Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3139342e352e3135352e302f32342d3234203d3e20313336373837.roa
File: 3139342e352e3135352e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: gSy6C4tExgDxWzKUlT8c7xxRnssuVzhDnIYO2fnBDPE=
Subject key identifier: FD:51:AA:49:1F:97:B6:92:16:F9:73:5B:2B:E0:81:86:2D:59:10:C3
Certificate issuer: /CN=5d70845822a61408ec2a5fd580c132da777f09d1
Certificate serial: 208A10F5FC02E76CCA2DD2F3EA98F044538D6FA9
Authority key identifier: 5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3139342e352e3135352e302f32342d3234203d3e20313336373837.roa
Signing time: Mon 01 Apr 2024 14:03:21 +0000
ROA not before: Mon 01 Apr 2024 13:58:21 +0000
ROA not after: Mon 31 Mar 2025 14:03:21 +0000
asID: 136787
IP address blocks: 194.5.155.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.mft
rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:8a:10:f5:fc:02:e7:6c:ca:2d:d2:f3:ea:98:f0:44:53:8d:6f:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d70845822a61408ec2a5fd580c132da777f09d1
Validity
Not Before: Apr 1 13:58:21 2024 GMT
Not After : Mar 31 14:03:21 2025 GMT
Subject: CN=FD51AA491F97B69216F9735B2BE081862D5910C3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:65:b5:9a:0c:d7:af:6f:46:a2:ec:45:22:11:
29:aa:e6:3c:d7:a7:77:6f:64:33:00:79:f8:f9:77:
a2:7e:64:77:fa:4f:e0:8c:9b:78:53:24:d7:c9:ba:
c7:b3:70:c8:81:fb:8b:da:f2:d5:a9:9d:5e:ed:69:
57:d5:f0:a2:bf:c3:b5:22:e5:95:bb:80:41:77:71:
98:d4:3b:93:5e:ad:3a:8d:bb:cd:e4:4e:fb:0e:9d:
72:fa:30:12:0b:8e:a2:9d:50:73:fd:05:2d:1d:a2:
1b:df:a8:ea:2c:ad:24:93:63:8f:bb:0e:6d:86:40:
c4:5a:6a:03:2d:ef:9c:ab:33:07:58:d4:c9:c1:3c:
a4:88:cc:bb:2d:d9:9f:55:49:b1:11:e6:ab:bc:31:
cf:a1:d9:d5:cd:f3:d5:ef:b9:96:8a:3f:89:98:c7:
ee:4d:4f:a9:41:33:82:d5:6c:62:11:94:56:91:55:
cb:4e:63:8c:ed:f2:10:70:6f:8c:62:09:fe:4e:f1:
aa:0c:de:b4:b0:1d:e9:52:47:db:ae:ca:17:3c:d7:
79:36:61:41:05:8b:e1:2a:6b:db:58:62:ff:60:5b:
99:c5:11:b5:9a:a3:59:83:3a:44:6e:18:d8:16:f1:
e3:6d:ca:9d:7d:40:b4:68:33:3a:5a:3d:62:b0:aa:
18:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:51:AA:49:1F:97:B6:92:16:F9:73:5B:2B:E0:81:86:2D:59:10:C3
X509v3 Authority Key Identifier:
keyid:5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3139342e352e3135352e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.5.155.0/24
Signature Algorithm: sha256WithRSAEncryption
51:01:27:a0:a8:a2:c2:b1:e3:e5:01:02:5d:1a:51:36:e2:2c:
00:31:d6:e4:8e:c5:b3:6a:0a:bc:ff:af:cb:f4:60:53:29:a4:
f4:41:63:85:7b:64:a1:d7:ee:d5:b5:cb:ba:2d:8e:be:f4:d7:
b6:00:89:8e:93:38:66:3c:71:25:fe:17:2a:a4:4f:a7:6f:a3:
68:bc:75:d2:1e:92:4b:52:17:cb:b3:7b:c9:2c:84:01:4e:77:
99:9c:81:ee:63:4a:ba:4b:0b:5c:6b:f8:51:6a:65:d0:36:88:
06:b8:b5:fa:e2:79:7a:27:7d:08:f9:cd:01:4a:dc:70:75:8a:
b0:00:e0:5c:43:bf:ac:48:8e:0d:a8:e9:84:e2:27:1d:56:68:
c5:d9:25:f2:cd:92:cd:46:5c:b2:a9:57:ba:ce:20:99:ae:12:
80:21:b0:00:db:24:92:88:7d:c6:02:36:0a:4e:91:aa:b0:ef:
ce:6d:9c:5e:14:fb:5d:6f:be:11:c8:b0:f9:69:c8:30:0a:ce:
c6:1b:18:f5:57:65:73:12:d2:d8:2e:14:e8:07:98:80:fc:a9:
3e:13:03:d0:14:e7:6e:a7:92:a5:cb:6e:ce:9f:08:cb:e0:d6:
79:e8:51:56:2d:24:94:58:51:dc:12:af:7f:0a:70:dd:9e:af:
5e:eb:74:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:15:49 2024 by rpki-client on console-ams.rpki-client.org