Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/39322e3131392e38322e302f32342d3234203d3e20313336373837.roa
File: 39322e3131392e38322e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: uSwM378D5VX4HvNSKcC+kfuTqN5UibaHfdAUJAgkKqc=
Subject key identifier: 4E:31:CB:B3:A8:64:DF:2D:E9:D7:E0:50:65:E0:9A:A9:27:66:94:16
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 506D837922E18D26A4A4E55B6E37CED361EB3060
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/39322e3131392e38322e302f32342d3234203d3e20313336373837.roa
Signing time: Wed 07 Feb 2024 12:33:53 +0000
ROA not before: Wed 07 Feb 2024 12:28:53 +0000
ROA not after: Wed 05 Feb 2025 12:33:53 +0000
asID: 136787
IP address blocks: 92.119.82.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:6d:83:79:22:e1:8d:26:a4:a4:e5:5b:6e:37:ce:d3:61:eb:30:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Feb 7 12:28:53 2024 GMT
Not After : Feb 5 12:33:53 2025 GMT
Subject: CN=4E31CBB3A864DF2DE9D7E05065E09AA927669416
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:f5:9c:2f:2a:57:82:01:9e:c1:72:5c:37:61:
42:9c:33:b0:e7:0e:cb:4f:78:fe:9f:1a:26:5d:8d:
fc:94:39:08:88:e4:be:e1:4b:9c:5d:4e:ed:2c:7d:
ef:ad:1f:06:ab:17:57:a5:28:a1:49:41:4c:22:89:
26:06:a1:da:0c:2d:86:3e:21:69:cf:bd:b5:f8:2d:
c8:f2:94:12:54:0d:fc:c1:79:21:e2:bb:00:4e:a4:
b2:1a:4f:a5:f5:c9:cc:4e:36:89:7f:73:95:4a:ab:
21:ed:5c:6d:72:fb:2f:56:0b:2a:ff:a9:0e:48:a7:
c0:d4:57:e9:45:cd:19:aa:49:80:a6:3e:8c:f2:c7:
2f:62:45:2b:4e:08:97:02:21:ae:7e:ca:82:20:2c:
a0:b5:00:18:cc:06:0a:23:ff:5c:68:00:13:1e:0a:
44:0e:7e:2b:f3:85:65:20:f9:81:85:3a:78:9f:ab:
28:69:73:f4:2c:c3:7d:49:f2:e4:12:ab:07:1a:a6:
44:3a:74:18:0f:c3:dc:b1:82:50:42:f5:9b:d9:44:
74:57:32:10:04:2b:cf:8b:7c:d7:fb:c2:0b:a1:1f:
fb:72:19:29:bd:78:0b:80:49:03:ac:1a:c4:09:61:
d4:ac:0d:88:73:0f:2b:b7:8d:48:b4:14:1e:d7:e4:
ef:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:31:CB:B3:A8:64:DF:2D:E9:D7:E0:50:65:E0:9A:A9:27:66:94:16
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/39322e3131392e38322e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.119.82.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:3e:a3:4d:9f:9b:61:b2:41:95:e1:3b:67:4f:c4:e4:b4:49:
19:37:ed:0d:2d:da:fd:13:67:44:8e:c3:81:33:e8:3c:bc:ee:
ca:57:49:0a:29:34:42:ed:97:99:4a:f9:ce:b1:92:6e:44:27:
aa:a3:a3:7d:c5:a6:e1:63:76:38:06:86:6a:44:82:f9:1f:b8:
61:cf:cc:ca:1e:f7:27:82:1c:7b:30:08:a2:ce:18:c6:b0:7b:
66:33:61:56:2a:75:b7:48:5a:a1:a4:6f:c0:dd:c4:7f:ea:2f:
d6:5c:56:57:0a:63:e6:37:76:a3:0c:aa:d1:4b:2d:28:f8:a9:
30:69:36:80:b3:42:d0:1f:37:2c:cd:d9:d4:b8:be:a3:48:cc:
bd:fa:ce:64:53:bc:6b:18:c2:c9:b7:03:41:84:48:33:49:e3:
74:50:36:b4:66:66:a4:71:4f:ed:21:9d:30:7d:1f:09:27:42:
08:19:b9:33:b0:75:d4:74:72:25:11:83:cf:02:61:e7:51:c4:
a6:d6:67:b9:c7:af:c2:f1:a6:dd:82:5f:89:92:99:ac:8c:19:
40:ec:18:9e:ea:23:50:c3:16:8d:f4:69:fc:b3:47:2c:d9:93:
56:97:c2:fa:0e:db:e7:1c:76:ad:be:01:95:7e:b5:49:fc:c2:
d9:92:d3:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 11:32:57 2024 by rpki-client on console-ams.rpki-client.org