Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3138302e3134392e302f32342d3234203d3e203633343733.roa
File: 38322e3138302e3134392e302f32342d3234203d3e203633343733.roa (raw, json)
Hash identifier: sqbFqH9OTfdbr54DjHbWrogx99u5owj3R/0hFRKQw9g=
Subject key identifier: C2:D2:BC:24:E4:A7:3F:67:8B:68:3B:9A:5E:6D:B5:E4:43:36:B6:56
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 4D90198B229CFFA0119228CFF1B476EE0E96611D
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3138302e3134392e302f32342d3234203d3e203633343733.roa
Signing time: Sat 10 Feb 2024 19:59:07 +0000
ROA not before: Sat 10 Feb 2024 19:54:07 +0000
ROA not after: Sat 08 Feb 2025 19:59:07 +0000
asID: 63473
IP address blocks: 82.180.149.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 08:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:90:19:8b:22:9c:ff:a0:11:92:28:cf:f1:b4:76:ee:0e:96:61:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Feb 10 19:54:07 2024 GMT
Not After : Feb 8 19:59:07 2025 GMT
Subject: CN=C2D2BC24E4A73F678B683B9A5E6DB5E44336B656
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:b0:3c:ba:3e:30:03:16:bd:a8:76:2b:6d:39:
30:2c:89:87:35:37:34:75:cc:a6:33:9a:9e:9d:1b:
bc:00:18:78:53:2b:a9:c0:99:ca:c6:4d:06:a4:74:
cb:38:14:d9:8d:92:05:0d:c7:17:ef:b1:ee:0b:3a:
28:bb:8e:b2:c6:5b:c9:4e:f5:7e:41:b9:d4:eb:b0:
8f:c3:df:f6:fb:7c:9e:83:58:2b:f7:34:32:51:a4:
4e:6c:2a:c4:89:17:33:47:7c:d0:33:23:d8:07:43:
2f:68:7b:51:91:0c:fd:f3:d3:e5:4a:1d:c2:d0:5a:
3b:01:a1:d9:48:62:f0:b5:24:e7:f6:0b:30:d0:a9:
67:d6:06:6d:35:8f:52:2e:97:24:a5:16:72:08:d9:
f2:7e:e0:66:75:6d:7e:8f:ee:4b:60:7b:d0:f0:67:
44:f1:29:4f:02:c0:7a:1e:33:da:6c:a9:ce:f7:8b:
33:63:dd:2a:79:4d:e9:54:dd:b0:69:81:13:3b:6a:
a7:bf:15:e8:fe:35:78:31:47:05:cb:5e:d6:27:bb:
ec:c6:95:96:2b:d3:6e:4c:de:a2:37:22:85:1e:05:
44:1f:fc:e2:09:e9:d8:68:b6:f2:fc:7e:16:46:c2:
08:e2:c9:04:de:f7:63:8b:a5:32:e5:d9:59:e2:c5:
4f:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:D2:BC:24:E4:A7:3F:67:8B:68:3B:9A:5E:6D:B5:E4:43:36:B6:56
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3138302e3134392e302f32342d3234203d3e203633343733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.180.149.0/24
Signature Algorithm: sha256WithRSAEncryption
33:2d:30:f0:0b:d8:a6:28:a4:b9:02:2c:04:b0:11:a5:c5:4e:
e0:01:f6:f7:0a:8b:ce:4d:10:32:13:af:30:36:9d:63:43:c1:
77:65:a2:23:57:24:05:d5:ec:8c:7c:f4:54:2a:a2:50:9b:38:
ef:91:12:06:fc:ff:d3:19:ad:4d:a6:62:fd:83:bf:6b:ba:cb:
b6:6a:dc:98:87:aa:9c:d8:4e:c8:26:55:80:d6:af:40:5c:a6:
d0:83:3c:e6:6a:91:e9:2c:e4:d9:24:60:63:a2:b9:24:ec:30:
cb:19:77:cf:f6:d0:69:78:2f:38:fd:b9:52:96:b5:cc:a2:14:
1f:4f:29:68:1d:f8:fe:bc:0b:12:07:28:fd:95:c9:d8:f6:e6:
44:6a:ad:e9:19:c6:fb:38:4f:74:60:6c:bf:b8:94:8a:81:19:
74:79:32:e1:2e:f5:56:f0:a6:51:13:d4:88:b6:93:d1:25:81:
74:5f:fb:a3:33:06:fb:48:f6:94:e3:ba:f0:24:20:01:e6:f7:
d2:ee:e0:d8:9d:01:87:85:f0:82:85:53:1f:f5:03:14:c6:93:
45:5f:6d:57:c2:f5:95:94:76:13:aa:5f:5a:c4:29:05:11:18:
f0:d9:bc:22:34:60:4a:a9:4a:fe:21:5c:22:15:a0:69:74:eb:
2e:92:fe:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 14:35:47 2024 by rpki-client on console-fra.rpki-client.org