Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3139332e3134382e37352e302f32342d3234203d3e20313336373837.roa
File: 3139332e3134382e37352e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: uLVVOh5ILymKaCecUaH4eWbCBb7B7pJ8jqJ5pEER5do=
Subject key identifier: 21:3D:51:D1:7F:D8:40:3B:50:E8:F9:32:36:59:FE:DC:D2:8A:60:3E
Certificate issuer: /CN=5d70845822a61408ec2a5fd580c132da777f09d1
Certificate serial: 5DCBE04DCF78FC52A1BD27C00485B8294D8F33A3
Authority key identifier: 5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3139332e3134382e37352e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 08 Mar 2024 12:58:24 +0000
ROA not before: Fri 08 Mar 2024 12:53:24 +0000
ROA not after: Fri 07 Mar 2025 12:58:24 +0000
asID: 136787
IP address blocks: 193.148.75.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.mft
rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 16:15:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:cb:e0:4d:cf:78:fc:52:a1:bd:27:c0:04:85:b8:29:4d:8f:33:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d70845822a61408ec2a5fd580c132da777f09d1
Validity
Not Before: Mar 8 12:53:24 2024 GMT
Not After : Mar 7 12:58:24 2025 GMT
Subject: CN=213D51D17FD8403B50E8F9323659FEDCD28A603E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:d8:a3:b3:b5:9f:fe:c7:6b:da:4e:76:a5:59:
84:bb:83:3f:c4:38:c9:69:92:71:8e:f7:2d:93:03:
25:a9:a2:3f:d5:4f:24:34:ab:0f:1e:58:82:9d:9b:
57:a4:75:b3:00:ed:b3:d0:7c:f1:06:72:dd:73:cc:
ae:2c:ec:74:66:68:10:94:86:e5:6b:4d:5c:18:52:
8e:10:3c:b6:80:6d:87:e8:5c:8c:3c:b6:ec:56:1f:
11:cc:e9:32:a0:d2:06:55:05:3a:bf:6f:9b:d5:55:
1b:9b:fe:0c:5a:9f:b6:96:e5:b4:f4:4f:d6:b7:43:
38:c2:c7:bc:d3:7a:48:be:e5:c5:53:d0:66:b5:77:
22:ef:43:fa:c8:90:95:12:d3:45:61:e3:61:bd:c3:
cd:3a:1a:d7:6c:a9:ea:62:0d:e6:a0:ad:25:b7:8d:
88:da:62:73:aa:53:66:1a:c7:eb:29:58:08:57:30:
59:80:44:73:7a:60:ad:36:f4:be:d2:da:ea:59:61:
ca:6c:cc:b8:2e:a9:e4:97:45:64:0c:80:79:2a:5d:
65:62:9a:f9:71:8d:ea:3a:7d:63:fb:36:b0:0f:3d:
03:6f:83:f0:e4:03:28:db:71:eb:9c:37:da:41:a9:
30:33:69:a1:56:14:f2:42:62:c9:50:c0:4b:9d:92:
68:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:3D:51:D1:7F:D8:40:3B:50:E8:F9:32:36:59:FE:DC:D2:8A:60:3E
X509v3 Authority Key Identifier:
keyid:5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3139332e3134382e37352e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.148.75.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:41:bb:1f:f1:3f:e9:a8:4d:6e:96:70:91:80:b1:76:ec:97:
39:82:d2:23:87:86:33:74:89:76:51:14:19:94:26:76:88:fa:
14:3b:fe:9f:b6:c7:2b:fe:42:5d:39:dc:ff:80:40:78:32:f5:
1e:4d:b5:43:e1:fd:9e:94:cd:58:f9:02:5a:60:9b:10:da:cd:
ba:9b:d5:e4:c1:f8:15:6e:c5:81:32:a4:79:4d:38:96:55:53:
87:1d:7a:d9:94:a9:b4:33:e8:b0:08:62:92:1e:d8:79:eb:e2:
94:13:74:89:fe:f2:2d:79:a0:36:5b:57:2f:63:80:d1:d6:34:
73:eb:bf:95:d4:20:55:ad:b0:c1:af:eb:06:7c:b7:93:bd:56:
76:aa:c0:85:75:2c:fe:0e:39:85:63:b7:4e:18:1a:08:3e:13:
57:4f:12:ed:52:0c:55:ce:85:0a:ba:bb:58:69:95:b9:45:29:
b2:86:43:87:37:63:03:65:ed:c4:d7:16:96:2c:33:ef:c6:a7:
01:7f:31:43:2f:e8:f6:2c:55:3b:d3:81:d6:4b:c1:da:b5:f3:
71:a3:22:8f:34:30:d5:12:ed:dc:02:70:4a:3a:29:62:ed:c2:
af:3a:3d:9d:c9:d0:43:41:23:ac:bd:16:72:b6:11:29:2a:af:
6f:39:9f:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 00:13:15 2024 by rpki-client on console-fra.rpki-client.org