Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139332e34362e3139362e302f32322d3234203d3e203437353833.roa
File: 3139332e34362e3139362e302f32322d3234203d3e203437353833.roa (raw, json)
Hash identifier: 88C5cuDyG9xY3zOCH10+saM/ci+Mtm0iSeR9eR799gI=
Subject key identifier: A3:C9:B7:26:11:03:16:BB:7F:71:B5:1F:3F:30:37:E8:6A:4C:3E:EA
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 4116B6CF6405030941F57BC47A1D5B828789072F
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139332e34362e3139362e302f32322d3234203d3e203437353833.roa
Signing time: Mon 26 Feb 2024 08:52:54 +0000
ROA not before: Mon 26 Feb 2024 08:47:54 +0000
ROA not after: Mon 24 Feb 2025 08:52:54 +0000
asID: 47583
IP address blocks: 193.46.196.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 14 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:16:b6:cf:64:05:03:09:41:f5:7b:c4:7a:1d:5b:82:87:89:07:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Feb 26 08:47:54 2024 GMT
Not After : Feb 24 08:52:54 2025 GMT
Subject: CN=A3C9B726110316BB7F71B51F3F3037E86A4C3EEA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:cf:3b:94:05:22:d3:52:db:7a:bc:87:c1:f4:
e9:bf:e3:38:98:d5:aa:4e:9d:cc:d4:bd:48:82:0a:
3c:58:5f:4b:0a:01:d3:01:d6:8f:b4:e1:b6:36:14:
ec:2b:d6:aa:69:37:3f:2b:00:6d:c2:6e:61:40:4c:
9e:e5:c1:df:a0:71:0d:ad:96:54:9d:9c:51:14:b0:
7e:7c:7b:2a:9b:5f:27:07:e4:26:c7:af:b6:3d:bc:
4e:48:0b:b3:37:83:58:10:fb:4a:76:16:46:0a:39:
84:0a:10:b8:8f:fc:59:e4:df:e0:c1:78:91:4d:9e:
42:cb:62:c2:6e:8b:61:d8:e0:98:a7:91:4b:23:b5:
82:0d:7d:18:23:5b:4b:b8:d1:1a:fc:61:a5:de:5d:
f7:bd:19:06:3d:a0:95:e7:01:a9:cf:d6:c7:b7:5c:
64:c9:28:8c:a7:83:5a:e1:27:be:ed:44:79:2c:61:
4c:cd:0b:58:f2:f2:dc:42:39:b4:b6:2d:31:bd:0d:
b3:ea:6f:1e:ac:84:0a:8b:99:24:ec:7f:9c:da:27:
0c:92:ec:be:b1:55:4a:ca:1d:4a:ed:35:6e:ea:e2:
c3:a9:e3:3c:57:8a:7d:98:1f:93:9a:54:10:06:14:
89:7e:e9:7a:7b:41:14:fb:26:1e:c6:34:6b:41:b9:
f6:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:C9:B7:26:11:03:16:BB:7F:71:B5:1F:3F:30:37:E8:6A:4C:3E:EA
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139332e34362e3139362e302f32322d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.46.196.0/22
Signature Algorithm: sha256WithRSAEncryption
05:e1:36:06:e4:37:ae:9e:de:dc:0d:45:c3:92:31:3a:19:89:
85:d5:d4:42:b4:b3:dd:ba:12:cb:47:6d:52:62:11:3b:63:f1:
81:62:f3:6e:0d:f3:90:ba:c0:a1:4d:12:e1:8c:80:ad:c0:f4:
3c:f6:58:99:74:36:48:a2:d4:63:2c:66:63:f7:e4:3d:ee:d1:
e4:08:61:cc:0e:3c:0f:89:39:70:4a:21:a7:ab:20:55:8f:e3:
50:de:69:25:66:1f:0d:f7:c6:51:11:1c:e5:19:f0:51:10:21:
a1:fd:b5:4a:f8:35:f7:ad:48:22:51:8e:c7:62:14:62:26:38:
0f:99:03:0a:22:75:7c:24:51:0d:bf:bb:5e:c0:93:4f:4a:3a:
b9:b4:fd:9c:5f:1a:6f:cf:b2:b2:02:cc:48:c7:44:65:4e:b8:
e9:e7:21:36:5a:e5:f4:be:52:09:5d:6d:df:ca:4e:f8:59:1b:
65:87:dc:51:f5:b3:a1:04:6d:43:c7:04:cf:29:f9:86:08:00:
c1:7a:48:d4:18:c2:e3:3e:05:e2:26:e8:3d:8a:76:2e:72:2f:
b1:cf:13:ec:58:eb:2f:c4:a4:f1:95:49:fa:3e:af:83:06:12:
33:76:97:dd:9b:66:69:4d:4b:c5:f0:c8:1c:85:f6:13:2a:e5:
cf:f4:51:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 13 08:54:18 2024 by rpki-client on console-ams.rpki-client.org