186A793124F908E137
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139332e3230332e31352e302f32342d3332203d3e203531313637.roa
Signing time: Mon 26 Feb 2024 08:52:46 +0000
ROA not before: Mon 26 Feb 2024 08:47:46 +0000
ROA not after: Mon 24 Feb 2025 08:52:46 +0000
asID: 51167
IP address blocks: 193.203.15.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 14:42:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:c6:68:06:b2:00:88:fb:9c:e3:bb:18:6a:79:31:24:f9:08:e1:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Feb 26 08:47:46 2024 GMT
Not After : Feb 24 08:52:46 2025 GMT
Subject: CN=DBFFFAC6F7F1AF414075DA5F12D16650196A989D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:48:f9:2e:5a:4d:d3:4e:ae:55:d2:da:c7:03:
ac:34:36:fb:05:d3:6b:bf:f8:75:ee:9f:33:0b:67:
ca:4c:38:8d:7b:0e:56:52:38:e7:e7:05:e5:73:44:
06:70:e3:c4:cf:e4:01:56:7e:9d:c7:7e:55:0c:92:
72:8f:71:da:a0:12:32:bd:ea:03:fe:87:ad:12:25:
4d:2f:d0:a4:b2:09:54:bd:ff:63:37:f8:98:45:3e:
66:07:4a:a3:e3:f5:7c:b4:29:61:14:64:4a:e0:0c:
cd:ed:38:db:e1:c9:32:8e:ef:5c:2d:38:fe:5c:d3:
06:1b:4a:32:a1:d9:a0:43:ec:d5:5e:ce:75:d1:c4:
0d:dc:b1:15:75:ca:34:34:5a:af:6e:b2:ef:a6:f9:
69:6a:45:fb:c6:2f:fd:5b:67:44:8b:b3:c3:48:c7:
66:ae:84:cd:6e:e1:ec:69:74:9f:cb:4a:9b:8d:c8:
a9:86:7b:37:bd:a2:43:2e:c2:6e:9e:d4:c2:c1:ad:
a6:14:2f:87:7f:2e:fc:97:cf:ab:57:6e:a4:c2:9f:
3a:b2:22:b2:10:22:2a:b1:c3:f2:d2:7e:52:d3:73:
9e:90:f2:cc:f0:62:d1:03:20:5a:94:0f:10:8d:80:
48:09:42:43:e5:70:45:ef:5b:77:92:fa:9d:05:9b:
a5:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:FF:FA:C6:F7:F1:AF:41:40:75:DA:5F:12:D1:66:50:19:6A:98:9D
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139332e3230332e31352e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.203.15.0/24
Signature Algorithm: sha256WithRSAEncryption
49:d0:81:08:5b:a3:ab:16:9c:aa:70:2a:70:2a:af:4c:9d:f7:
78:c1:90:83:44:b7:5f:d3:eb:a7:ea:51:64:d7:8f:9a:d5:f0:
5b:5d:67:28:dd:49:49:1f:43:91:70:cd:e7:41:84:f6:79:ef:
71:cd:0d:f4:08:87:d8:94:79:25:36:3d:19:82:4e:01:f2:33:
b9:3f:04:26:cc:38:70:7c:6a:7c:c4:98:34:fe:03:3e:8b:68:
67:16:07:e9:a1:e7:f8:2a:b3:a1:af:4c:f0:53:8c:29:df:94:
b8:75:94:ac:91:31:98:0b:07:84:3f:45:b6:9f:d4:80:5d:bc:
5f:f2:84:d2:36:35:f9:84:c6:5b:d8:cc:2a:19:60:21:b8:b7:
a9:a7:a9:a7:b6:8f:0e:00:bb:49:6e:20:b6:17:0d:02:41:d0:
fd:57:bf:b5:33:e0:22:06:8f:20:04:bd:c2:6c:f6:89:35:20:
33:1d:a9:17:a8:5b:2f:10:a5:4d:93:e6:89:63:46:b9:0d:48:
ea:a3:ee:77:03:a3:cb:c3:7b:3f:db:28:8b:80:96:6b:a1:a7:
9c:cf:4a:a8:4f:5f:ca:f5:b2:25:4d:4c:5d:63:7f:35:74:91:
dc:e2:a2:0f:c9:05:45:3c:ae:c7:40:18:f3:44:44:c4:5b:48:
9f:b6:4d:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 16:44:10 2024 by rpki-client on console-fra.rpki-client.org