Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3139332e3134392e32372e302f32342d3234203d3e20313336373837.roa
File: 3139332e3134392e32372e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: 4UDIgcKc+65++m/Ro5+NFNHVde8XWNE7VDRx/AGkcpY=
Subject key identifier: 8D:F6:0B:90:5D:AA:35:18:95:82:4E:7A:BF:BC:4A:09:64:F7:9B:48
Certificate issuer: /CN=5d70845822a61408ec2a5fd580c132da777f09d1
Certificate serial: 12DEFDA334890B505153142FC5A4CC610C38C578
Authority key identifier: 5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3139332e3134392e32372e302f32342d3234203d3e20313336373837.roa
Signing time: Tue 13 Feb 2024 12:54:08 +0000
ROA not before: Tue 13 Feb 2024 12:49:08 +0000
ROA not after: Tue 11 Feb 2025 12:54:08 +0000
asID: 136787
IP address blocks: 193.149.27.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.mft
rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:de:fd:a3:34:89:0b:50:51:53:14:2f:c5:a4:cc:61:0c:38:c5:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d70845822a61408ec2a5fd580c132da777f09d1
Validity
Not Before: Feb 13 12:49:08 2024 GMT
Not After : Feb 11 12:54:08 2025 GMT
Subject: CN=8DF60B905DAA351895824E7ABFBC4A0964F79B48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:68:0f:74:d5:d0:90:2f:84:31:b0:dc:e8:ff:
4f:14:ec:84:30:40:57:5f:bd:67:3d:ec:f4:4e:be:
66:1b:5e:47:b4:87:d6:42:89:1a:a5:78:3c:14:33:
70:72:a0:8f:08:84:66:ce:00:bd:35:3d:d1:0d:f8:
b2:31:72:f0:dc:90:1c:9f:70:88:2e:17:a8:4b:ec:
fb:c9:9a:cf:90:37:a7:9d:38:c1:1f:b4:f3:04:7f:
f8:6e:3f:51:93:1b:d8:0b:b8:41:f4:88:47:82:08:
13:98:72:40:db:e6:25:88:00:4d:87:73:ad:de:19:
db:15:af:c0:1d:44:f1:28:6d:b9:85:3c:c7:9c:35:
fc:43:53:cd:7c:95:a7:3b:be:46:72:4c:f2:d2:ce:
6d:c9:ed:a4:0d:d9:ee:ee:cf:f0:d6:e5:78:1c:a3:
cf:2b:dd:e7:c9:8e:31:42:81:68:e0:98:4f:46:75:
8c:4f:fd:11:6e:0c:9e:b3:0a:64:c8:06:7a:43:12:
f4:e8:e4:c0:b1:de:6d:1a:29:62:84:47:a9:e5:a8:
28:b8:3e:70:30:e0:9e:6b:80:30:27:78:3f:47:20:
60:2f:14:02:31:cd:80:9c:c6:01:e0:34:99:20:76:
9e:09:a0:65:36:02:f1:c9:94:60:16:9c:19:d4:fa:
2d:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:F6:0B:90:5D:AA:35:18:95:82:4E:7A:BF:BC:4A:09:64:F7:9B:48
X509v3 Authority Key Identifier:
keyid:5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3139332e3134392e32372e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.149.27.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:c4:55:ec:23:64:b0:e6:06:c2:04:7a:34:f7:6a:d3:27:92:
70:77:54:73:02:e2:d1:25:5b:56:04:09:0a:2f:17:47:34:51:
c9:1d:f5:82:d4:07:30:96:9d:0a:f1:79:d6:bb:13:0f:51:c7:
4d:88:0b:95:b2:ad:5d:0e:87:15:ef:f7:15:42:31:d7:84:99:
31:d6:db:ae:9c:43:a6:09:48:19:7d:74:4a:66:4e:51:97:13:
cf:07:0c:24:29:75:f1:20:32:ca:b7:03:51:1c:45:ca:51:02:
1c:d7:e2:7b:9e:cb:f1:1f:0a:c3:b4:38:60:f5:78:f8:4c:75:
8f:1a:3d:56:6d:76:3e:03:8d:1a:a0:23:e1:90:b9:5d:c2:28:
c1:c7:5e:be:2c:ee:44:59:12:8a:70:38:3b:ba:16:8a:e5:f3:
b6:c6:dc:5d:ba:d1:d1:93:71:72:aa:48:ce:37:35:b5:03:d7:
cb:ca:a3:f5:5e:37:7c:c1:f2:bd:75:34:08:0c:ad:4a:c6:5c:
c7:90:29:7a:bf:36:02:85:d0:5a:6d:6f:17:e2:1f:0d:87:38:
98:88:cc:54:78:35:04:d1:f3:42:a8:ec:ad:fe:48:52:03:cc:
5e:f9:67:bd:71:b1:e8:ce:d7:da:4a:a6:69:38:df:e9:31:bf:
52:e6:7b:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 20:21:27 2024 by rpki-client on console-fra.rpki-client.org