Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3137362e3131392e3139352e302f32342d3234203d3e20323034313730.roa
File: 3137362e3131392e3139352e302f32342d3234203d3e20323034313730.roa (raw, json)
Hash identifier: 8+WypqOl1huSPuGCodKxVUKzw2N9SERgD60HvhjUvCY=
Subject key identifier: 39:19:90:88:83:9F:CB:E7:BE:29:74:5A:27:7E:25:79:40:19:37:F9
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 79A86478CBAB934A33EAE0FCD32D1ED8DD741A79
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3137362e3131392e3139352e302f32342d3234203d3e20323034313730.roa
Signing time: Tue 25 Jun 2024 21:47:13 +0000
ROA not before: Tue 25 Jun 2024 21:42:13 +0000
ROA not after: Tue 24 Jun 2025 21:47:13 +0000
asID: 204170
IP address blocks: 176.119.195.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:a8:64:78:cb:ab:93:4a:33:ea:e0:fc:d3:2d:1e:d8:dd:74:1a:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jun 25 21:42:13 2024 GMT
Not After : Jun 24 21:47:13 2025 GMT
Subject: CN=39199088839FCBE7BE29745A277E2579401937F9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:0d:e4:4b:ee:f8:42:76:c5:1b:ea:26:80:96:
f1:07:40:b9:7c:3a:0f:c0:60:63:9b:7d:27:28:c2:
e7:a8:a9:6b:14:0c:c1:b4:f4:10:97:a4:eb:f1:0b:
61:e1:20:f2:b9:c8:56:25:3a:e3:d9:41:2f:80:d1:
66:fe:c4:33:86:c7:6f:2a:87:dc:38:ae:bc:88:27:
cf:90:62:29:49:08:c3:a3:36:c9:57:bb:9c:bf:9c:
3d:7a:06:15:f9:99:02:9e:af:e0:6c:71:62:32:b4:
e5:1f:d6:3d:1e:70:4a:90:d9:37:49:c4:dd:9a:e0:
fb:3e:92:19:24:cd:54:10:4b:f8:fc:cb:85:d0:24:
e5:c4:9e:fc:94:e8:1b:c1:ea:9a:0d:86:cf:a4:28:
9d:8f:b0:04:d9:ba:59:7b:a5:66:45:1f:30:e4:64:
b9:fc:51:52:77:ec:32:ff:60:09:f5:88:e0:77:76:
d8:1f:15:4c:b5:79:70:7e:ef:31:4a:4c:ca:23:90:
64:69:c1:cf:6a:a1:2a:de:a9:87:ad:e9:70:36:ef:
8e:92:f2:f6:34:fa:76:75:ea:1f:aa:2e:0f:42:68:
14:15:6d:ba:c3:e7:97:2e:65:28:19:eb:ea:15:ce:
5b:05:ca:16:c4:68:9c:05:96:5e:16:bc:bb:c7:b1:
e3:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:19:90:88:83:9F:CB:E7:BE:29:74:5A:27:7E:25:79:40:19:37:F9
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3137362e3131392e3139352e302f32342d3234203d3e20323034313730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.119.195.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:a1:42:db:d4:70:c3:89:2f:db:83:6b:61:8e:d5:95:be:dc:
03:c6:11:11:b2:7c:27:04:b6:06:e5:58:d4:37:11:38:68:7c:
a1:eb:6a:03:e0:93:d0:28:fe:b4:6a:50:ab:8d:de:04:19:9a:
e8:f4:33:ae:60:8e:a3:41:9c:46:df:42:c2:ba:f4:ec:55:b6:
61:33:93:6e:e2:8b:cb:53:53:b5:e8:da:48:97:9a:e6:1f:a2:
6b:28:9a:70:f6:44:58:35:c6:ff:cf:43:34:77:11:3e:70:00:
1c:82:5d:8e:ea:3c:c0:32:b8:65:84:1c:0d:d1:5e:f5:ef:62:
d6:76:d8:d8:be:fe:29:d7:8a:05:46:95:4e:cc:01:d3:24:9d:
ee:cd:eb:85:61:85:a9:e4:d9:3c:ae:70:f9:6c:f0:20:4e:24:
c7:5f:58:dd:6e:94:d2:ba:86:42:15:be:75:62:e1:96:76:57:
35:11:08:0f:a0:81:c7:c8:44:32:a2:2f:d7:41:c6:d4:a3:f4:
db:15:0f:89:c4:65:d6:84:f1:05:12:f0:b2:b2:54:3d:d8:81:
cc:42:61:7e:8b:6b:33:7a:b5:eb:7a:38:fb:de:17:ae:0b:2a:
53:d3:58:63:74:25:c6:d6:ac:92:b7:cb:bf:d8:a7:11:05:f1:
81:a2:82:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 03:42:55 2024 by rpki-client on console-fra.rpki-client.org