Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e32392e36332e302f32342d3234203d3e203633343733.roa
File: 3139332e32392e36332e302f32342d3234203d3e203633343733.roa (raw, json)
Hash identifier: CwmbRKTZLmMQFcPxzS9OF+THIzy+LUyNggUxwTnuqwQ=
Subject key identifier: C6:B6:CA:EE:DB:B2:29:25:99:4D:C7:0F:CD:3E:6F:7C:17:1F:BB:3F
Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Certificate serial: 60C6813BA703EE866D699098BC734D8EF9E526D9
Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e32392e36332e302f32342d3234203d3e203633343733.roa
Signing time: Mon 04 Dec 2023 09:35:22 +0000
ROA not before: Mon 04 Dec 2023 09:30:22 +0000
ROA not after: Mon 02 Dec 2024 09:35:22 +0000
asID: 63473
IP address blocks: 193.29.63.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 May 2024 14:34:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:c6:81:3b:a7:03:ee:86:6d:69:90:98:bc:73:4d:8e:f9:e5:26:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Validity
Not Before: Dec 4 09:30:22 2023 GMT
Not After : Dec 2 09:35:22 2024 GMT
Subject: CN=C6B6CAEEDBB22925994DC70FCD3E6F7C171FBB3F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:2a:f9:a3:6e:9f:54:64:db:f4:fb:4d:8b:f3:
f5:4b:22:22:61:d1:84:db:4b:64:20:59:13:67:94:
e6:11:2a:06:9b:8c:eb:04:df:d5:44:ff:09:55:16:
82:21:54:2b:6f:b4:bd:0f:e4:64:c3:f0:4a:70:e5:
4b:26:a5:8b:ab:b3:69:b4:26:6c:c7:90:36:39:b6:
e4:02:51:d4:68:2f:07:1c:7d:f6:b0:95:93:a5:2f:
cd:2c:c1:df:3f:fa:01:a4:0a:2c:c4:b2:66:fd:ec:
c2:5c:26:94:61:6c:fd:a8:12:40:21:da:c6:88:33:
35:76:e3:8e:6f:80:85:33:fd:96:5d:a3:38:6e:93:
62:34:90:5b:6a:df:9a:d1:a9:a1:7e:f9:55:6d:8c:
3c:aa:40:50:42:55:d1:bd:b4:1c:08:fb:e4:0d:8b:
07:da:c2:25:f6:86:48:62:58:9d:78:0e:15:15:fe:
c8:b0:7e:20:26:4f:dd:50:6e:6a:1a:a0:db:b7:d0:
61:ef:47:bf:4f:ee:12:d7:2d:45:c1:ef:bb:22:f4:
95:ac:15:60:df:94:5b:82:9c:bc:35:bc:55:53:21:
d5:2c:eb:04:76:f0:37:67:16:27:0d:f6:be:f2:e3:
50:47:85:b9:0c:f5:85:3d:f5:49:f5:bd:74:ff:8d:
a9:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:B6:CA:EE:DB:B2:29:25:99:4D:C7:0F:CD:3E:6F:7C:17:1F:BB:3F
X509v3 Authority Key Identifier:
keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e32392e36332e302f32342d3234203d3e203633343733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.29.63.0/24
Signature Algorithm: sha256WithRSAEncryption
88:7f:86:23:37:9a:d1:1b:29:65:d3:9b:3a:b8:ce:e2:6e:44:
c8:3c:f4:31:7e:b9:7d:ca:9b:7f:63:8f:00:61:a7:bc:49:f2:
22:5a:50:78:3c:62:98:04:98:95:56:b9:cf:a2:f0:af:ca:f9:
81:7d:ff:9f:b2:7b:a8:d9:65:45:36:51:02:97:66:a2:66:e1:
ee:b5:b6:ab:e0:2a:68:e0:60:e0:8f:fe:e3:c0:7c:29:1c:d0:
0c:1f:27:31:81:bc:b4:7e:f1:40:c7:cd:19:fe:c4:be:96:6b:
74:79:0d:b3:4f:90:03:56:ad:ce:b0:61:8d:b4:a4:f4:08:01:
8d:44:4a:bd:55:32:8f:13:05:ca:a2:b3:c0:50:4b:89:96:60:
37:f2:82:fe:bd:62:9f:38:c5:43:81:ac:8a:71:64:3f:c9:05:
a0:e3:e8:93:40:ce:91:e7:cf:56:a8:a1:1d:6d:ca:c0:97:b7:
f5:35:dc:38:af:98:a9:8d:ec:ad:c2:6a:e5:a2:28:4e:eb:24:
09:e3:ba:f9:5c:7b:78:1f:75:bc:1d:c9:6a:e9:27:02:02:12:
03:87:af:80:ee:27:f9:0d:6b:01:92:59:02:91:46:9b:d5:ae:
21:fd:9a:35:2c:fe:fd:a2:63:e8:05:c8:41:ba:9a:3b:a0:b2:
f0:9a:18:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 16 17:02:40 2024 by rpki-client on console-ams.rpki-client.org