Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e32392e36332e302f32342d3234203d3e203633343733.roa
File: 3139332e32392e36332e302f32342d3234203d3e203633343733.roa (raw, json)
Hash identifier: f4a77eLMCbDREz1YSmhXD4fH9ZhRIdwmtQO+97gyenI=
Subject key identifier: A0:81:7A:B7:98:B0:B6:83:95:9F:CB:F8:52:42:7A:F9:BF:88:71:22
Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Certificate serial: 54F572DE13032115024AA365FB370904F7DFF862
Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e32392e36332e302f32342d3234203d3e203633343733.roa
Signing time: Mon 04 Nov 2024 10:05:25 +0000
ROA not before: Mon 04 Nov 2024 10:00:25 +0000
ROA not after: Mon 03 Nov 2025 10:05:25 +0000
asID: 63473
IP address blocks: 193.29.63.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:f5:72:de:13:03:21:15:02:4a:a3:65:fb:37:09:04:f7:df:f8:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Validity
Not Before: Nov 4 10:00:25 2024 GMT
Not After : Nov 3 10:05:25 2025 GMT
Subject: CN=A0817AB798B0B683959FCBF852427AF9BF887122
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:9d:b5:32:4f:d8:f3:1a:22:8b:29:e9:fa:bf:
e1:d1:4a:ea:80:11:45:3d:14:4a:9d:79:74:ca:ba:
52:8e:31:de:66:ac:33:2d:58:6b:8e:18:77:a7:31:
34:f1:f9:1b:97:12:ed:7b:da:d7:f4:08:03:b0:b3:
5a:f5:7f:f1:79:96:27:49:59:ad:81:2b:42:61:bf:
76:7d:66:8a:3a:a6:54:16:32:72:9d:e5:73:78:4f:
c2:9e:ef:d5:bc:c5:b0:1f:eb:87:19:3e:43:b5:33:
d8:a0:ed:fb:82:77:1c:2a:60:b6:70:eb:9c:12:4e:
71:4d:97:8e:72:27:28:dc:b8:2d:9a:29:95:b8:29:
cf:17:94:81:22:53:6a:0b:66:6f:d2:7e:f6:73:19:
6e:78:9b:eb:5d:3c:16:99:88:dc:31:b8:69:97:af:
1f:3f:c9:e4:f9:d4:26:59:e6:ef:e3:ec:d5:78:a0:
43:02:80:57:d0:ea:67:2f:96:93:02:28:6d:0b:1a:
74:d2:99:6e:e5:6d:5b:58:58:3c:87:9c:20:fa:f1:
ad:20:e2:ac:d7:23:28:d4:95:c9:cc:d9:c5:e8:e5:
eb:28:d0:31:9c:6a:62:4d:bc:89:1d:4e:94:40:2b:
ce:d5:df:dd:f1:61:8e:5e:86:9a:26:d9:46:ec:72:
57:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:81:7A:B7:98:B0:B6:83:95:9F:CB:F8:52:42:7A:F9:BF:88:71:22
X509v3 Authority Key Identifier:
keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e32392e36332e302f32342d3234203d3e203633343733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.29.63.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:8b:44:a4:77:f6:e7:ab:20:f4:0c:1f:fb:bb:3a:33:67:ea:
15:78:d7:df:62:be:96:0f:c3:d5:9c:6f:e2:2b:ae:e0:5b:e7:
c1:88:c6:6f:c9:2d:39:ab:05:76:ca:8d:58:59:99:20:9a:ff:
d2:3e:b4:ad:f8:10:8d:30:be:13:b5:10:23:3a:11:ee:85:9b:
ea:2f:4f:41:bf:98:33:c5:b3:e4:5a:ea:cd:3f:93:03:7b:91:
9a:06:44:ba:ba:35:4f:40:42:31:b3:5c:56:be:31:7d:bd:ea:
33:9d:12:31:a0:24:af:0f:6d:2a:29:ac:cd:a8:a6:7b:83:0b:
7e:1f:1d:5a:fd:82:98:15:c0:14:db:02:43:a5:4c:aa:32:b8:
8a:37:04:83:88:89:d5:80:b8:27:8f:f7:54:37:9b:d1:19:39:
85:bf:26:4b:89:32:b4:a6:44:8a:15:13:17:9f:c7:11:83:5c:
01:2c:10:2b:b7:52:4e:68:e4:90:e6:f9:4e:9b:c3:8c:a5:51:
08:0e:7a:c9:5a:c2:73:e7:48:a0:be:c8:ba:d7:61:78:94:9b:
f8:1d:aa:07:bd:c7:a7:1f:82:a0:3f:21:c8:fd:ea:ac:72:84:
6f:05:d6:0f:88:e1:a4:60:6f:43:7c:40:5b:3f:21:bf:6f:ef:
84:2d:84:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:05 2024 by rpki-client on console-fra.rpki-client.org