Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e32392e36302e302f32342d3332203d3e20313336373837.roa
File: 3139332e32392e36302e302f32342d3332203d3e20313336373837.roa (raw, json)
Hash identifier: 3DfGmjthFzoHA7UbNvhaTEV69+LkICBnTljy5958JSQ=
Subject key identifier: 82:64:10:79:AD:5B:FA:70:D3:90:13:56:3D:BB:6D:0B:A4:EE:16:1C
Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Certificate serial: 3E7D6A7A9E92845ACEA6B6F23C5286BB314BF2A8
Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e32392e36302e302f32342d3332203d3e20313336373837.roa
Signing time: Mon 26 Feb 2024 08:52:46 +0000
ROA not before: Mon 26 Feb 2024 08:47:46 +0000
ROA not after: Mon 24 Feb 2025 08:52:46 +0000
asID: 136787
IP address blocks: 193.29.60.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:7d:6a:7a:9e:92:84:5a:ce:a6:b6:f2:3c:52:86:bb:31:4b:f2:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Validity
Not Before: Feb 26 08:47:46 2024 GMT
Not After : Feb 24 08:52:46 2025 GMT
Subject: CN=82641079AD5BFA70D39013563DBB6D0BA4EE161C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:d9:99:fc:56:ca:90:b5:92:8f:ce:db:8f:61:
3b:7a:54:ac:ce:b3:44:fb:cc:17:dd:fe:b6:23:4c:
37:07:50:ce:2b:bf:1f:05:9f:b7:0f:13:2c:43:64:
49:5f:54:cc:92:0b:4a:dd:a4:58:a6:5d:15:9d:ea:
7c:16:e2:08:c2:df:6b:58:15:37:4b:ca:da:f1:d3:
92:01:ce:d5:a7:e4:e9:d1:0d:f2:80:aa:d1:1c:53:
fe:85:03:64:f7:bb:3f:cf:fe:30:bc:16:45:99:3f:
cd:c7:6b:df:06:2b:87:6c:79:13:6c:35:ae:89:0c:
4c:65:15:53:00:c9:71:4b:6d:d4:75:dc:a7:35:4a:
12:79:14:1b:f5:27:0e:bd:a8:87:aa:60:12:f1:80:
2d:5e:83:2c:d2:02:d7:28:80:4f:ea:bd:a8:4a:47:
c0:ae:ac:5d:be:c6:b8:0b:e2:75:0b:34:11:c3:ea:
7f:50:be:6d:f3:bd:06:c1:62:3c:1a:72:d2:38:30:
88:4c:52:a6:1b:63:0c:1a:7b:6d:02:b4:9f:9b:af:
16:6a:76:f9:6f:17:ed:cd:06:de:e3:fa:52:33:bf:
45:c4:79:9c:0b:35:2c:4d:a6:ec:91:fb:83:fe:08:
73:88:dd:b1:7a:86:a4:6b:74:af:cf:5d:91:76:bc:
8a:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:64:10:79:AD:5B:FA:70:D3:90:13:56:3D:BB:6D:0B:A4:EE:16:1C
X509v3 Authority Key Identifier:
keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e32392e36302e302f32342d3332203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.29.60.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:4d:06:79:9b:d5:6b:01:50:56:36:33:e9:de:2d:17:44:80:
04:29:24:29:ef:7c:49:70:f3:b0:9d:4e:8a:c6:70:79:12:0d:
84:8c:49:c6:ad:2b:a9:0b:36:47:89:60:87:22:e0:a7:1f:e0:
00:05:21:24:27:d9:1a:f4:88:57:dd:fc:60:d9:b1:dd:6d:76:
c5:6e:89:2c:4a:dc:de:08:94:80:29:34:ba:42:8d:f2:5f:5c:
8c:2c:d1:cf:1b:68:f7:65:04:73:7f:f4:7d:41:15:57:75:42:
b0:92:92:05:7e:e0:74:8f:c2:aa:01:17:4a:90:f6:8a:a0:a9:
6d:cf:6b:26:a8:48:89:c4:88:7e:97:72:11:95:f1:4a:a6:d0:
76:6c:db:1c:64:60:d0:06:fe:84:f2:db:7e:89:d6:9e:67:84:
d5:c6:00:07:11:87:bc:3d:b9:4f:e8:02:ac:1d:53:92:e9:12:
6c:b0:7b:18:0f:0c:75:3f:f9:63:a6:e8:3a:cc:42:8f:ab:41:
88:b7:15:7f:9f:5d:9a:c6:67:04:55:a5:2d:bc:69:f6:69:f5:
53:12:b2:ba:de:4d:5e:84:ee:a3:91:e4:5f:66:66:f3:1a:85:
f7:74:2b:96:0e:45:ff:83:9e:26:e1:47:49:d0:97:8e:6f:9e:
c0:ec:f2:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 11:54:24 2024 by rpki-client on console-fra.rpki-client.org