Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139342e3134372e35392e302f32342d3234203d3e20323039383534.roa
File: 3139342e3134372e35392e302f32342d3234203d3e20323039383534.roa (raw, json)
Hash identifier: dwtIwby1a5UMEReE4uKbcL0SCrDffq/235thjU0Lr+M=
Subject key identifier: E6:A0:C1:20:54:6B:BE:9C:37:37:D4:4C:43:20:39:AC:DB:99:36:00
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 171676EBE4F9312920083259910E536C6A4681D9
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139342e3134372e35392e302f32342d3234203d3e20323039383534.roa
Signing time: Wed 20 Mar 2024 08:22:09 +0000
ROA not before: Wed 20 Mar 2024 08:17:09 +0000
ROA not after: Wed 19 Mar 2025 08:22:09 +0000
asID: 209854
IP address blocks: 194.147.59.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:16:76:eb:e4:f9:31:29:20:08:32:59:91:0e:53:6c:6a:46:81:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Mar 20 08:17:09 2024 GMT
Not After : Mar 19 08:22:09 2025 GMT
Subject: CN=E6A0C120546BBE9C3737D44C432039ACDB993600
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:1c:e2:6d:1d:86:73:60:f0:c3:84:f9:20:b5:
06:23:99:69:f7:c9:a9:c3:72:6d:44:16:5e:a3:b7:
6f:00:59:a9:f6:ee:2a:1a:60:69:5c:c9:3a:3f:37:
82:8c:28:d3:c8:0f:34:71:9c:15:64:06:00:96:35:
bb:e7:b7:db:d0:f4:eb:dd:cc:9e:82:33:ae:46:8e:
c0:f1:ca:61:8c:f3:a8:70:40:fd:64:47:5f:46:37:
ee:47:cd:3a:6a:f8:4d:fa:60:76:b1:cb:7b:6b:31:
70:65:48:04:0e:2e:72:d7:19:88:c1:4a:09:39:fe:
13:52:44:e7:c6:46:e3:d0:ca:2f:1c:95:74:17:8a:
61:02:05:3c:b2:61:16:56:18:ea:8c:9b:b9:9b:0d:
db:c4:e2:10:e5:ee:6a:c4:8e:80:b2:ca:5d:f3:fc:
33:c5:42:6e:43:07:14:14:96:f7:ef:ce:50:39:d3:
e3:4a:a3:84:d3:a4:22:a4:c9:a1:d1:06:6b:53:d5:
e7:4d:28:13:92:33:d5:11:b4:a7:26:aa:3b:74:66:
8e:4b:49:a1:3b:a5:2e:7a:d3:3d:f9:01:2b:f7:e4:
6f:b2:93:23:17:e1:b7:c5:65:33:0c:c4:62:bd:cf:
aa:8c:9d:be:e6:64:7c:ee:c9:cb:c8:6e:0e:26:aa:
97:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:A0:C1:20:54:6B:BE:9C:37:37:D4:4C:43:20:39:AC:DB:99:36:00
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139342e3134372e35392e302f32342d3234203d3e20323039383534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.147.59.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:07:8a:ba:a7:8d:62:ce:be:8b:15:42:eb:77:35:a0:ea:d5:
b2:67:56:4d:14:57:3d:15:66:3e:2f:a3:7f:e4:c8:99:a7:09:
0e:0e:03:51:fa:27:4f:13:30:26:4a:db:80:b3:e3:d0:f8:67:
84:c4:4e:c7:df:8e:9d:19:a4:9d:09:28:76:12:47:27:da:d0:
7c:08:de:8d:8e:e5:78:7d:45:c5:3b:9e:2e:ce:37:6f:ff:36:
b6:f0:53:5f:e1:42:a1:0d:78:14:c7:ea:b2:28:62:c9:be:33:
93:da:b1:38:d1:33:dd:57:67:32:19:95:fc:de:2a:9f:6d:4e:
03:a0:68:0b:67:e4:87:f3:57:f6:c6:ca:3a:f8:90:4b:42:78:
7c:14:29:21:d4:1e:af:41:32:b1:6a:91:97:d5:f7:73:fc:49:
94:54:5b:e0:81:52:00:88:b2:2f:c7:8f:69:14:bd:8b:df:17:
42:65:ea:15:7b:ce:1a:e2:64:25:79:8c:7b:ea:e4:25:72:fb:
b3:d7:54:87:c0:ef:c7:48:cc:32:31:0b:da:27:e6:b0:fd:22:
9b:ba:6d:bd:d4:39:25:cc:ed:84:3c:b5:54:42:17:2a:62:db:
5e:d8:37:ba:18:b4:91:da:89:61:42:9e:21:ed:55:cc:06:64:
ef:35:c4:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 20:21:24 2024 by rpki-client on console-fra.rpki-client.org