Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139332e32322e32372e302f32342d3234203d3e20313336373837.roa
File: 3139332e32322e32372e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: 1Ig7B6an24FsRw52pIBIM9frdAjB2YvN2jOCHc/ycd0=
Subject key identifier: 09:A0:D3:5E:71:62:32:A2:1B:54:70:22:93:12:18:5B:D9:CC:26:8D
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 6586274D4BC2A346D23F28AB6C29ADAAE4758A1D
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139332e32322e32372e302f32342d3234203d3e20313336373837.roa
Signing time: Sat 02 Mar 2024 21:54:40 +0000
ROA not before: Sat 02 Mar 2024 21:49:40 +0000
ROA not after: Sat 01 Mar 2025 21:54:40 +0000
asID: 136787
IP address blocks: 193.22.27.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:86:27:4d:4b:c2:a3:46:d2:3f:28:ab:6c:29:ad:aa:e4:75:8a:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Mar 2 21:49:40 2024 GMT
Not After : Mar 1 21:54:40 2025 GMT
Subject: CN=09A0D35E716232A21B5470229312185BD9CC268D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d3:35:68:f8:e8:12:5c:93:18:79:f6:f4:70:
e1:ac:69:f7:9a:ce:42:2f:52:76:d0:92:5f:7a:eb:
51:79:89:6e:db:cc:b0:51:06:22:96:73:d0:0e:2c:
a3:5b:fb:71:82:40:d9:23:59:d1:3a:de:89:79:63:
ed:71:91:9f:04:e9:21:b3:bf:19:34:7b:63:e2:24:
8b:f3:e8:e7:a8:45:c0:76:d0:7f:59:21:dd:b6:f2:
bc:3f:7c:d7:6b:6f:b4:e1:20:26:ad:c1:d6:c4:9e:
2d:3b:52:6a:6a:b3:fb:ff:34:6b:4d:4a:47:04:be:
38:c9:8f:eb:73:49:6f:2f:50:f0:ef:2a:97:d9:0c:
35:93:85:5e:76:f2:81:88:aa:36:1b:bf:3e:dc:03:
a8:78:ff:b2:d3:f9:b0:49:b0:38:ab:d5:f3:93:02:
11:66:2b:26:85:4b:9e:61:1e:df:14:a3:bf:ba:00:
6c:0d:b5:09:4d:cd:e0:48:d8:10:52:17:61:72:da:
fb:67:52:1c:61:06:14:e3:cf:bc:ab:82:d7:59:69:
5d:46:bc:f0:57:74:41:88:b4:bd:29:7e:6d:a7:d6:
1b:da:10:f9:67:cc:18:41:35:02:7d:3f:cb:7c:b5:
35:5d:b0:73:f2:70:ab:ad:61:09:cc:91:72:73:71:
89:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:A0:D3:5E:71:62:32:A2:1B:54:70:22:93:12:18:5B:D9:CC:26:8D
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139332e32322e32372e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.22.27.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:bf:24:a9:fa:89:a3:d8:e1:46:74:1c:e5:25:9e:bc:0a:16:
4f:bf:93:bf:34:5c:54:b4:7c:08:0d:d7:44:38:79:a0:02:1f:
22:ac:d7:ee:4a:ee:ae:72:a5:50:e3:db:2e:17:47:ec:51:17:
fc:e9:bc:15:6d:2f:b1:4c:b1:5d:16:19:7b:9e:cc:30:ef:85:
fc:30:64:74:59:b0:ce:c5:5b:1a:34:c6:91:c5:d0:67:c0:2a:
6c:1c:e0:34:bf:a7:22:d7:29:d1:05:ee:82:dc:9a:c6:09:ee:
b8:99:46:38:f9:13:70:06:34:87:34:c7:81:9c:51:34:ba:73:
6f:cb:42:9a:8b:2a:d1:1a:b7:87:7c:c7:cb:dc:c7:38:be:40:
11:be:04:f0:a1:8a:fc:f2:03:24:a8:b5:d8:6c:cc:2b:83:19:
1e:99:c0:2d:94:da:13:0b:06:60:6e:21:d5:07:21:ee:0e:4f:
7f:70:0e:25:59:04:f6:18:70:f4:78:d3:88:f0:b4:66:db:5c:
7a:d5:ff:72:c3:6e:61:b4:a3:29:43:de:67:89:91:ca:7a:f0:
25:47:5f:9b:20:ae:96:96:d6:6e:20:d6:dd:69:76:7d:ef:98:
70:77:5f:44:ce:8a:e5:2c:a1:1c:1e:b8:74:ec:07:c7:fe:88:
c3:93:5a:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 11:32:57 2024 by rpki-client on console-ams.rpki-client.org