Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38352e33312e3233362e302f32322d3234203d3e203437353833.roa
File: 38352e33312e3233362e302f32322d3234203d3e203437353833.roa (raw, json)
Hash identifier: zFPwEk+HmqUFldNCo2NkyNdojsxKwK8dHN5bnNX+19M=
Subject key identifier: A2:BC:16:3D:56:23:BD:98:5A:7D:74:F5:5E:83:D1:B9:D1:3C:19:46
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 78FD23BFFCB6E437D80A10C99615BDAA420D85D9
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38352e33312e3233362e302f32322d3234203d3e203437353833.roa
Signing time: Fri 18 Aug 2023 06:43:49 +0000
ROA not before: Fri 18 Aug 2023 06:38:49 +0000
ROA not after: Fri 16 Aug 2024 06:43:49 +0000
asID: 47583
IP address blocks: 85.31.236.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 08:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:fd:23:bf:fc:b6:e4:37:d8:0a:10:c9:96:15:bd:aa:42:0d:85:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Aug 18 06:38:49 2023 GMT
Not After : Aug 16 06:43:49 2024 GMT
Subject: CN=A2BC163D5623BD985A7D74F55E83D1B9D13C1946
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:4f:07:e1:42:1e:b6:39:01:a0:a8:05:16:41:
7b:1f:c3:5b:da:82:34:47:92:5f:3f:e1:09:72:4a:
a5:3a:06:2f:c1:f2:8b:8c:d0:83:12:e1:f5:7b:f7:
7a:fe:09:8f:d9:9f:e6:8a:3d:50:0b:1d:99:fc:c8:
06:be:ab:ea:57:82:14:ab:f1:d8:8f:4c:80:f1:56:
01:67:2a:a3:96:c1:5d:82:cb:e1:9c:0a:43:9b:d3:
98:e6:c4:55:9a:07:12:1f:77:f6:d8:a8:36:93:ee:
7c:7e:60:e7:4c:6b:2a:f6:d7:ac:af:85:08:ef:97:
b5:f2:7c:76:be:2c:c0:02:44:ca:3c:e4:11:fa:35:
ad:69:ed:c4:e6:f0:a4:e2:a1:29:83:8b:63:17:fa:
91:84:9d:43:f2:30:2a:fc:98:43:2a:ca:4d:b5:47:
02:df:b8:5c:56:55:39:4f:50:4b:f0:b0:5a:fb:b6:
b3:6c:f3:ad:e2:c9:f9:9d:b9:37:12:da:37:8f:6a:
a0:32:7a:6d:26:ef:01:41:fc:c1:d7:3a:6a:84:47:
5b:23:c8:f1:b1:8b:49:94:5f:fc:06:94:92:18:a3:
c6:9d:48:96:c0:cb:e3:b7:f9:62:e2:1c:1b:6c:40:
30:dc:8f:83:da:b8:e2:e2:73:29:19:6c:bd:e8:1c:
e3:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:BC:16:3D:56:23:BD:98:5A:7D:74:F5:5E:83:D1:B9:D1:3C:19:46
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38352e33312e3233362e302f32322d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.31.236.0/22
Signature Algorithm: sha256WithRSAEncryption
7e:84:fc:fb:3c:4a:12:f8:a8:5a:17:b1:df:a5:46:d2:fa:a9:
1b:7b:4e:de:9e:ef:5f:8d:ab:3e:0c:a1:67:6d:fb:a0:08:04:
2c:fd:b8:29:2b:d7:32:ae:1f:41:1e:a0:16:9e:79:8b:d6:14:
fd:d2:03:75:70:57:54:49:0d:b0:2d:13:67:f8:a3:4d:03:94:
65:c2:43:ff:04:ab:b1:80:a4:7b:7d:4a:81:37:02:e1:a8:ad:
b1:5f:72:3c:ed:29:88:8e:62:b6:75:e9:5c:1f:d2:14:03:f2:
3c:36:38:98:ba:fe:c6:04:ac:9b:28:cb:35:c7:98:fe:0b:41:
d3:3c:be:62:a2:b6:7a:38:2f:46:80:60:8e:48:c2:7f:2c:43:
e2:de:a2:6c:6a:8c:09:40:c8:26:79:36:8d:ba:a1:92:b4:12:
2a:e6:e3:5d:84:ef:68:f6:10:da:84:93:38:d0:a6:7c:66:09:
7d:57:79:cd:36:38:06:85:55:2b:21:9a:0b:cd:93:95:df:41:
6a:d0:f6:69:b6:3f:ac:98:ab:0e:8b:28:11:90:88:e7:ba:63:
7c:f9:d6:93:68:56:05:13:93:81:4d:fa:f3:7a:2c:6d:a7:78:
48:a0:0b:6f:fc:0b:b5:70:ad:a1:a4:1e:4a:71:bf:90:e6:e2:
4e:c4:0d:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 13:47:07 2024 by rpki-client on console-ams.rpki-client.org