Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/33312e3138372e36352e302f32342d3234203d3e20323031333431.roa
File: 33312e3138372e36352e302f32342d3234203d3e20323031333431.roa (raw, json)
Hash identifier: j5uPCfTvbTWZYdTxehbKAwOFwDXxBIsMgp3VXSPa7F0=
Subject key identifier: E8:56:B6:73:C2:51:ED:78:4A:8C:DC:67:2A:00:2E:59:68:98:9F:05
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 6510700D4F060F09B17220C5A9704395011986DE
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/33312e3138372e36352e302f32342d3234203d3e20323031333431.roa
Signing time: Mon 26 Feb 2024 08:53:17 +0000
ROA not before: Mon 26 Feb 2024 08:48:17 +0000
ROA not after: Mon 24 Feb 2025 08:53:17 +0000
asID: 201341
IP address blocks: 31.187.65.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 08:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:10:70:0d:4f:06:0f:09:b1:72:20:c5:a9:70:43:95:01:19:86:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Feb 26 08:48:17 2024 GMT
Not After : Feb 24 08:53:17 2025 GMT
Subject: CN=E856B673C251ED784A8CDC672A002E5968989F05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:37:0b:a7:d5:e1:5f:32:ab:a0:b3:b4:ba:cb:
e6:7a:01:85:0b:ec:cd:52:d7:b5:d9:92:11:d9:57:
32:69:d3:e4:7b:5e:00:b9:c5:bf:81:5e:30:5b:8e:
01:fc:34:2f:ce:34:2f:2d:4a:a0:e8:37:ef:87:d8:
07:94:d1:bf:36:55:02:14:86:12:75:8d:9d:2e:e8:
f3:47:35:4d:cc:37:06:9e:a8:0f:b7:58:96:06:9c:
0b:c7:59:0a:7e:2b:ea:58:f4:d4:b2:c6:16:a6:1d:
14:3e:92:b9:18:c0:d2:94:f3:c7:f2:3e:40:ba:c7:
91:24:88:ee:d2:1f:7b:5b:bd:1f:6f:31:64:d9:45:
b5:5f:2a:3a:18:8a:d0:1d:0e:67:5f:2d:f0:24:e8:
43:6c:27:b0:0c:fc:a4:30:00:fd:c3:b0:50:30:dd:
ea:47:15:6d:17:2e:7e:f1:c9:77:e9:bc:58:cc:c1:
f2:14:4c:20:1c:12:16:4a:ab:f4:41:65:6d:bb:7d:
c4:fb:7d:a9:92:4f:f1:2d:a3:be:f2:77:a9:1c:de:
57:26:2f:8f:98:00:f2:7d:e9:09:03:39:41:b2:d4:
1c:b8:3c:5b:87:6d:34:ab:a4:12:fb:40:ae:46:58:
d4:da:c8:89:78:8f:ac:0b:28:79:3d:8d:db:2e:c5:
a2:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:56:B6:73:C2:51:ED:78:4A:8C:DC:67:2A:00:2E:59:68:98:9F:05
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/33312e3138372e36352e302f32342d3234203d3e20323031333431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.187.65.0/24
Signature Algorithm: sha256WithRSAEncryption
12:4a:29:cd:41:bd:15:ea:36:2d:d6:a2:0a:63:12:23:8a:b4:
3a:dc:c3:d8:ba:12:51:f1:6c:bd:95:09:4e:e7:43:01:f4:dd:
9a:ba:d3:6a:dd:a2:73:33:ae:dc:89:ea:23:06:f4:0b:f2:2f:
60:06:e3:41:88:08:25:bf:fc:5b:ba:f4:d4:18:53:4c:d8:be:
e4:ff:2a:0e:6c:aa:a8:0a:3f:2f:36:0f:64:80:c6:06:b4:ac:
39:99:39:83:48:b2:f6:b2:2d:3d:e7:13:df:5e:4f:4d:a2:1c:
d2:be:d1:f0:d9:4a:10:db:0a:30:b3:f7:7e:c0:a6:da:a3:8e:
a2:cf:61:62:bd:d6:d1:c8:6c:63:80:3a:71:c4:23:3d:0a:bc:
16:8b:60:70:bf:7a:61:b8:86:95:90:fc:af:a0:05:85:18:4c:
a1:d3:74:09:ba:82:c1:61:fd:cd:cf:c5:0f:a0:99:db:23:d4:
94:0b:37:13:78:7b:ee:9b:28:ec:40:1a:fa:b0:31:a1:49:c7:
b5:9c:76:7a:a3:2b:d5:34:16:aa:1d:3e:57:d1:ed:7c:c0:5f:
9a:c9:3c:0f:f2:73:1f:aa:c2:71:be:b4:6f:72:56:19:ac:f0:
42:e1:21:db:31:3c:6b:4a:d7:6c:25:54:8a:1a:25:9b:76:14:
9e:57:f5:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 13:47:07 2024 by rpki-client on console-ams.rpki-client.org