Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3139372e36382e302f32322d3332203d3e20313431393935.roa
File: 38322e3139372e36382e302f32322d3332203d3e20313431393935.roa (raw, json)
Hash identifier: 4P6ZNutyhUNbIbedI+lXLEL2whZcU9YQR/R9gzB9jE4=
Subject key identifier: 35:BB:4F:D2:4C:98:94:A7:2F:3C:F9:F3:18:ED:D5:2B:55:20:D4:B0
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 42C25EA0D53D8536DD4038BC1FE70930187FD832
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3139372e36382e302f32322d3332203d3e20313431393935.roa
Signing time: Thu 04 Apr 2024 20:36:20 +0000
ROA not before: Thu 04 Apr 2024 20:31:20 +0000
ROA not after: Thu 03 Apr 2025 20:36:20 +0000
asID: 141995
IP address blocks: 82.197.68.0/22 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 16:11:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:c2:5e:a0:d5:3d:85:36:dd:40:38:bc:1f:e7:09:30:18:7f:d8:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Apr 4 20:31:20 2024 GMT
Not After : Apr 3 20:36:20 2025 GMT
Subject: CN=35BB4FD24C9894A72F3CF9F318EDD52B5520D4B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:98:99:a7:cd:ab:9b:10:78:06:e3:87:f9:1e:
08:65:9f:47:72:d9:24:3c:6d:a3:0b:5f:a8:3c:da:
5e:ee:e2:fa:a3:30:ab:70:77:1a:0a:ee:4e:57:d2:
be:1c:5d:6d:21:74:50:6c:c6:6d:31:83:6c:61:72:
77:b8:8a:97:a0:55:33:0b:ed:25:30:6f:9d:14:2a:
ac:71:e6:05:4d:45:80:da:1b:d2:3c:12:20:e1:74:
d6:05:12:e7:98:66:e2:3e:5f:de:21:2a:4e:fd:ec:
85:f6:d4:30:33:88:84:e5:2b:2f:d8:d7:80:16:96:
0a:a7:34:ca:97:eb:a2:2e:59:cd:78:9a:5e:13:7a:
84:05:f4:a0:ee:3a:62:ba:dd:55:5c:11:f5:6d:22:
58:c9:24:eb:a3:7c:4f:40:5d:f5:9b:7f:cd:2c:85:
59:8e:98:e6:34:84:31:53:1b:04:53:f8:e5:72:30:
6e:58:7f:8b:e5:f2:f3:4b:cd:d4:67:c1:6c:a2:d3:
57:01:81:07:8c:0c:94:35:df:aa:8c:36:ba:96:83:
05:0b:6d:0e:a5:e1:20:c6:4a:37:15:64:17:12:78:
ce:8d:de:80:7b:ac:61:23:8a:14:d7:8a:58:e0:44:
be:1f:12:81:d6:d0:5c:4b:ef:bf:3e:44:de:e6:ef:
9b:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:BB:4F:D2:4C:98:94:A7:2F:3C:F9:F3:18:ED:D5:2B:55:20:D4:B0
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3139372e36382e302f32322d3332203d3e20313431393935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.197.68.0/22
Signature Algorithm: sha256WithRSAEncryption
18:d2:be:1b:ba:54:f2:2d:ac:a2:ca:8b:ae:ed:55:5b:34:a6:
31:76:a3:4d:3b:5f:e8:ac:8e:f9:0b:93:ca:84:86:c3:b5:36:
7d:51:69:b9:ce:1b:12:51:10:94:d6:b5:98:b7:1c:c6:76:57:
75:b6:c9:10:aa:ad:a0:f0:f6:9c:17:7b:e8:6c:ed:5d:98:4e:
06:f9:e2:f8:3b:02:a2:e9:11:ea:32:09:9c:6e:ce:7b:c9:b3:
ae:bf:82:84:8a:64:db:00:23:8b:5e:ff:16:ba:43:71:81:36:
24:6e:a2:fb:12:72:70:3c:bd:1d:d7:54:c2:25:ff:c1:21:83:
50:5f:dc:98:3c:d2:04:48:39:72:35:ad:7d:5d:5a:3c:10:5b:
aa:73:62:10:19:35:10:f1:5c:c1:01:8a:7b:d9:2f:8f:27:7b:
6a:7b:e6:36:cc:82:79:e5:0b:cd:5c:08:88:60:0a:a9:c1:1a:
a6:8c:a0:8c:57:5c:1c:63:a3:dc:e9:43:c5:2f:87:bc:49:56:
ca:b4:4f:3e:7b:a7:87:c5:8b:af:f9:72:d4:66:f7:23:6d:1a:
d4:a1:97:ff:a8:c5:df:08:0b:bc:10:2e:b5:1b:b2:af:3f:f9:
c1:d7:02:ce:f1:45:56:8e:e2:62:7c:d7:ba:8f:db:4d:3d:d3:
fe:ff:a0:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 20:18:10 2024 by rpki-client on console-ams.rpki-client.org