Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139332e3230332e3138382e302f32322d3234203d3e203437353833.roa
File: 3139332e3230332e3138382e302f32322d3234203d3e203437353833.roa (raw, json)
Hash identifier: kMbYAFemIrR4eihKj9sqziJcR69afb4GlvFcI8skF1Q=
Subject key identifier: FA:60:60:84:F9:DD:6A:A8:E8:A1:1A:DB:D4:21:8F:19:E7:BB:C7:79
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 54FE273D00BCB91C03233B30CF0C80D397493754
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139332e3230332e3138382e302f32322d3234203d3e203437353833.roa
Signing time: Fri 16 Aug 2024 08:04:39 +0000
ROA not before: Fri 16 Aug 2024 07:59:39 +0000
ROA not after: Fri 15 Aug 2025 08:04:39 +0000
asID: 47583
IP address blocks: 193.203.188.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:fe:27:3d:00:bc:b9:1c:03:23:3b:30:cf:0c:80:d3:97:49:37:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Aug 16 07:59:39 2024 GMT
Not After : Aug 15 08:04:39 2025 GMT
Subject: CN=FA606084F9DD6AA8E8A11ADBD4218F19E7BBC779
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c2:86:fa:29:88:60:4c:de:d7:db:39:a4:5b:
78:66:be:e1:ad:d5:e4:54:e7:63:2a:b7:09:0b:28:
08:e3:a4:8b:3f:b3:6e:c3:36:5a:27:cb:e4:52:08:
58:35:8b:46:a3:69:ce:91:43:1e:94:96:c0:1c:f0:
0c:3e:ae:ab:ec:65:79:7f:91:2b:e6:8c:2a:ee:89:
b9:df:e5:c3:c0:e0:9b:19:c2:7a:34:ec:ee:32:bb:
d2:e1:a9:e5:c4:48:53:26:ea:9b:44:4f:d3:53:3b:
d7:13:c1:52:17:15:fb:79:45:71:98:e7:55:ec:a2:
f5:ed:e0:53:10:37:2c:a0:13:fd:4b:bc:2a:c1:01:
82:58:f9:d8:2e:7e:c9:09:32:8b:23:4a:2d:2e:69:
ce:2d:3c:bc:24:4b:60:30:83:01:9d:c1:2e:c4:2b:
70:a5:ee:cf:9d:a3:59:cb:8e:ed:00:8d:de:e0:78:
a1:de:8a:6a:93:69:f5:89:53:db:b5:98:73:d0:36:
49:e0:23:75:f1:59:6d:a8:aa:66:a6:21:44:df:5b:
61:63:2c:31:27:c7:c9:be:02:1b:00:0f:cd:20:25:
9f:d5:ed:3c:e4:66:72:5c:3a:f0:ff:49:db:2b:49:
2d:eb:f9:26:f2:1b:8e:97:fd:f9:71:a4:ee:db:c9:
27:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:60:60:84:F9:DD:6A:A8:E8:A1:1A:DB:D4:21:8F:19:E7:BB:C7:79
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139332e3230332e3138382e302f32322d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.203.188.0/22
Signature Algorithm: sha256WithRSAEncryption
1e:d7:22:30:40:ac:bd:f3:c6:6d:4f:d4:ef:46:e4:dc:59:72:
4d:ea:9b:cb:c3:f0:74:f3:2c:5f:ad:7b:1a:ee:ad:a1:d8:06:
6b:53:e7:4c:5f:97:b4:84:d1:8c:09:14:32:df:77:cd:29:ca:
63:3d:77:bc:9b:9d:d9:20:b6:37:f1:2a:13:ee:f7:c7:f7:3b:
95:b4:71:8a:29:5d:f9:65:4e:94:f4:fd:79:34:28:50:02:79:
40:a5:87:99:32:b1:87:91:dd:67:1c:df:52:2b:d5:ac:7a:93:
e9:f7:67:3c:d7:47:fe:aa:3c:80:94:c7:25:ed:d0:34:e7:0b:
10:36:a9:cb:6d:8c:6e:5a:35:6a:73:9a:10:1b:34:c4:fb:a7:
2c:32:b1:df:e0:2b:0e:b3:86:00:a2:1c:69:db:a8:4d:15:38:
6b:ff:09:9e:eb:c8:c5:0f:e8:cc:14:04:77:fd:ed:c9:47:6b:
58:a0:69:46:33:b8:70:73:55:4f:ce:80:4e:ce:be:30:22:e0:
21:01:35:35:6a:cf:7d:87:f2:2a:c5:b4:66:10:ff:cc:82:3f:
92:b5:96:b2:a2:89:a4:e4:3b:95:fc:fe:55:6f:4a:2d:47:1b:
2d:6a:48:15:24:66:9c:71:ca:d0:c4:4b:46:10:73:a4:93:28:
75:bb:c1:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 18:06:15 2024 by rpki-client on console-fra.rpki-client.org