Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e32392e36312e302f32342d3234203d3e20313437303439.roa
File: 3139332e32392e36312e302f32342d3234203d3e20313437303439.roa (raw, json)
Hash identifier: x2C9xJGScVuXFPcqfy2IYzbDyNiKQaHF3gzIShjgO2Q=
Subject key identifier: 5A:13:7C:C6:68:F2:DB:99:82:7B:09:F9:7E:82:AB:89:37:AB:0C:D3
Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Certificate serial: 342492971AB8857042418287D42A58B1160635F6
Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e32392e36312e302f32342d3234203d3e20313437303439.roa
Signing time: Mon 26 Feb 2024 08:52:41 +0000
ROA not before: Mon 26 Feb 2024 08:47:41 +0000
ROA not after: Mon 24 Feb 2025 08:52:41 +0000
asID: 147049
IP address blocks: 193.29.61.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 May 2024 14:34:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:24:92:97:1a:b8:85:70:42:41:82:87:d4:2a:58:b1:16:06:35:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Validity
Not Before: Feb 26 08:47:41 2024 GMT
Not After : Feb 24 08:52:41 2025 GMT
Subject: CN=5A137CC668F2DB99827B09F97E82AB8937AB0CD3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:31:02:6a:d1:33:b6:63:74:ba:2a:97:55:a9:
08:18:87:7d:6d:5d:5d:d0:11:71:ae:b9:b5:9e:16:
d5:63:7d:cd:c0:dc:dc:ed:62:f2:ae:ff:7b:6c:d9:
ab:de:e1:98:80:5e:ca:a7:69:9e:fd:76:52:ab:9a:
d8:34:00:ed:8c:92:5c:50:bc:96:bd:2f:c7:80:5c:
f8:5b:29:2e:09:c4:7c:16:7d:17:23:34:d4:3b:7e:
cb:d1:05:61:66:e6:0a:04:77:0c:87:27:fc:4d:ad:
dd:18:92:7e:46:fa:d0:2c:d0:ad:5b:86:bf:3c:af:
15:9e:fe:bc:f7:90:76:d0:ba:7d:b2:82:cc:17:7b:
cd:ee:b0:46:22:45:00:81:5f:6f:60:dc:d3:70:86:
ab:21:d6:62:73:4f:b1:d4:ae:51:9d:8f:2b:3d:f3:
aa:d6:e3:2c:76:7d:63:43:9a:4c:e9:77:34:b9:ff:
1e:93:e5:f6:f6:11:75:01:a3:97:53:5c:c7:b5:94:
37:01:08:e6:94:e4:ed:a8:4d:24:41:22:1c:b6:33:
00:c6:aa:12:48:dc:46:fc:3a:be:45:8f:66:b8:6c:
c6:7b:32:f1:22:b6:8e:27:ae:a1:bd:3e:46:d2:dd:
8d:3e:38:cb:7b:0c:1a:a4:f2:bc:01:6b:2e:d3:9c:
47:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:13:7C:C6:68:F2:DB:99:82:7B:09:F9:7E:82:AB:89:37:AB:0C:D3
X509v3 Authority Key Identifier:
keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e32392e36312e302f32342d3234203d3e20313437303439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.29.61.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:bd:71:2a:67:79:60:d1:3b:e8:90:e8:0b:06:2c:35:cb:b0:
de:68:bb:fd:62:98:d6:49:a0:3d:d7:f7:12:1a:3f:a8:df:35:
28:ee:04:fa:c7:37:67:0b:f5:62:b2:61:96:1b:2f:ee:26:ee:
95:77:5a:3d:18:e5:91:fd:a7:d2:c2:c9:74:0c:23:c9:7d:43:
6e:71:9b:bc:3d:64:6e:12:7f:ac:1f:14:ef:d1:9f:23:7c:47:
fb:09:81:00:36:30:1f:b3:1d:b0:26:df:40:1b:01:24:5d:30:
82:18:0f:11:6f:89:95:f5:9e:5b:fc:aa:eb:d4:db:1c:0c:6a:
b6:e7:c8:14:b0:04:ff:41:29:23:5c:c6:e5:bb:d4:c8:27:e2:
4f:a6:1b:13:1a:5d:de:8e:09:aa:aa:9f:1b:7d:12:ac:42:fa:
aa:d5:6f:10:13:90:db:7a:5c:e3:aa:54:76:25:7f:2b:ae:c1:
d8:57:a1:b8:df:2a:1d:e4:2b:58:89:f8:5d:ed:1f:01:85:b2:
be:05:45:01:4a:fe:71:5b:a1:d4:b8:e1:75:94:09:9b:2b:0a:
af:b1:1f:f2:e8:21:29:f2:2d:6d:d1:07:73:42:35:f6:41:aa:
19:64:04:b0:bc:86:cb:73:04:b4:4a:9a:38:b1:57:38:25:87:
08:20:00:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 16 17:02:40 2024 by rpki-client on console-ams.rpki-client.org