Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e3134362e31332e302f32342d3332203d3e203531313637.roa
File: 3139342e3134362e31332e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: kyggqMkUtPy06chSBtTLLInv0pyeN+NDKxWKu2bFkcY=
Subject key identifier: A6:5F:51:ED:30:87:E8:E3:17:25:AB:6B:3B:9C:4F:AC:BE:FA:F9:D1
Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Certificate serial: 129CDF6B0E292587BDA42676BD3FCF5C0ECBDA49
Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e3134362e31332e302f32342d3332203d3e203531313637.roa
Signing time: Mon 26 Feb 2024 08:52:40 +0000
ROA not before: Mon 26 Feb 2024 08:47:40 +0000
ROA not after: Mon 24 Feb 2025 08:52:40 +0000
asID: 51167
IP address blocks: 194.146.13.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 08:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:9c:df:6b:0e:29:25:87:bd:a4:26:76:bd:3f:cf:5c:0e:cb:da:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Validity
Not Before: Feb 26 08:47:40 2024 GMT
Not After : Feb 24 08:52:40 2025 GMT
Subject: CN=A65F51ED3087E8E31725AB6B3B9C4FACBEFAF9D1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:3f:2a:88:e4:59:f5:41:cb:56:93:aa:af:1d:
33:71:25:f4:ea:d1:8c:0b:c3:2f:3d:f4:19:8b:4e:
81:bb:71:41:7d:64:ad:9e:0f:41:70:26:3f:7d:dd:
51:05:6c:b4:80:e7:5b:b8:52:7d:0e:62:64:5f:e1:
ea:5a:9a:b5:75:f9:93:bb:09:84:d6:21:77:14:b7:
74:f7:a9:83:d7:70:6f:39:d2:1e:32:6d:7d:b0:68:
9a:a9:d1:33:34:65:e6:e7:4e:25:62:34:61:12:dc:
be:61:70:c4:8d:b6:af:bd:af:cd:3f:d5:47:49:84:
18:cc:41:7b:16:b4:bf:ea:09:34:cc:e7:06:87:af:
af:9e:f4:70:c2:9e:3c:1f:85:bc:64:31:27:46:74:
b1:9c:00:09:ea:33:48:4b:1d:03:43:f9:bd:5d:5e:
b0:7f:39:59:5d:d1:64:4a:d4:96:4b:b1:3a:8b:e7:
63:a3:1a:4f:38:93:8b:81:c6:64:27:24:d1:2c:75:
49:2e:15:50:e8:2a:90:6a:84:2c:e6:42:bb:4f:09:
80:e6:f4:b8:3c:db:6b:22:4b:1b:f6:71:08:df:c3:
10:ce:95:8a:62:26:87:d1:ea:54:35:e4:2e:f0:20:
a7:63:5c:7d:17:08:9b:ba:58:3f:7a:81:b0:e6:d0:
4d:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:5F:51:ED:30:87:E8:E3:17:25:AB:6B:3B:9C:4F:AC:BE:FA:F9:D1
X509v3 Authority Key Identifier:
keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e3134362e31332e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.146.13.0/24
Signature Algorithm: sha256WithRSAEncryption
68:da:16:fa:8c:aa:1b:18:a2:50:69:a2:5e:60:00:86:c2:f9:
4f:5a:9d:bf:ea:b1:96:98:06:bc:a0:ad:dc:77:76:05:67:78:
96:ff:54:83:b9:0f:0d:cd:de:fa:d1:f9:45:f5:81:f5:57:01:
99:da:9c:9b:59:91:e5:cd:09:28:9b:ce:48:04:98:d8:40:6a:
18:9f:93:86:68:ba:30:3e:b3:e5:68:3b:f5:72:0a:2f:e6:82:
8f:91:65:44:c8:b2:42:84:f9:76:47:8d:a7:59:93:01:ba:d9:
34:c4:2d:41:28:ae:cd:48:6f:e2:51:7f:23:39:76:c8:f4:c0:
0e:92:0e:1f:40:4d:cb:fe:d7:2b:10:dc:53:1f:3d:43:6d:a6:
cb:5d:59:3a:e4:9d:a5:3f:b7:00:07:a1:21:b9:e5:03:00:e0:
0b:8a:d7:42:68:dc:31:dc:fd:66:dc:10:85:22:6a:82:d5:91:
ce:df:6a:dd:6a:02:6e:0a:2e:58:ee:b2:93:ed:a4:b0:f7:5c:
6b:ee:01:fb:95:c0:1e:23:f3:1c:69:34:0e:6a:93:64:f8:12:
56:6c:1b:52:84:17:a8:eb:1f:1e:e8:7f:1e:bf:8f:59:fd:f2:
f7:97:50:19:b0:b4:86:a6:f4:89:b5:ea:b5:87:33:c8:ce:5e:
bc:9c:21:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 10:15:39 2024 by rpki-client on console-ams.rpki-client.org