Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e33312e3134382e302f32332d3234203d3e203631333137.roa
File: 3139342e33312e3134382e302f32332d3234203d3e203631333137.roa (raw, json)
Hash identifier: syZprcXgPR+j+dwKb3i7CZ/VtMpPpplAKPWEt12T5MY=
Subject key identifier: 05:85:73:CD:60:B2:29:17:06:EA:8D:48:0F:FB:DA:EC:E5:00:4C:37
Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Certificate serial: 6CF9DA23188F1D7199712CFA16DDF5875EC08A9B
Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e33312e3134382e302f32332d3234203d3e203631333137.roa
Signing time: Mon 26 Feb 2024 08:52:43 +0000
ROA not before: Mon 26 Feb 2024 08:47:43 +0000
ROA not after: Mon 24 Feb 2025 08:52:43 +0000
asID: 61317
IP address blocks: 194.31.148.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Apr 2024 11:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:f9:da:23:18:8f:1d:71:99:71:2c:fa:16:dd:f5:87:5e:c0:8a:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Validity
Not Before: Feb 26 08:47:43 2024 GMT
Not After : Feb 24 08:52:43 2025 GMT
Subject: CN=058573CD60B2291706EA8D480FFBDAECE5004C37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:45:ad:7d:51:c3:81:d0:69:79:2b:9e:2b:b3:
f6:bb:45:9e:2a:66:9d:d5:6d:75:39:64:55:7e:55:
0a:7e:b4:f1:bc:dc:ab:df:ca:e0:7b:03:77:cd:84:
3a:1d:e0:a9:52:db:39:94:a7:d1:bb:57:90:2c:3b:
73:1d:cb:0c:39:d1:e4:49:7c:36:7b:d6:ce:7a:fa:
07:14:a9:d3:a3:4e:77:99:2f:4f:a4:3c:94:11:6f:
54:d9:cd:60:46:84:eb:c8:07:df:1e:70:aa:78:d8:
82:61:bb:c4:01:53:98:62:f2:d9:e1:d3:c0:58:8f:
f8:a6:0d:68:87:90:1e:8a:98:a8:37:58:dd:62:0b:
d7:0b:b2:15:f7:60:d2:f1:f8:60:61:62:7c:fc:c7:
50:36:50:08:b2:38:5c:17:2d:9e:f4:d8:3e:cf:16:
75:f4:82:52:69:65:ff:6d:95:86:20:0e:99:78:c0:
92:c9:46:70:23:08:2f:71:dc:19:1c:7f:73:78:24:
a7:cb:76:e3:77:ec:6f:1e:e9:7d:e9:44:75:ba:74:
e6:9f:7f:f3:d2:64:3f:06:a0:bc:fd:9e:c5:30:24:
5a:ee:3a:85:17:72:1e:87:02:d2:aa:98:22:9b:14:
34:de:57:6d:67:f6:45:09:4e:fb:63:44:5a:a2:f9:
30:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:85:73:CD:60:B2:29:17:06:EA:8D:48:0F:FB:DA:EC:E5:00:4C:37
X509v3 Authority Key Identifier:
keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e33312e3134382e302f32332d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.31.148.0/23
Signature Algorithm: sha256WithRSAEncryption
79:51:e4:21:29:d4:ef:ca:24:b4:af:cb:fc:ff:95:93:cd:8f:
7a:74:5a:71:d3:76:7b:23:eb:3b:1c:53:07:61:e9:58:ad:36:
8c:1c:de:14:17:bd:d8:ea:5f:8d:b2:ce:d7:b8:73:6d:4c:fa:
b4:99:80:17:48:56:d7:87:4a:7d:6a:95:e6:d2:37:1c:0e:0c:
b0:7a:cd:b4:54:dc:3b:ce:41:23:42:d4:d7:e5:eb:7e:8e:24:
a4:98:6c:0a:71:24:f5:92:b6:f1:3f:5c:48:af:eb:5a:6e:b5:
eb:8e:9b:1c:11:8d:16:ad:d4:ee:a0:56:b1:bc:83:05:19:e0:
a4:dc:78:bf:bd:d8:35:14:66:1e:63:21:0f:77:3f:f1:2a:0c:
09:6b:7d:f2:7f:13:40:f1:34:9a:2d:66:53:6f:07:7c:8f:ff:
a9:ec:82:7f:d5:f5:7a:b1:a5:4a:b2:93:0e:25:ad:b2:60:b4:
c1:ed:c1:6a:df:1b:da:86:a9:6e:e4:0c:e7:f5:26:21:4d:43:
8a:ba:7a:b9:1d:d7:73:ed:06:f7:80:c2:c8:6e:6e:3e:95:fa:
a4:33:29:a2:ad:c3:d8:07:66:2d:a0:85:10:eb:93:e3:52:3e:
e8:a1:83:39:37:49:04:d3:58:73:6b:71:ce:f3:3d:8d:4d:fb:
f2:a7:fb:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 13:50:22 2024 by rpki-client on console-fra.rpki-client.org