Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/39322e3131392e38312e302f32342d3234203d3e20313336373837.roa
File: 39322e3131392e38312e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: mpFf5EWxIF75PPHXDukosmxplCzQUWxO+LEit5nl5bw=
Subject key identifier: 5A:29:1D:F1:A9:27:8C:4B:B5:36:34:4A:1F:45:24:91:BC:9C:21:71
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 24FFA657E241ABF3061019DDD7C748CF273D0C3D
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/39322e3131392e38312e302f32342d3234203d3e20313336373837.roa
Signing time: Wed 07 Feb 2024 12:33:52 +0000
ROA not before: Wed 07 Feb 2024 12:28:52 +0000
ROA not after: Wed 05 Feb 2025 12:33:52 +0000
asID: 136787
IP address blocks: 92.119.81.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 14:42:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:ff:a6:57:e2:41:ab:f3:06:10:19:dd:d7:c7:48:cf:27:3d:0c:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Feb 7 12:28:52 2024 GMT
Not After : Feb 5 12:33:52 2025 GMT
Subject: CN=5A291DF1A9278C4BB536344A1F452491BC9C2171
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:4f:03:38:51:32:c8:24:e1:dd:66:9b:e9:51:
9b:64:7f:2f:db:58:14:1f:bf:39:49:67:99:63:3f:
43:36:57:c7:8f:03:a7:27:ce:53:59:a7:9b:f9:c7:
d9:36:87:a5:4b:3f:42:7a:d4:9b:b7:24:25:57:97:
03:c5:46:f8:ed:90:fc:96:c8:bb:06:ca:a7:db:d7:
67:28:e0:9d:55:95:99:b2:83:4f:cc:a6:95:0b:4f:
30:b7:e7:32:ce:80:bd:6f:b1:64:fe:56:61:f8:a4:
b2:55:04:9e:21:d1:23:bf:92:04:1b:a0:25:04:81:
07:83:30:27:57:7e:fc:84:5b:9e:ea:25:ed:5c:e4:
7b:63:be:f8:af:f1:54:59:97:5f:44:40:bd:95:17:
05:de:a0:f8:ea:0a:1d:85:07:92:58:d3:dc:50:e6:
b7:ab:18:9a:43:f7:44:1e:1e:da:16:bf:df:f1:09:
d8:0e:52:f4:3b:4d:66:07:f1:36:d5:a3:f6:cb:72:
10:71:2b:33:03:31:dd:03:69:37:ff:51:51:6c:a2:
8a:a7:e0:72:d4:5c:3d:95:2f:4f:af:c2:2d:80:76:
49:83:93:13:8a:12:a4:bd:0a:91:a1:00:7f:9c:2c:
76:e5:5a:ca:72:19:e9:7a:54:5e:a0:e5:e0:5d:50:
08:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:29:1D:F1:A9:27:8C:4B:B5:36:34:4A:1F:45:24:91:BC:9C:21:71
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/39322e3131392e38312e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.119.81.0/24
Signature Algorithm: sha256WithRSAEncryption
58:62:0d:04:be:49:ce:40:c5:dc:d7:d8:ce:ce:2e:44:c2:4e:
f6:49:30:3b:0c:96:62:3c:ba:27:5a:5d:61:34:bb:57:cf:4c:
93:dc:d3:c9:f4:c4:c8:4c:46:b3:f7:e8:48:54:ee:a7:ac:7d:
9c:54:54:e1:e2:b8:7a:73:7e:51:2d:47:13:1a:a2:2e:69:0d:
82:2e:43:e2:1f:9a:4d:9c:7c:e2:fe:ed:fb:04:7a:27:d2:43:
32:ab:f1:dd:0b:4c:f6:f0:b5:0e:a9:1c:46:31:d3:f4:6a:f5:
44:c7:06:4a:b6:82:96:ea:4f:a1:b0:4f:e1:09:83:d4:05:40:
10:65:43:05:e1:1c:78:d6:c5:70:81:10:0f:66:af:a6:27:a2:
b0:71:14:ea:df:76:f0:89:86:b3:04:b1:5c:43:7b:49:93:27:
dd:74:b1:8f:8b:03:4c:ad:94:2d:6a:b1:82:b9:45:b1:9c:66:
61:1f:45:c3:c1:fc:26:ad:e1:ec:d2:27:5e:81:13:e7:e5:fb:
ca:eb:8b:b7:d5:21:a6:c8:2a:9c:ae:23:27:ad:84:68:ad:13:
1c:60:45:5c:00:df:69:7a:ee:eb:02:ea:ca:54:8f:bd:aa:db:
b1:20:73:af:f7:84:81:a9:a4:00:ec:85:b0:26:35:fe:d3:0b:
07:99:ac:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 16:44:10 2024 by rpki-client on console-fra.rpki-client.org