Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139332e32322e3135342e302f32332d3332203d3e203536383736.roa
File: 3139332e32322e3135342e302f32332d3332203d3e203536383736.roa (raw, json)
Hash identifier: IL63ZIAWpaA9M45D5hqAJ865sLqhEWlTGiCIt/qjSb8=
Subject key identifier: FE:CB:C6:12:D4:14:A1:EE:8B:3D:C8:FB:CC:89:7F:D0:CB:BA:02:16
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 645E5D71838EA732011722823E447860872E2312
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139332e32322e3135342e302f32332d3332203d3e203536383736.roa
Signing time: Mon 26 Feb 2024 08:52:58 +0000
ROA not before: Mon 26 Feb 2024 08:47:58 +0000
ROA not after: Mon 24 Feb 2025 08:52:58 +0000
asID: 56876
IP address blocks: 193.22.154.0/23 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:5e:5d:71:83:8e:a7:32:01:17:22:82:3e:44:78:60:87:2e:23:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Feb 26 08:47:58 2024 GMT
Not After : Feb 24 08:52:58 2025 GMT
Subject: CN=FECBC612D414A1EE8B3DC8FBCC897FD0CBBA0216
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e6:74:20:ad:59:fe:a5:b5:b5:78:f0:48:b5:
a0:d7:b8:fe:8d:f1:ff:5d:0b:ac:33:fb:6d:9f:d6:
90:83:c3:1b:80:ef:a3:60:0f:a2:1a:ad:8c:75:ab:
85:e2:9f:39:36:ba:a6:14:fa:76:b9:fd:cf:39:8b:
ff:cf:9f:fd:56:8d:49:92:c4:02:86:f2:05:b1:04:
ad:63:f2:3a:e9:6a:c9:dc:ce:dc:3c:aa:dc:d8:cf:
95:39:c0:1c:dc:d8:f8:04:6f:e2:2e:18:65:eb:e4:
ea:44:96:76:99:a5:a7:99:23:75:ea:cd:ba:ee:b8:
be:88:ca:65:f9:85:87:39:f9:4c:aa:9b:c0:03:f5:
63:2d:f5:f2:4a:aa:a2:74:06:0f:b3:1d:ec:1d:7a:
56:6b:af:c2:45:26:01:b5:7c:09:3a:11:0d:81:2f:
13:ce:32:83:85:06:a2:29:76:21:5c:0e:f1:8f:c1:
c7:6d:6f:8b:64:fc:12:ad:81:28:b4:d1:75:51:c0:
08:ce:47:30:95:a6:b9:72:9e:67:48:de:2d:59:ea:
c9:ba:ff:2c:5c:22:b3:29:e1:18:d4:ac:90:8b:44:
9e:f4:4e:37:2c:da:8b:0b:26:8f:4c:57:d2:fc:f6:
2f:95:48:6b:d5:ce:ba:5e:f4:46:1d:a3:bb:94:af:
54:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:CB:C6:12:D4:14:A1:EE:8B:3D:C8:FB:CC:89:7F:D0:CB:BA:02:16
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139332e32322e3135342e302f32332d3332203d3e203536383736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.22.154.0/23
Signature Algorithm: sha256WithRSAEncryption
94:50:15:da:09:93:86:8e:1e:f7:b1:a8:23:5f:bf:e4:d8:09:
b9:fc:41:80:b6:4d:ee:20:14:57:fc:e8:88:fa:ee:fb:32:27:
db:9e:b9:29:3c:43:22:8c:53:49:e5:c4:8c:a2:f1:3d:e6:6a:
cc:a1:0d:cb:f8:85:19:e4:3d:ad:2d:1f:92:22:d8:63:74:65:
ec:9a:3f:38:90:9e:93:72:52:db:3f:63:04:8d:18:f7:d0:46:
bd:05:ca:3b:82:cf:c6:d8:39:3c:45:7f:79:e5:0a:14:f2:09:
70:fe:7f:9b:6a:63:f8:f7:66:d7:b1:c6:0a:9e:51:68:04:88:
08:77:23:2a:34:49:16:b9:79:08:93:c2:aa:e4:ec:c1:6e:f1:
4c:be:09:77:2f:e7:a3:d8:a1:19:8e:7a:69:c4:64:fa:3b:b3:
ca:85:e0:60:2e:16:cb:29:88:42:de:7d:24:e5:16:9a:b1:9d:
8e:1e:14:b0:05:94:1f:e1:b0:f7:2c:bf:c6:c3:c5:08:fe:c8:
4b:81:ba:2a:42:62:ea:f8:e3:60:1a:48:59:c2:75:0b:63:50:
27:f9:66:58:db:3d:bc:68:91:ff:c4:ae:43:1f:7e:5f:3b:d1:
09:59:2e:33:61:c1:64:d9:8a:4c:67:ab:2c:ba:f1:6d:69:4d:
77:49:92:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:02 2024 by rpki-client on console-fra.rpki-client.org