Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/39312e3231342e36342e302f32342d3234203d3e20313336373837.roa
File: 39312e3231342e36342e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: 2nc9YJXEBCWB5jM5oEAx1hHqn2aLH+TxAZd3g/mjdfY=
Subject key identifier: 41:30:B4:12:0C:C5:B9:30:D9:0F:A7:72:1D:B4:DF:E6:30:FF:9C:A0
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 057B0046E35B64BBB1955F71D7AFF12A4ECB62D9
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/39312e3231342e36342e302f32342d3234203d3e20313336373837.roa
Signing time: Mon 01 Apr 2024 14:03:19 +0000
ROA not before: Mon 01 Apr 2024 13:58:19 +0000
ROA not after: Mon 31 Mar 2025 14:03:19 +0000
asID: 136787
IP address blocks: 91.214.64.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 16:07:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:7b:00:46:e3:5b:64:bb:b1:95:5f:71:d7:af:f1:2a:4e:cb:62:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Apr 1 13:58:19 2024 GMT
Not After : Mar 31 14:03:19 2025 GMT
Subject: CN=4130B4120CC5B930D90FA7721DB4DFE630FF9CA0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:91:5b:c8:73:0e:97:07:13:f8:b0:4b:86:d6:
39:30:de:aa:9b:b0:32:4d:04:dd:6d:16:b0:71:00:
09:43:89:cc:c2:8c:af:3d:74:c8:32:2f:db:1e:5c:
79:64:54:70:2f:00:df:00:f0:e7:fd:d9:11:1c:bc:
73:0e:ec:32:5b:3c:1c:a9:d1:21:31:7a:03:9a:d2:
fc:50:8b:0f:d0:bc:60:7d:10:e6:12:66:be:1a:4d:
06:70:c7:b8:1b:9b:dd:ad:3f:63:4f:f5:fd:3e:ed:
a8:2b:16:63:55:d3:36:a2:f8:9b:58:47:06:14:12:
d1:87:20:ee:63:5b:d0:00:93:36:3f:0b:d9:49:2b:
eb:6d:b8:27:79:41:0e:d8:ef:9f:d3:e3:e1:b2:a4:
bf:3e:cd:26:7a:e6:e4:17:5d:d0:22:0d:94:5b:49:
3c:4a:bb:de:08:c8:19:9b:69:a6:6e:6d:5d:47:e4:
e9:3a:10:e7:e9:26:16:bc:a4:63:e5:2a:be:52:76:
69:74:21:ca:a8:59:bc:d1:e6:bc:09:1f:2d:a7:ef:
53:8b:df:78:44:5d:65:19:09:74:8b:0d:2b:95:14:
e9:a0:7a:67:92:ad:fb:d6:25:f6:7d:39:dc:98:28:
f6:96:b9:ea:39:af:1a:06:e4:98:7d:1d:40:c6:28:
37:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:30:B4:12:0C:C5:B9:30:D9:0F:A7:72:1D:B4:DF:E6:30:FF:9C:A0
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/39312e3231342e36342e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.214.64.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:c0:de:8b:f9:31:fe:c8:1a:d0:a6:46:5d:1d:c9:0e:0c:fe:
77:39:d6:d8:a0:9e:96:15:e2:1b:85:53:f6:21:50:d9:21:a5:
35:c1:9d:ae:fb:6b:cd:78:db:ea:40:0f:e3:44:f4:4c:17:c0:
19:18:bd:e6:e3:b9:68:cf:84:c4:59:61:2e:f3:fb:f6:ef:51:
dc:cd:17:e0:68:9a:3f:9c:a0:8a:ca:6a:38:95:d0:8b:c6:16:
e8:cd:94:a6:87:0e:d1:de:45:e4:10:24:5f:58:99:b9:55:90:
5c:04:2c:b7:e9:74:ac:3b:c9:a9:4b:c4:04:c3:40:2e:0a:69:
e2:95:67:a1:0c:1c:e8:17:3a:fe:7d:41:0f:58:74:bb:60:d8:
f7:82:b0:d8:87:32:79:c8:a2:56:24:f3:3f:48:6b:49:c4:96:
99:be:07:d2:10:b9:41:93:12:a4:fd:71:7f:79:12:d6:d5:31:
c2:a6:fe:6d:4e:e6:4a:76:3e:93:4b:20:23:dd:f3:1b:94:fb:
6d:c1:7d:b5:3d:a7:87:6b:22:fa:85:69:c6:91:35:f2:a0:db:
70:a3:58:fa:fb:c6:7c:e2:76:ff:1a:48:27:5f:e5:de:b4:fd:
1c:b0:83:4e:22:ae:44:e8:1c:33:40:7f:2f:f2:c0:9a:8a:45:
99:d5:d6:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 19:21:52 2024 by rpki-client on console-ams.rpki-client.org