Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139342e35392e3136362e302f32332d3234203d3e203437353833.roa
File: 3139342e35392e3136362e302f32332d3234203d3e203437353833.roa (raw, json)
Hash identifier: K5EZYLFc5iu5NpEGMy6UaAIRZMHfxFEbIwGrO7YqAeA=
Subject key identifier: DF:CD:84:F6:4A:E9:84:33:DA:65:C8:75:7D:98:84:FD:9E:21:51:CB
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 6D598EF90B724998A311025D064C7B45FA6E9963
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139342e35392e3136362e302f32332d3234203d3e203437353833.roa
Signing time: Mon 26 Feb 2024 08:52:56 +0000
ROA not before: Mon 26 Feb 2024 08:47:56 +0000
ROA not after: Mon 24 Feb 2025 08:52:56 +0000
asID: 47583
IP address blocks: 194.59.166.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:59:8e:f9:0b:72:49:98:a3:11:02:5d:06:4c:7b:45:fa:6e:99:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Feb 26 08:47:56 2024 GMT
Not After : Feb 24 08:52:56 2025 GMT
Subject: CN=DFCD84F64AE98433DA65C8757D9884FD9E2151CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:72:ca:b5:4c:c8:63:63:be:b6:74:3b:9b:94:
66:8b:3a:b1:52:98:6e:f6:a2:b5:ed:33:6e:a5:91:
b5:2d:58:99:01:94:9c:1a:93:da:ab:dc:74:cb:57:
b3:65:18:89:22:5b:88:42:76:34:cd:77:46:f1:cc:
ab:dd:43:08:50:4f:b8:09:63:cd:64:ea:ab:79:ec:
d5:16:f2:b0:4b:3d:2d:f0:b4:d4:4c:6a:d5:66:17:
38:90:e7:ed:ef:59:aa:22:f9:95:b7:6a:c9:59:8d:
ff:39:bf:2e:89:0e:4d:ca:e6:08:16:a6:7b:5b:9a:
0d:04:fc:6b:87:65:ff:55:f7:f0:50:25:4e:b4:df:
0f:ce:09:8a:7f:5c:77:e5:8a:cd:9d:85:86:6c:13:
ec:8c:c5:1f:ed:43:95:a1:a9:13:8b:b5:e2:d4:35:
09:6e:9a:e9:cb:5e:b5:1b:71:7b:ab:1a:61:12:80:
96:3c:a9:1c:97:60:98:ac:d5:72:a1:a2:d3:98:b5:
60:27:b2:e6:65:a0:19:69:f8:75:ef:51:aa:35:5c:
fa:8b:95:1c:60:b5:22:40:0f:38:4b:7f:0b:25:d3:
76:a4:a4:52:d9:b0:af:1d:01:c8:91:05:a9:90:94:
77:8b:41:10:89:cd:79:9b:7e:60:09:0a:c1:ac:ff:
bc:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:CD:84:F6:4A:E9:84:33:DA:65:C8:75:7D:98:84:FD:9E:21:51:CB
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139342e35392e3136362e302f32332d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.59.166.0/23
Signature Algorithm: sha256WithRSAEncryption
77:bf:c5:15:39:b2:7c:32:7b:01:ff:14:e1:93:12:31:c8:2c:
61:44:cb:77:ac:f0:15:21:a0:91:6c:05:65:fd:f8:0c:78:f2:
83:6e:7b:91:39:69:c8:73:79:c8:9e:ed:de:9d:ce:7f:d8:d4:
85:1c:7c:c4:b5:59:54:a3:36:63:e6:53:14:f8:3b:b4:9c:06:
ba:68:e3:c1:7a:0d:c8:50:eb:c4:9d:39:f3:e5:58:ee:dc:28:
31:6c:a4:cf:53:7d:ff:0b:1d:8b:2a:fb:5a:63:64:9b:11:d8:
50:d7:61:95:41:59:30:ec:54:d9:1f:7d:ac:11:1e:49:c3:f6:
28:ea:45:e4:eb:25:d6:87:89:76:a2:12:b4:90:91:20:06:d1:
13:4d:df:93:5f:c2:c0:2f:4a:9c:a3:96:ba:19:ad:89:1a:1f:
60:26:72:88:f8:62:0d:08:f1:12:40:1d:70:fa:b9:88:0c:c5:
b1:c4:f7:dc:53:c7:e1:86:78:23:f0:07:d1:02:dc:e9:99:ef:
93:40:8c:02:d0:a2:24:c9:cb:4e:a1:58:5e:35:1b:c0:6c:1c:
66:eb:c9:13:ac:5a:cb:3c:bf:c4:c3:0e:22:75:10:7d:b7:01:
5e:3f:d9:45:ba:1b:7e:15:7a:a6:2e:3c:c4:55:ea:f7:a9:b2:
92:66:00:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:35:21 2024 by rpki-client on console-ams.rpki-client.org