Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3139352e36342e39392e302f32342d3234203d3e20313336373837.roa
File: 3139352e36342e39392e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: scpmLooRMBkW2O3qIOOlZixeHbPIqv1y/8WM2CRvvLM=
Subject key identifier: 76:C8:EC:24:2A:44:22:B9:39:DA:0C:25:C4:28:59:C3:54:B8:9A:D0
Certificate issuer: /CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Certificate serial: 5AD5E9778B5C685A77E4725AF9D57270B8A73745
Authority key identifier: B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3139352e36342e39392e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 22 Mar 2024 19:38:05 +0000
ROA not before: Fri 22 Mar 2024 19:33:05 +0000
ROA not after: Fri 21 Mar 2025 19:38:05 +0000
asID: 136787
IP address blocks: 195.64.99.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.mft
rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:d5:e9:77:8b:5c:68:5a:77:e4:72:5a:f9:d5:72:70:b8:a7:37:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Validity
Not Before: Mar 22 19:33:05 2024 GMT
Not After : Mar 21 19:38:05 2025 GMT
Subject: CN=76C8EC242A4422B939DA0C25C42859C354B89AD0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:36:7e:0f:19:f6:4b:08:72:76:1e:f9:6d:9a:
bf:85:d4:1d:12:96:ba:b2:de:ca:56:6f:2d:94:62:
f2:e4:a0:b8:90:f1:9b:44:f9:2e:6e:d2:70:ed:8f:
1f:74:65:e9:9a:3a:20:b5:5d:95:c3:5f:2d:e3:85:
44:c2:51:20:c1:b9:f0:32:de:22:e2:5a:95:93:9a:
19:c1:63:19:4a:63:7b:c4:0c:bb:33:26:9c:cb:93:
f2:1f:0d:d5:58:00:2f:07:ec:08:d1:28:d4:c5:c4:
a4:b3:2a:ac:06:8c:17:b0:39:4d:d9:3e:0a:17:ec:
fa:24:4f:75:3a:8f:66:85:68:af:d6:9a:5f:ca:88:
50:e7:05:59:4c:e3:ae:f8:ee:84:61:86:6c:cb:4a:
0d:e7:f0:38:be:22:3b:0a:4b:ea:d2:47:44:e3:e9:
29:9d:40:bb:ab:0b:82:d8:4c:99:0b:4f:fd:1e:92:
c8:8b:99:0b:60:5c:f1:e9:a1:1d:72:e2:47:75:a0:
45:c5:b9:51:25:6c:e0:6e:cf:3b:16:f1:2a:fa:cc:
e3:94:e8:74:db:3c:e6:c4:c9:da:46:1f:b9:12:45:
b9:26:f7:b6:05:28:89:58:07:2f:39:0b:20:77:8c:
25:cf:ea:16:2f:e4:31:88:fb:d9:9a:83:32:ac:2e:
6e:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:C8:EC:24:2A:44:22:B9:39:DA:0C:25:C4:28:59:C3:54:B8:9A:D0
X509v3 Authority Key Identifier:
keyid:B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3139352e36342e39392e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.64.99.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:b9:7a:c4:38:90:e2:46:9f:8e:56:9b:17:54:8a:72:9d:66:
18:b0:b4:bd:cc:7c:bd:b6:c3:d2:75:72:e6:e9:ad:5c:a6:81:
9a:b2:6a:44:53:65:a6:10:7d:e3:16:f4:30:83:52:f2:ad:59:
97:a9:52:cb:d5:e1:5c:33:26:05:bd:e2:58:33:37:d0:48:89:
38:75:da:9e:d0:7a:52:3c:6c:4c:12:c8:44:b8:38:a1:3e:15:
bc:da:58:76:ff:31:39:41:cf:6c:c7:89:1d:2e:6f:70:02:81:
b8:5f:16:09:52:1a:fa:62:73:3e:ca:55:52:35:08:2a:f0:1a:
06:9b:09:41:2f:f8:ad:dd:1f:80:88:3e:62:a8:d2:23:6f:29:
68:5e:49:b6:77:f8:67:d7:71:a0:de:ce:40:38:04:0b:a5:e2:
db:48:ee:b1:4e:da:53:24:5a:43:61:88:15:00:d2:c6:ee:8e:
67:a0:33:e7:75:68:f8:92:fc:b4:22:6f:47:d5:e4:2b:3a:21:
07:90:e2:d5:8a:68:65:37:39:df:6e:df:2d:6e:71:9d:9d:ae:
67:9a:39:f1:87:18:95:33:68:6f:26:cb:de:55:b9:b9:cf:2e:
80:25:da:60:1e:38:69:45:22:d0:0b:5b:70:27:7b:12:75:0f:
76:34:41:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 01:46:59 2024 by rpki-client on console-fra.rpki-client.org