Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139342e35392e3136342e302f32332d3234203d3e203437353833.roa
File: 3139342e35392e3136342e302f32332d3234203d3e203437353833.roa (raw, json)
Hash identifier: BwdnVbxbebdktHDmzNaGkYbjzWoptSigKbQA+A87DgU=
Subject key identifier: C7:E3:33:60:20:60:5F:EA:20:F2:6D:62:FC:27:CF:DB:2B:0E:A0:AF
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 1A0D71D7DB68E0C5DA92AE7466BEF6E664CE6880
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139342e35392e3136342e302f32332d3234203d3e203437353833.roa
Signing time: Mon 26 Feb 2024 08:52:58 +0000
ROA not before: Mon 26 Feb 2024 08:47:58 +0000
ROA not after: Mon 24 Feb 2025 08:52:58 +0000
asID: 47583
IP address blocks: 194.59.164.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:0d:71:d7:db:68:e0:c5:da:92:ae:74:66:be:f6:e6:64:ce:68:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Feb 26 08:47:58 2024 GMT
Not After : Feb 24 08:52:58 2025 GMT
Subject: CN=C7E3336020605FEA20F26D62FC27CFDB2B0EA0AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:9e:73:53:45:c2:88:dd:ff:09:10:7b:cf:cf:
f4:e9:4a:d0:79:7d:2d:25:d5:14:92:8c:b7:cb:25:
f3:3e:f9:40:0d:a7:e5:f4:86:66:10:17:af:73:c6:
82:24:a1:fd:1f:3a:49:64:8a:56:b8:2d:e7:56:50:
21:f5:96:53:f8:7f:e0:05:98:ae:4a:cc:5e:f1:e7:
44:87:07:f8:e0:47:5c:2f:a8:ac:aa:67:ab:f3:11:
24:29:2e:bf:ab:51:c1:71:b9:ee:dc:57:73:47:af:
ab:e2:f0:6a:2d:47:08:6d:66:fc:a7:27:31:0b:3d:
18:5e:10:94:a5:26:86:50:41:7a:0a:50:fe:69:25:
5c:e6:e2:be:92:58:09:f9:f3:51:ad:7a:ab:a5:2a:
c0:10:9e:5e:46:9f:5d:75:3b:83:4d:38:b5:3d:40:
5a:97:94:72:e8:18:0d:bf:1c:69:ec:0a:8c:b5:d3:
73:76:40:38:e7:86:ce:54:29:2e:49:e3:13:dd:cf:
07:0d:96:7e:42:91:d3:08:f0:06:c2:65:56:c9:ef:
49:75:86:bf:29:fb:88:a8:64:ff:6d:fc:95:b7:3e:
37:46:2d:26:5b:67:85:60:56:2d:c6:ad:e4:72:03:
29:dd:24:ae:42:eb:19:1b:e5:22:3f:78:fc:9c:35:
00:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:E3:33:60:20:60:5F:EA:20:F2:6D:62:FC:27:CF:DB:2B:0E:A0:AF
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139342e35392e3136342e302f32332d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.59.164.0/23
Signature Algorithm: sha256WithRSAEncryption
18:b5:52:d4:1e:64:af:ac:8e:81:2b:b1:2d:d4:a1:79:4b:7e:
cd:b1:38:a2:af:16:db:84:4e:d0:a9:1f:8d:5f:a2:ed:f9:17:
ee:95:2a:20:bf:c3:1f:fe:18:3c:7c:40:94:fd:8f:2c:42:0d:
9c:3a:d4:0f:66:68:70:86:e7:3a:ac:a9:63:b7:9b:11:b4:99:
e4:ff:e2:43:62:3e:5c:7b:1c:f7:af:8d:06:1c:cc:ef:d7:44:
42:cf:97:13:bd:e2:c4:fd:6c:a2:8d:6a:01:92:88:6e:85:ef:
ef:8a:44:63:0a:6c:52:01:d7:70:01:40:ef:16:f1:0a:54:39:
dd:0b:cd:70:b7:64:76:6a:a8:22:24:55:6c:c4:1c:6d:81:16:
08:ec:c3:36:d9:21:85:37:23:ac:be:fd:de:54:f1:00:6c:99:
28:ff:8e:d7:c9:27:e2:ee:76:41:1f:b8:48:84:5b:a0:c4:46:
18:d1:70:98:ad:da:b8:2a:fa:5f:5e:24:f9:f6:df:f9:7b:52:
f0:29:4b:ac:c8:72:24:77:87:06:06:3a:f8:3b:97:dc:f4:32:
bf:8f:c7:01:0f:fe:26:82:9f:a8:d5:ce:8f:fc:2f:df:4a:c0:
3b:0d:b2:5e:f5:67:63:cc:b3:4d:d0:3c:65:15:9b:e2:ec:16:
9a:8a:d6:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:15:44 2024 by rpki-client on console-ams.rpki-client.org