Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e3136302e36342e302f32332d3234203d3e203437353833.roa
File: 3139332e3136302e36342e302f32332d3234203d3e203437353833.roa (raw, json)
Hash identifier: S4+iym8+cgliQWYf2c8czQOlmFVBOCtNqd2JmP7hbyM=
Subject key identifier: 96:B9:51:F8:58:AC:34:85:14:D2:16:FB:6A:57:26:FF:CF:FE:82:3E
Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Certificate serial: 6FD2FD83330CBC279ACAAFF92436703E50B50AA6
Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e3136302e36342e302f32332d3234203d3e203437353833.roa
Signing time: Mon 26 Feb 2024 08:52:43 +0000
ROA not before: Mon 26 Feb 2024 08:47:43 +0000
ROA not after: Mon 24 Feb 2025 08:52:43 +0000
asID: 47583
IP address blocks: 193.160.64.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:d2:fd:83:33:0c:bc:27:9a:ca:af:f9:24:36:70:3e:50:b5:0a:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Validity
Not Before: Feb 26 08:47:43 2024 GMT
Not After : Feb 24 08:52:43 2025 GMT
Subject: CN=96B951F858AC348514D216FB6A5726FFCFFE823E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:23:52:04:fe:1f:20:d3:41:f9:41:0c:1c:80:
65:25:12:d7:bb:48:6d:73:94:16:5e:d7:ef:98:6a:
02:d0:24:db:65:9b:a4:71:a2:d4:31:02:38:f0:a3:
d1:71:9f:d5:1f:96:cc:8b:27:10:b5:5b:01:72:18:
ae:e4:79:b2:24:6c:b6:54:f4:01:78:79:51:73:9c:
bf:52:7f:d9:7a:c4:64:e0:1b:2f:e5:05:f2:99:a3:
22:8f:cf:0a:e5:f3:72:56:99:6a:6a:89:38:b6:b3:
9e:0f:ea:b8:4c:99:36:04:84:76:00:d8:61:38:77:
19:89:ac:3c:75:3c:c4:29:5e:ff:f7:5e:6a:ce:b7:
b7:d8:44:40:11:22:49:01:be:29:58:ea:81:4a:f3:
8e:36:a1:21:2d:7a:ee:fc:e9:f9:e8:a4:23:b8:d5:
42:7e:20:ec:a4:d4:14:1d:5d:5f:e7:8b:35:8f:0a:
c1:8f:55:f5:0b:5e:b4:27:ce:71:4d:b3:c7:4e:be:
b3:74:83:2c:b6:04:9e:e0:50:92:7d:0f:94:fc:2a:
96:be:b4:ca:66:24:dd:9d:f5:1b:73:ca:24:98:36:
93:97:70:d3:04:89:7f:a2:bb:40:a4:e6:ed:0a:32:
dd:4a:81:7d:d8:9f:69:ca:b6:64:19:7e:28:72:c1:
25:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:B9:51:F8:58:AC:34:85:14:D2:16:FB:6A:57:26:FF:CF:FE:82:3E
X509v3 Authority Key Identifier:
keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e3136302e36342e302f32332d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.160.64.0/23
Signature Algorithm: sha256WithRSAEncryption
7b:fd:d1:3d:fc:0d:13:21:01:b4:f1:2a:f4:55:bd:51:8a:8b:
f0:9a:90:bb:33:95:e9:a0:53:2e:2e:f6:ef:ef:e4:c8:21:f2:
4d:9f:9a:f5:b6:14:ed:4f:61:7c:b8:41:6c:d7:3e:b5:79:35:
09:eb:22:23:56:73:6b:13:38:25:d3:32:52:ec:92:c4:dd:35:
58:8e:70:ec:d5:a6:75:57:bd:7b:d6:88:07:88:85:a7:a6:4a:
70:24:6e:73:8d:f9:86:01:98:2a:07:4e:55:72:35:b2:2e:a6:
2e:a4:e8:7f:8c:7e:1c:21:e6:82:31:d4:ee:8b:91:8f:39:60:
66:d1:34:d8:e7:01:3c:79:1e:ae:18:76:cd:ae:af:de:d2:3a:
41:86:e7:7c:3a:39:16:05:fb:da:7c:bf:22:1e:e9:34:ef:47:
62:cb:f7:35:e0:fd:c7:f2:5a:cd:51:cb:6b:b8:1b:ce:48:1c:
ba:bc:0c:2e:5b:f9:3d:4f:11:c4:ba:9a:92:b8:68:d5:b9:19:
21:e9:e8:4a:d0:88:02:fc:a4:dd:5a:3b:6a:70:36:58:ee:47:
8f:58:6e:6f:d9:19:b0:7c:87:81:96:74:b9:c4:a1:b1:58:20:
4e:61:0a:ad:77:80:5a:38:de:32:49:b8:ef:b0:03:3a:b7:77:
4e:62:5b:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:05 2024 by rpki-client on console-fra.rpki-client.org