Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38312e31372e3132332e302f32342d3234203d3e20323037313337.roa
File: 38312e31372e3132332e302f32342d3234203d3e20323037313337.roa (raw, json)
Hash identifier: 3Iz4K0t5MUShw0dE/sLkRVUZNPQSCW6Uj3Edidpu0Ow=
Subject key identifier: 64:09:A0:0B:E7:26:4A:F3:EA:C3:38:95:A1:88:DE:0A:9A:26:94:5F
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 5D603D0C668C28F621913CDB0BCEA215987FEEAF
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38312e31372e3132332e302f32342d3234203d3e20323037313337.roa
Signing time: Wed 21 Jun 2023 11:51:46 +0000
ROA not before: Wed 21 Jun 2023 11:46:46 +0000
ROA not after: Wed 19 Jun 2024 11:51:46 +0000
asID: 207137
IP address blocks: 81.17.123.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 08:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:60:3d:0c:66:8c:28:f6:21:91:3c:db:0b:ce:a2:15:98:7f:ee:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jun 21 11:46:46 2023 GMT
Not After : Jun 19 11:51:46 2024 GMT
Subject: CN=6409A00BE7264AF3EAC33895A188DE0A9A26945F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:2a:4f:3f:c7:36:86:06:9c:ab:9f:2f:a4:a4:
ab:28:83:14:90:01:40:49:c1:35:4a:f9:ed:38:e0:
84:ab:08:c7:67:30:a3:21:fd:39:9f:53:51:74:04:
f6:a9:ad:4e:7d:70:4d:86:7b:03:b9:b2:ea:37:6c:
21:91:34:7e:49:7a:e4:3d:4c:c4:56:57:ad:38:33:
35:e6:75:d7:63:e1:ee:ec:91:80:5a:a4:d0:2e:ca:
38:07:87:14:dc:ab:6e:62:0e:a1:29:9e:fc:66:bc:
2f:97:bb:db:46:db:0c:09:74:29:3b:80:37:f1:e6:
b3:8e:6f:ca:e2:85:49:85:a5:36:79:d7:b8:ba:66:
9f:55:91:ce:df:95:10:58:7c:7b:ce:73:5b:44:5f:
c5:e6:66:d2:08:0a:2e:4c:59:bf:80:e5:46:ea:9c:
da:41:74:17:94:ec:dc:81:73:cc:91:da:c5:47:e8:
be:9e:98:7a:aa:70:75:8d:b5:ba:e3:54:25:3e:7c:
6e:df:ca:87:80:ee:f7:a9:d5:55:9a:57:a9:93:e7:
9c:a8:c2:b4:d5:13:35:a4:42:9e:52:cc:4c:bc:a8:
9c:ea:9b:c4:4c:a1:ff:78:f9:b6:c9:77:2b:81:e2:
9e:42:8c:af:db:62:97:2c:6d:63:89:c7:80:24:d9:
f9:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:09:A0:0B:E7:26:4A:F3:EA:C3:38:95:A1:88:DE:0A:9A:26:94:5F
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38312e31372e3132332e302f32342d3234203d3e20323037313337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.17.123.0/24
Signature Algorithm: sha256WithRSAEncryption
02:cd:44:e3:3d:8a:72:bb:49:2c:bb:e4:8f:3c:5c:ef:52:4f:
b3:6c:f9:4d:96:22:05:5c:4c:2a:9e:7e:f3:fe:a6:9b:fb:9f:
1c:db:72:21:c8:5b:04:d6:21:5f:73:5d:4c:c3:02:2b:de:aa:
0b:f4:72:40:3c:d3:a1:86:67:91:45:52:ac:b5:23:1b:86:40:
e3:2d:91:90:07:4f:6c:51:61:da:dd:ff:d4:3e:df:7d:53:dc:
aa:5a:a3:cb:db:a1:03:6c:24:fb:fa:bd:9a:b0:df:0d:e6:ca:
0d:09:4f:4e:6e:42:a5:62:fe:83:4e:e1:2b:33:2b:dd:f5:6e:
d1:12:a8:5e:f7:64:3f:a7:85:7e:f0:28:20:56:1e:f2:ca:ca:
a0:9b:81:fc:4b:6a:72:2e:a2:e8:5f:66:b2:21:6f:54:fb:18:
07:f3:81:79:12:0d:cd:7c:f5:f4:eb:4c:43:0a:69:a3:bf:d5:
0b:09:db:d4:12:27:28:28:fa:19:9e:19:6f:d3:a7:bc:53:2d:
99:b4:e0:29:b4:dd:da:b4:90:1f:7e:a8:ce:f8:bf:0a:f9:a6:
6c:7e:08:a0:b3:af:8e:c2:c2:6a:e5:97:f2:d5:22:4c:53:30:
2a:96:8b:48:04:b7:25:28:c2:6c:84:8b:06:64:fd:d4:0a:c4:
d2:46:3e:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 14:35:47 2024 by rpki-client on console-fra.rpki-client.org