Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139342e3234322e35372e302f32342d3332203d3e203531313637.roa
File: 3139342e3234322e35372e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: sR9b95WpN4tvGXxXvtmEfzy2R+X4FCoZEuQQN0ZLvsw=
Subject key identifier: 94:32:4F:27:7B:35:01:F4:98:58:4F:F9:4D:FC:1D:F3:17:CE:CA:6F
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 6F971E0F993D7D2FB2C185DDFD69EEFA952012D8
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139342e3234322e35372e302f32342d3332203d3e203531313637.roa
Signing time: Mon 26 Feb 2024 08:52:46 +0000
ROA not before: Mon 26 Feb 2024 08:47:46 +0000
ROA not after: Mon 24 Feb 2025 08:52:46 +0000
asID: 51167
IP address blocks: 194.242.57.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 14 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:97:1e:0f:99:3d:7d:2f:b2:c1:85:dd:fd:69:ee:fa:95:20:12:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Feb 26 08:47:46 2024 GMT
Not After : Feb 24 08:52:46 2025 GMT
Subject: CN=94324F277B3501F498584FF94DFC1DF317CECA6F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:da:d4:4a:2a:b7:8f:fc:a9:e2:cb:78:fe:45:
bf:24:9a:96:40:7a:b2:24:8e:aa:84:dd:36:b5:8f:
ac:bf:3d:58:76:c4:7a:b9:73:38:70:e4:7b:19:8b:
f3:16:58:c8:a6:03:1b:b7:9f:51:29:6e:f0:b9:6a:
9e:b5:d8:37:c1:a6:89:27:de:9f:0b:36:2c:99:c1:
b6:78:4a:9c:05:2d:dc:9d:a9:90:78:d4:32:69:51:
5f:a8:a3:2f:98:53:c1:25:21:3a:65:e2:bd:d8:8e:
25:db:ff:92:d7:e6:68:aa:fd:27:9c:08:bc:be:da:
5d:1b:af:75:44:7d:46:a9:93:5d:5c:a6:42:af:2a:
ea:10:1b:fa:62:b3:b1:3e:a7:46:c7:4f:cb:b9:6d:
0b:1f:0f:49:9e:21:38:e4:ac:e2:a0:0b:e3:2d:eb:
aa:cd:d2:51:86:ee:f1:4f:41:b8:b0:7d:2a:5e:45:
f9:e9:0e:1b:77:98:e5:17:b2:8a:dd:b6:5a:cd:c6:
74:ea:68:a5:b6:21:a9:33:0d:ed:eb:8c:d6:7e:1d:
75:d6:67:b5:2b:ea:1c:1d:05:ff:cd:2b:ac:e3:31:
d1:bb:aa:a2:60:f3:fd:85:4b:a9:f3:73:f7:dd:23:
bb:ea:37:ea:54:33:b0:73:51:61:7d:7d:78:ce:c8:
a8:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:32:4F:27:7B:35:01:F4:98:58:4F:F9:4D:FC:1D:F3:17:CE:CA:6F
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139342e3234322e35372e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.242.57.0/24
Signature Algorithm: sha256WithRSAEncryption
09:75:99:d4:65:24:ea:f2:98:9d:6c:11:1a:ac:8f:04:96:e3:
3b:1e:dc:be:b2:6c:2e:b4:e1:42:d2:fe:a5:b2:9b:bf:35:82:
96:54:33:33:69:1d:95:73:4f:21:9a:f1:9e:08:9f:dd:93:bd:
43:bd:52:1b:ec:2b:ec:89:79:9a:e3:78:00:97:06:e9:bd:aa:
28:09:13:6a:55:c7:82:14:ec:2b:ac:03:db:02:8c:28:6e:52:
34:a3:5e:0a:38:9d:af:c0:65:c9:b8:63:ba:e7:0d:5d:09:01:
a1:70:d7:4c:85:9c:d1:0d:54:37:29:59:fa:56:b1:15:ad:df:
23:e0:a8:e5:9d:57:d7:fc:08:78:0e:34:6e:81:64:52:11:ef:
33:4a:ca:06:f6:91:96:da:49:67:f6:5b:1c:ab:4b:30:27:17:
9c:2d:1a:ab:ea:75:d7:af:57:bb:35:29:40:84:7a:3f:e9:bc:
5b:3f:b9:0d:78:d8:58:d4:51:73:49:36:8f:b1:94:a4:26:83:
72:8a:e9:6b:58:15:e1:94:c7:00:d4:33:80:f9:81:9c:8b:be:
2a:58:89:8d:91:08:33:29:87:db:aa:cd:fa:35:df:0a:3c:f2:
a7:b5:66:02:97:63:84:50:e0:42:5a:d9:be:13:ce:70:6f:89:
2c:75:f7:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 13 08:54:18 2024 by rpki-client on console-ams.rpki-client.org