Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e32392e36322e302f32342d3234203d3e203633343733.roa
File: 3139332e32392e36322e302f32342d3234203d3e203633343733.roa (raw, json)
Hash identifier: +VmAJgUV6ksszqXzFJ5S1++Jgz2vgYTPU2xmusm2HFU=
Subject key identifier: 80:BD:8E:5D:1B:2E:A1:0E:D9:F2:9C:D6:BC:8E:F8:78:3C:7D:22:09
Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Certificate serial: 04D0387C69BB8F42C5833AB7E25AFE68500E8B32
Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e32392e36322e302f32342d3234203d3e203633343733.roa
Signing time: Mon 04 Dec 2023 09:35:14 +0000
ROA not before: Mon 04 Dec 2023 09:30:14 +0000
ROA not after: Mon 02 Dec 2024 09:35:14 +0000
asID: 63473
IP address blocks: 193.29.62.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 May 2024 14:34:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:d0:38:7c:69:bb:8f:42:c5:83:3a:b7:e2:5a:fe:68:50:0e:8b:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Validity
Not Before: Dec 4 09:30:14 2023 GMT
Not After : Dec 2 09:35:14 2024 GMT
Subject: CN=80BD8E5D1B2EA10ED9F29CD6BC8EF8783C7D2209
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:12:ac:c8:0c:72:c4:16:7d:a6:cb:e8:89:b3:
fe:a1:56:7c:5d:e0:fd:7b:77:7b:e9:46:79:67:bf:
6c:76:d9:b2:60:79:b0:84:1d:fa:0c:2c:9a:b3:b1:
3f:89:96:6a:05:55:bf:41:97:0f:2d:9a:33:b5:ee:
f2:7e:eb:51:89:5a:aa:b4:d6:0d:97:26:18:20:fd:
aa:50:c9:98:8b:6c:eb:f0:b2:c5:c3:be:c3:65:34:
98:64:77:82:00:6c:73:c6:60:a5:c2:46:ce:87:aa:
8d:cb:d3:bd:77:8b:9e:17:6c:89:b9:ed:86:6c:bf:
32:20:50:94:20:70:3b:ee:4f:e4:c6:2d:cb:66:83:
19:bb:c1:0b:3c:4d:34:5f:ed:83:a7:29:32:68:c3:
4b:79:e6:1f:11:e2:75:2b:84:ad:48:1f:c7:99:55:
44:b3:a0:70:d9:00:83:16:ff:cf:00:9b:4b:2f:4b:
61:20:7e:23:e0:ca:07:b3:29:c9:e8:ab:e0:ce:af:
4c:3a:c6:e4:d7:4d:1d:92:fe:50:59:0c:08:9d:3c:
97:0d:89:b0:4b:cd:8c:9e:ae:f4:5e:b8:5e:6c:67:
60:0d:34:c5:95:4f:1f:1d:f5:0a:f7:22:df:f6:65:
b4:02:d2:59:e3:dd:25:97:b8:dd:fa:aa:92:0e:d0:
5c:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:BD:8E:5D:1B:2E:A1:0E:D9:F2:9C:D6:BC:8E:F8:78:3C:7D:22:09
X509v3 Authority Key Identifier:
keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e32392e36322e302f32342d3234203d3e203633343733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.29.62.0/24
Signature Algorithm: sha256WithRSAEncryption
90:d5:35:c8:02:e0:9a:8e:3c:c8:3f:76:4e:2f:87:4b:27:7e:
f2:60:f5:83:53:cf:1f:44:27:38:fe:99:58:f0:a2:86:10:6c:
1c:e8:67:6c:74:5a:67:ae:74:91:0c:90:12:39:0b:02:4e:eb:
cd:c6:72:47:a5:3e:d1:9e:c0:b2:16:a9:f9:9a:79:43:cf:4a:
55:ec:e3:64:0e:0c:21:82:b3:ac:0a:ad:73:d1:e3:9f:13:14:
0a:23:a5:df:a0:34:6e:d6:ae:e5:ce:c0:08:47:90:cd:a8:f9:
16:32:51:63:a0:cc:9d:07:11:84:15:75:3b:d5:39:39:78:ed:
42:fc:98:41:44:32:e3:48:d1:29:5b:05:17:ec:6b:bd:fd:5f:
bb:ae:c2:6e:42:bb:9a:a0:c3:77:da:0a:a1:00:b4:61:e5:c5:
94:18:66:d3:f0:9c:79:d0:23:35:1d:f2:3b:c5:64:81:a0:f2:
42:cb:e4:56:6a:a3:f9:c6:bd:f9:a6:b1:e7:b1:91:65:be:04:
8b:a9:06:fa:b5:40:0d:12:c3:a4:32:16:f1:67:c9:b9:4c:d7:
2f:f7:7e:56:77:97:b0:07:6c:4c:4e:92:ba:6b:f2:cc:ac:3a:
4d:03:b3:3a:98:0f:a3:93:cd:ab:19:6d:6e:85:71:e3:30:d1:
41:b9:69:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 16 17:02:40 2024 by rpki-client on console-ams.rpki-client.org