Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/39312e3230352e3130342e302f32332d3332203d3e203531313637.roa
File: 39312e3230352e3130342e302f32332d3332203d3e203531313637.roa (raw, json)
Hash identifier: YOannQGWiphbqBjH5Bc5rFezokm2GbMoSm60kWnSpSE=
Subject key identifier: B1:7A:E9:D4:C5:A7:6D:EB:4F:61:B0:8D:FA:36:18:36:11:AC:F5:1D
Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Certificate serial: 4D5CFF8795245A73E687C84C2961F5FCA1C7108B
Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/39312e3230352e3130342e302f32332d3332203d3e203531313637.roa
Signing time: Thu 30 May 2024 20:39:06 +0000
ROA not before: Thu 30 May 2024 20:34:06 +0000
ROA not after: Thu 29 May 2025 20:39:06 +0000
asID: 51167
IP address blocks: 91.205.104.0/23 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:5c:ff:87:95:24:5a:73:e6:87:c8:4c:29:61:f5:fc:a1:c7:10:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Validity
Not Before: May 30 20:34:06 2024 GMT
Not After : May 29 20:39:06 2025 GMT
Subject: CN=B17AE9D4C5A76DEB4F61B08DFA36183611ACF51D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:c1:2a:cd:60:ff:ec:88:fa:99:e0:f3:a4:85:
ca:f2:07:77:3b:f4:69:87:5a:dc:9e:10:86:70:de:
69:70:1d:42:a6:06:53:bd:66:6f:b7:98:cf:3e:7f:
1f:1a:00:07:8e:e9:67:eb:58:a8:55:e8:85:34:14:
fd:73:90:3a:c9:d0:79:8e:6b:75:6f:ee:a4:c9:08:
9d:ab:07:ad:42:c5:91:26:9a:e8:6d:11:72:0e:e3:
2e:5c:aa:f8:86:f9:a1:ca:3b:7e:ff:f9:e0:5b:9d:
b8:92:73:5b:9c:57:68:ba:b5:b8:8d:08:84:15:8d:
18:a2:65:9f:19:ac:d3:c5:0b:26:b2:ca:af:6d:54:
e1:1f:cf:62:1b:b9:07:ee:64:05:4c:10:b8:bb:d3:
3e:7e:45:7e:90:21:74:92:31:37:71:9f:aa:31:3e:
fb:8d:d1:6e:35:23:e9:01:d2:24:10:d2:8d:93:89:
60:3c:d5:26:11:60:b6:89:ee:7f:8b:0f:37:31:9f:
9f:30:e6:52:13:58:af:d6:39:51:c5:b0:fe:1b:d6:
b9:ff:b1:0b:2d:92:be:9f:4f:77:3e:09:17:99:92:
23:9f:2b:d5:ac:4f:6c:b5:e1:75:da:4e:e5:27:6b:
47:0a:34:38:15:3b:8a:83:c8:ca:5c:03:84:73:9c:
a6:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:7A:E9:D4:C5:A7:6D:EB:4F:61:B0:8D:FA:36:18:36:11:AC:F5:1D
X509v3 Authority Key Identifier:
keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/39312e3230352e3130342e302f32332d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.205.104.0/23
Signature Algorithm: sha256WithRSAEncryption
65:f0:3f:43:39:1c:6b:92:c1:f9:e7:f6:db:bc:72:c6:48:72:
86:b3:b3:42:31:c9:a3:22:50:7e:47:c8:57:c2:33:eb:85:12:
25:fa:50:a5:26:f9:18:54:9c:ff:e4:2f:58:f1:67:c1:c4:37:
f6:ca:81:d8:10:82:90:eb:cc:2c:e6:72:ee:31:55:04:d5:10:
12:5d:26:0a:95:8a:91:be:3e:87:9e:e1:c3:70:07:0d:4c:fc:
bc:97:13:86:79:8b:88:d9:d2:d3:69:e7:7c:da:a5:88:d3:9b:
02:6f:cf:38:9f:93:45:94:2b:81:25:0d:09:fa:66:4c:80:c8:
0c:72:91:72:51:77:cc:7a:7b:76:76:9f:9c:eb:e8:e4:58:97:
26:ec:35:1b:bc:f6:f7:2d:24:69:55:9a:75:77:fb:2e:c5:b0:
eb:01:07:b2:19:4d:18:e8:f3:6b:cb:ff:c9:93:0c:b3:df:a2:
87:2c:00:3e:8c:c5:87:da:4b:77:a7:34:68:0d:76:6a:74:3d:
1e:1e:db:03:98:14:d6:e5:16:80:08:91:68:dc:61:c5:cd:72:
2d:37:67:be:66:f2:d4:76:66:60:25:77:c0:c6:43:29:df:45:
2c:70:67:7a:aa:b3:bb:49:f5:bf:29:6e:e3:46:aa:f1:f1:00:
d3:ce:1c:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:05 2024 by rpki-client on console-fra.rpki-client.org