Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139342e3134372e35382e302f32342d3332203d3e203531313637.roa
File: 3139342e3134372e35382e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: dF7Trn9VyHR1guV5TXZhE6wuwlyRT835XOdWIWDwNVs=
Subject key identifier: 0A:73:E7:EF:9C:7C:07:E6:E8:B5:CE:6C:1A:93:D7:69:3A:8F:8E:16
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 3F265A878477C27057D3EBD267FE9519115F6BCF
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139342e3134372e35382e302f32342d3332203d3e203531313637.roa
Signing time: Mon 26 Feb 2024 08:52:52 +0000
ROA not before: Mon 26 Feb 2024 08:47:52 +0000
ROA not after: Mon 24 Feb 2025 08:52:52 +0000
asID: 51167
IP address blocks: 194.147.58.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 14:42:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:26:5a:87:84:77:c2:70:57:d3:eb:d2:67:fe:95:19:11:5f:6b:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Feb 26 08:47:52 2024 GMT
Not After : Feb 24 08:52:52 2025 GMT
Subject: CN=0A73E7EF9C7C07E6E8B5CE6C1A93D7693A8F8E16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:58:36:61:69:46:8e:05:30:42:5f:2d:5b:5d:
12:ee:47:ae:30:6e:3f:5e:5a:22:8c:96:da:0c:01:
8b:a0:f9:53:e2:ca:88:cd:85:b7:8d:59:8f:38:41:
ee:88:3f:8f:1e:7e:53:a1:9b:5e:6d:e3:36:21:4e:
ae:34:eb:70:6d:5c:33:fd:cb:a1:07:e1:10:5a:b3:
5a:5f:70:e0:bb:f5:33:3f:62:48:24:54:15:2e:30:
26:e5:eb:8b:0d:93:fb:db:56:07:9b:f4:80:52:df:
71:9d:2d:2d:37:b4:19:ba:a5:54:50:52:ea:23:a7:
d2:b3:7c:ae:29:0b:5a:3e:2f:55:de:b0:8f:8f:3f:
72:41:ac:0a:39:19:b5:11:b3:6b:a0:0a:ad:e9:28:
ee:2b:ca:4b:84:85:b5:eb:83:a8:1c:a5:d2:d1:7c:
49:bd:bb:8d:e4:99:af:ad:44:ba:a1:91:bc:36:dc:
a3:c5:b3:17:a7:e9:5b:88:37:b5:dc:57:47:ea:29:
fe:59:3f:4c:8c:05:fa:2b:68:89:09:1e:09:19:02:
dc:9b:3a:ce:fc:8f:bf:6f:53:d9:93:d4:a3:60:58:
9f:8e:80:32:72:ae:dd:55:89:42:d8:2b:35:8e:cb:
58:82:83:a6:9e:07:d5:3f:7c:cd:7e:c8:1a:a6:02:
4e:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:73:E7:EF:9C:7C:07:E6:E8:B5:CE:6C:1A:93:D7:69:3A:8F:8E:16
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139342e3134372e35382e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.147.58.0/24
Signature Algorithm: sha256WithRSAEncryption
14:41:74:6e:ec:c7:bd:6b:f0:6a:2a:b5:01:70:a9:9c:6c:01:
a0:59:4d:34:2b:44:3c:17:cb:5c:4f:f6:2a:4b:5f:49:4f:79:
04:d6:42:e6:68:d4:5a:81:04:35:6c:56:f4:56:30:e1:36:fb:
34:60:0c:77:03:bf:85:3b:65:32:0c:0d:18:ef:db:f0:23:a1:
c5:22:73:6f:0c:c3:b2:04:d2:4a:1b:0f:dd:9b:4a:9c:47:64:
80:2a:d7:7b:09:9a:4b:2c:10:8a:c8:de:1f:d9:df:14:5b:56:
61:4a:a6:3e:16:b1:d6:01:a2:81:65:df:b6:99:75:52:e4:2d:
19:da:4a:09:7a:b6:a0:76:8b:12:6d:7d:8e:82:fc:45:96:f0:
89:d2:41:3b:fb:99:31:4c:90:52:b8:6a:57:4f:14:ea:6f:b2:
7d:db:05:b9:fa:18:6e:3a:46:cf:81:6e:11:22:54:d4:aa:0a:
25:16:aa:c3:fe:b4:b3:c0:93:30:4a:30:7f:da:cb:db:30:57:
0a:70:f7:7f:99:34:52:d8:4a:be:49:3d:9f:64:51:b2:94:f7:
03:7b:4c:b7:3d:bc:8f:d7:2b:3d:d2:28:f0:e9:6f:a5:c7:24:
62:41:52:fb:f3:47:39:73:8c:0d:80:bf:d0:7b:bf:86:8b:24:
b9:fb:83:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 16:44:10 2024 by rpki-client on console-fra.rpki-client.org