Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3139332e34362e3234302e302f32342d3234203d3e20313336373837.roa
File: 3139332e34362e3234302e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: tOkwhMXYIV3ys39NV3J2+8ju9lq7PPj3VWp1wl0mGVU=
Subject key identifier: 44:96:34:45:B2:2E:CB:26:34:11:BD:0B:95:C2:52:35:90:25:0B:9A
Certificate issuer: /CN=5d70845822a61408ec2a5fd580c132da777f09d1
Certificate serial: 15376918A8364CA3333AA003581EFE09C1B299F3
Authority key identifier: 5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3139332e34362e3234302e302f32342d3234203d3e20313336373837.roa
Signing time: Sun 11 Jun 2023 10:59:14 +0000
ROA not before: Sun 11 Jun 2023 10:54:14 +0000
ROA not after: Sun 09 Jun 2024 10:59:14 +0000
asID: 136787
IP address blocks: 193.46.240.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.mft
rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:37:69:18:a8:36:4c:a3:33:3a:a0:03:58:1e:fe:09:c1:b2:99:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d70845822a61408ec2a5fd580c132da777f09d1
Validity
Not Before: Jun 11 10:54:14 2023 GMT
Not After : Jun 9 10:59:14 2024 GMT
Subject: CN=44963445B22ECB263411BD0B95C2523590250B9A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:a6:b6:b8:30:e6:28:57:ff:40:d1:95:d8:d1:
c7:03:51:8f:94:b5:2a:dc:b5:c9:c9:21:a8:e1:a7:
5e:f4:7b:36:69:29:20:03:7b:47:34:10:9c:e4:7f:
e8:84:e1:f6:6f:8b:21:a4:3d:22:96:36:78:f6:6d:
05:6f:5b:96:bb:b7:34:b8:8a:ec:5e:47:a6:83:e7:
cd:c9:5f:5a:3f:87:c7:f9:cc:8c:ea:46:c6:b7:15:
ad:86:54:47:57:6a:f8:7b:33:1d:e5:70:98:8e:68:
12:b8:03:9c:c5:81:17:3e:da:35:1f:13:be:5f:b4:
d0:45:a5:79:5d:d2:b5:f1:cb:58:bf:0e:f7:4a:f0:
52:57:5c:cf:cf:be:a0:d0:16:19:16:89:3b:fa:42:
c8:35:c7:37:b0:1d:b9:03:09:e1:36:a4:27:7b:a1:
be:21:81:f5:50:c5:f1:b1:08:41:19:f9:c1:b0:9a:
4d:5e:70:08:cf:cc:76:3c:d9:25:75:8e:af:eb:fe:
71:88:1f:81:70:26:2d:f7:7b:1d:ec:86:55:d4:02:
21:eb:f6:67:f5:42:19:94:17:98:7d:60:cc:62:d6:
74:a9:ac:23:ca:19:ed:47:e0:9e:10:21:8f:37:81:
d6:f4:d8:7e:27:c8:4b:59:7c:c8:75:f6:fb:19:7c:
55:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:96:34:45:B2:2E:CB:26:34:11:BD:0B:95:C2:52:35:90:25:0B:9A
X509v3 Authority Key Identifier:
keyid:5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3139332e34362e3234302e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.46.240.0/24
Signature Algorithm: sha256WithRSAEncryption
83:ea:66:98:fc:68:10:74:07:a0:83:04:b8:98:c6:60:95:f7:
7d:9c:88:b9:6d:09:10:f7:aa:e3:2d:fa:3e:93:69:eb:f1:74:
7c:b5:a4:5c:73:ac:b1:eb:1d:f5:48:06:2c:1b:67:e9:a0:41:
1f:d0:40:c9:0f:68:69:8c:81:21:1d:bb:a7:e9:9f:b1:ab:5c:
95:ef:44:ca:57:7f:8a:96:6c:8a:94:ad:0e:a9:b0:dd:8c:3c:
dc:3d:ca:4f:0e:bd:06:9c:8b:12:fc:17:93:47:a0:87:2d:e7:
18:46:70:14:f5:6e:67:7a:09:6e:01:e0:7e:98:34:42:ee:36:
c4:52:1f:45:9e:34:f3:4b:a9:18:c2:4c:3b:e4:56:54:eb:c7:
97:e6:64:12:59:91:b0:d8:54:f6:74:2f:5d:26:44:62:f9:ed:
0a:03:c2:a1:52:74:81:79:89:5f:91:2f:1a:83:0f:7e:60:e6:
34:58:65:56:d3:9d:c3:a1:a8:28:f0:99:4f:16:38:e1:a3:d5:
8a:72:c0:55:49:2a:52:7e:05:4f:ec:15:bf:22:41:2a:47:89:
35:66:2e:3c:f6:9c:cf:9e:99:a9:ad:d5:15:8b:47:53:a6:f8:
8d:95:9d:16:16:ea:37:b3:60:1a:42:46:b7:d4:48:0f:1e:81:
b3:f8:0f:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 11:33:00 2024 by rpki-client on console-ams.rpki-client.org