Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139332e3230332e3138382e302f32322d3234203d3e203437353833.roa
File: 3139332e3230332e3138382e302f32322d3234203d3e203437353833.roa (raw, json)
Hash identifier: V89FxkWmWmvY45PqKdB8hS6yZJ9KnL5h5Jfk7vwMQd4=
Subject key identifier: C7:84:C9:C2:43:8A:44:C1:C6:77:14:3C:9A:70:08:4B:30:52:53:43
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 7511591B4352BB3E3FF9139F1B7F3073E83953F6
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139332e3230332e3138382e302f32322d3234203d3e203437353833.roa
Signing time: Fri 15 Sep 2023 07:08:40 +0000
ROA not before: Fri 15 Sep 2023 07:03:40 +0000
ROA not after: Fri 13 Sep 2024 07:08:40 +0000
asID: 47583
IP address blocks: 193.203.188.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 May 2024 02:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:11:59:1b:43:52:bb:3e:3f:f9:13:9f:1b:7f:30:73:e8:39:53:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Sep 15 07:03:40 2023 GMT
Not After : Sep 13 07:08:40 2024 GMT
Subject: CN=C784C9C2438A44C1C677143C9A70084B30525343
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:b7:a8:b7:11:91:e0:ab:93:15:b7:94:0d:d1:
75:b8:0e:09:97:71:b4:f9:72:b9:6c:9a:de:e0:30:
fa:3e:6f:a2:be:db:0f:29:80:2a:9e:e2:96:fb:c9:
5e:cd:3d:c2:fa:4a:8c:e4:29:d3:bd:a1:ac:16:2b:
58:5a:a2:d4:77:f2:db:cf:06:14:27:1f:a4:db:1e:
02:34:97:57:67:64:1f:ee:0f:02:27:52:7e:81:e8:
82:04:a9:9b:9f:4a:1f:a9:c5:74:f3:9d:03:29:64:
1b:60:9b:0d:26:44:93:e1:3c:ee:f1:c5:a2:d4:4c:
e7:a1:fd:d8:6e:9b:02:c5:4b:7c:4f:ef:44:d6:e5:
62:98:bf:1d:af:67:20:91:53:52:f7:16:82:cd:b1:
c6:aa:47:5f:6a:06:b0:4c:7c:a5:22:68:b4:de:b3:
93:8f:6a:aa:f7:9f:5f:30:be:93:64:b1:48:09:59:
04:50:70:bf:bb:da:7b:df:5b:ee:65:bc:f1:f8:1a:
19:e3:05:35:2c:eb:4f:ca:ce:c9:5c:f1:54:2f:cf:
8a:fb:09:4b:a9:f8:77:4b:e9:ea:e2:72:e0:e6:41:
36:c6:ed:ff:33:4b:4d:98:55:f6:e9:2a:61:7c:84:
76:c9:6c:1e:0d:a6:f3:54:28:36:98:63:ce:c8:8a:
ce:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:84:C9:C2:43:8A:44:C1:C6:77:14:3C:9A:70:08:4B:30:52:53:43
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139332e3230332e3138382e302f32322d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.203.188.0/22
Signature Algorithm: sha256WithRSAEncryption
7a:19:d4:e6:7e:b0:d8:31:ac:46:0b:e2:9f:3b:85:e2:dd:57:
98:46:c7:42:8e:76:f1:11:f5:f6:16:74:cf:93:2d:2f:69:f5:
47:22:0d:eb:05:79:31:5e:65:85:53:5d:af:c9:ad:7f:3d:28:
01:a8:38:e9:95:e0:21:b7:12:04:4f:46:6a:03:8c:da:b8:c4:
e6:96:d4:dd:0c:62:37:c5:1a:b0:bb:9c:08:38:80:a4:a2:42:
49:0b:2e:67:37:ff:9a:46:c5:8d:cf:fb:d3:f4:4c:23:5d:17:
d7:5c:c6:e5:b3:c1:f2:15:0c:0c:7a:5b:fd:ec:f5:66:82:f5:
86:7b:4d:9c:83:4c:39:ba:aa:d9:17:fd:21:f6:a3:c2:4c:f2:
e3:9f:28:64:61:f4:98:cd:31:cf:62:ef:0a:bd:e9:d1:7d:62:
2e:c5:bf:23:22:c4:e0:12:fa:f8:fd:bf:45:64:89:74:4a:90:
e9:a9:2f:e2:e3:19:ce:41:4d:82:fb:51:15:85:62:9f:16:c4:
55:8c:71:eb:96:03:db:56:45:17:46:82:77:87:15:ba:90:98:
af:47:9e:18:be:84:64:8e:f9:e9:ed:1f:1b:9f:fb:36:e4:5c:
b1:56:14:00:94:2c:99:fc:a3:df:5d:d9:da:47:ab:64:7b:2c:
57:f9:56:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 09:23:50 2024 by rpki-client on console-ams.rpki-client.org