Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139342e3131302e38342e302f32342d3234203d3e20323034313730.roa
File: 3139342e3131302e38342e302f32342d3234203d3e20323034313730.roa (raw, json)
Hash identifier: uHSq9IKIN/KnNC9rtAn/vRU4/GCPXiN4cnEqOD4n7rA=
Subject key identifier: F6:76:E3:9D:BC:82:76:46:52:AD:6F:F3:27:69:D0:B4:0A:A0:96:A5
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 3B8F04F560360676889549B95800EF23CD2ECD6B
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139342e3131302e38342e302f32342d3234203d3e20323034313730.roa
Signing time: Tue 25 Jun 2024 21:47:31 +0000
ROA not before: Tue 25 Jun 2024 21:42:31 +0000
ROA not after: Tue 24 Jun 2025 21:47:31 +0000
asID: 204170
IP address blocks: 194.110.84.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:8f:04:f5:60:36:06:76:88:95:49:b9:58:00:ef:23:cd:2e:cd:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Jun 25 21:42:31 2024 GMT
Not After : Jun 24 21:47:31 2025 GMT
Subject: CN=F676E39DBC82764652AD6FF32769D0B40AA096A5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:88:01:58:a8:be:bf:91:e7:40:61:ef:10:ea:
df:34:ad:08:4b:e0:44:49:22:cf:dd:de:40:10:eb:
a4:f8:e7:97:37:2b:f9:7f:50:54:8b:9c:f1:02:81:
07:61:52:3e:83:9a:d7:a7:6e:e0:02:cb:6b:70:18:
f5:8c:81:d5:7c:03:2c:9d:aa:f6:cc:94:15:98:b1:
3a:21:de:5b:fd:ae:74:27:4e:6d:c5:90:fa:02:37:
c8:b9:68:44:59:51:20:3e:59:06:07:7b:97:ce:9e:
16:7d:28:cf:c5:9f:3c:a6:75:b9:ec:89:d4:d6:f9:
84:c5:c2:ba:48:de:f2:59:11:f9:ef:b3:8c:a1:51:
80:d5:4f:b2:58:68:5a:f9:da:a1:f6:cb:ea:17:66:
e8:fe:4e:87:df:8c:cc:26:ad:c3:61:f6:e2:88:41:
26:bb:48:80:e6:ad:ca:4e:2b:33:ef:83:3f:f9:21:
82:02:ca:c5:b1:ef:a8:04:cd:75:fe:05:8a:eb:cc:
40:8e:8f:50:69:87:af:c9:42:e8:3f:fa:9b:0a:1a:
31:42:aa:7e:f4:4d:ed:1f:68:93:1e:e2:14:1b:b1:
1f:60:77:2b:37:f4:3d:a4:72:16:fd:7f:03:23:01:
82:87:27:75:fc:40:ed:15:9b:8a:46:c5:61:ae:9f:
e0:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:76:E3:9D:BC:82:76:46:52:AD:6F:F3:27:69:D0:B4:0A:A0:96:A5
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139342e3131302e38342e302f32342d3234203d3e20323034313730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.110.84.0/24
Signature Algorithm: sha256WithRSAEncryption
05:11:44:b4:86:b6:8f:a3:99:68:37:00:1a:cc:0d:79:16:77:
3a:4e:df:f2:c7:68:1d:d0:c3:d3:39:4a:a9:7c:e6:ae:3b:8d:
ca:65:1a:d4:eb:61:84:93:75:af:66:8e:23:0e:84:ee:4b:99:
52:09:8b:fe:d1:3f:48:a6:e5:5b:b7:ed:c0:17:36:4f:30:bf:
6e:f7:17:2c:06:7c:5e:1b:c7:45:ab:b4:3a:d7:e5:fd:c7:c1:
7d:67:bc:c6:ee:30:bd:bf:90:25:47:a9:9f:f9:13:94:54:45:
ed:7f:8f:32:28:20:62:6a:f2:d3:f5:8c:3e:85:28:f6:86:26:
59:ff:70:69:e5:a2:11:91:53:74:55:ef:5f:49:81:ae:20:f4:
3a:f6:bd:6b:fe:ea:12:55:6a:09:bb:11:8e:3d:d4:e3:46:b1:
8d:3f:e8:7b:6e:4d:d4:06:4d:0a:0d:7c:a0:e2:08:30:9c:d6:
44:56:24:08:20:c1:09:d5:db:be:f6:27:d0:87:98:4d:42:62:
23:d8:69:09:87:04:3b:3e:31:0f:2b:fc:c3:19:b2:f6:ad:30:
b8:85:64:85:56:c7:8b:84:47:aa:e0:81:bb:65:c2:5a:90:b6:
8e:aa:5b:f4:8c:16:c3:19:04:ff:2c:33:9a:a9:bb:01:84:3f:
c9:7d:89:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:02 2024 by rpki-client on console-fra.rpki-client.org