Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139322e3134352e38332e302f32342d3234203d3e203631333137.roa
File: 3139322e3134352e38332e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: Ul3ijg/sQg6DEn3ooDnwSPYJuVhw1Iibi9gnkC2T8g4=
Subject key identifier: 5D:F4:C2:C1:3B:E3:13:1C:0D:C8:DD:CA:B4:FE:34:D8:1D:A1:61:1D
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 2D71984D7568AF65FC0D87E76AA79EF371A7C096
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139322e3134352e38332e302f32342d3234203d3e203631333137.roa
Signing time: Fri 20 Oct 2023 13:41:43 +0000
ROA not before: Fri 20 Oct 2023 13:36:43 +0000
ROA not after: Fri 18 Oct 2024 13:41:43 +0000
asID: 61317
IP address blocks: 192.145.83.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:71:98:4d:75:68:af:65:fc:0d:87:e7:6a:a7:9e:f3:71:a7:c0:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Oct 20 13:36:43 2023 GMT
Not After : Oct 18 13:41:43 2024 GMT
Subject: CN=5DF4C2C13BE3131C0DC8DDCAB4FE34D81DA1611D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:34:03:e5:0b:cf:cb:fa:83:22:08:75:e1:40:
6d:12:20:68:2b:3c:8b:23:07:0d:5c:e1:50:e5:aa:
0c:e6:ca:da:c1:f1:17:30:ad:e9:06:0a:bf:a9:88:
62:15:35:56:90:ee:d6:52:cd:62:83:88:2e:fb:75:
77:a2:af:a9:20:df:a7:1c:d4:4a:ff:23:da:2a:b5:
c0:bb:bd:0b:f9:03:63:65:d4:ed:3b:e7:6e:e7:6d:
d7:72:75:9c:f9:90:42:17:44:5e:ed:2c:50:4a:b5:
dd:b8:5e:aa:1e:ca:07:7a:62:0d:7c:d5:6a:0c:49:
ab:31:ba:d2:ed:2f:e5:98:cd:fb:f1:86:4a:95:dc:
64:48:2c:e7:74:0f:cd:d4:8e:b6:68:bf:95:f5:21:
52:c2:a4:34:f1:a3:c6:09:0f:4f:bb:b3:26:3c:e1:
47:f3:47:3a:c0:b2:9e:19:45:cd:70:ea:55:8f:10:
28:7f:fd:d1:80:6c:3c:18:94:88:9c:d5:92:65:eb:
fb:51:9c:c1:10:a8:bb:bb:83:32:c5:b2:db:fc:a0:
5d:fd:1a:0c:be:4e:51:a8:8d:d4:44:10:df:f7:d6:
5d:1d:2e:8e:45:9d:da:cc:7f:8e:38:b8:08:4e:df:
e9:7f:6a:5c:6e:32:7c:6f:7f:af:58:39:56:1a:0e:
79:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:F4:C2:C1:3B:E3:13:1C:0D:C8:DD:CA:B4:FE:34:D8:1D:A1:61:1D
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139322e3134352e38332e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.145.83.0/24
Signature Algorithm: sha256WithRSAEncryption
97:ba:cb:ec:b0:d7:6d:39:47:c1:10:f6:71:0e:66:03:46:c0:
d0:5f:27:33:e8:7f:c2:6e:d3:d6:46:28:56:8e:38:ee:e4:4e:
ef:ba:46:a1:25:af:c7:b5:64:36:0c:a9:64:7d:7a:4b:d3:bb:
a2:44:26:7a:62:8c:18:56:9f:b7:db:aa:58:d6:c6:4a:d7:86:
b7:51:7c:a6:22:8b:a6:3e:94:11:c9:02:e3:3b:bd:7b:00:1e:
8c:8e:85:fd:ab:43:2e:f9:c8:c7:c7:a1:9c:ca:c0:38:e5:ee:
af:6c:16:d9:c7:e7:f8:2f:ba:8a:b7:aa:e9:6b:c1:c9:8e:2c:
fe:34:4d:37:84:b4:ad:d4:08:f5:a7:09:a6:8b:20:80:26:6b:
59:c1:ca:e7:56:81:32:a2:16:3e:38:a0:78:2a:e3:89:1f:42:
19:5d:3b:33:f3:59:f5:68:80:ba:dc:26:5e:23:d2:c7:58:d0:
c5:93:9b:e3:5f:a6:d8:ca:84:91:d4:30:fd:fc:5f:7b:b3:77:
38:d8:cf:0d:68:f0:68:1f:3a:e4:20:f4:8d:a5:5d:58:d2:cc:
f5:68:43:ed:2a:07:3e:12:f5:87:d1:6b:b6:b1:20:e6:3c:66:
5c:a5:fe:80:6d:2e:a7:ed:9a:8c:ef:8b:39:12:65:d1:28:04:
b6:6e:96:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 11:36:57 2024 by rpki-client on console-fra.rpki-client.org