Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38382e3231382e3230302e302f32342d3234203d3e203539323533.roa
File: 38382e3231382e3230302e302f32342d3234203d3e203539323533.roa (raw, json)
Hash identifier: ZECdWscydD3AFmm8ltivHtoDlQz0595UWGGCSSJOHMM=
Subject key identifier: F2:4A:81:A9:BC:A7:61:2A:EF:AC:2D:9F:FE:23:38:AA:71:3C:44:BF
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 4F2DBA2705BE50D04036811A3627B85A330B6F58
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38382e3231382e3230302e302f32342d3234203d3e203539323533.roa
Signing time: Wed 25 Oct 2023 20:15:36 +0000
ROA not before: Wed 25 Oct 2023 20:10:36 +0000
ROA not after: Wed 23 Oct 2024 20:15:36 +0000
asID: 59253
IP address blocks: 88.218.200.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 16:11:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:2d:ba:27:05:be:50:d0:40:36:81:1a:36:27:b8:5a:33:0b:6f:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Oct 25 20:10:36 2023 GMT
Not After : Oct 23 20:15:36 2024 GMT
Subject: CN=F24A81A9BCA7612AEFAC2D9FFE2338AA713C44BF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:39:dc:08:ed:25:df:e6:44:c4:ad:f2:76:e4:
a1:f6:90:a8:9e:8b:0e:37:e7:38:95:61:ab:e3:11:
19:c9:b0:d1:4f:86:c3:45:05:78:ca:fc:29:5e:e6:
11:dc:74:ae:49:af:35:b5:3c:22:1b:b0:e8:65:a0:
51:a1:14:9f:91:ed:e1:c0:25:70:dc:96:1a:d8:f5:
dd:f7:9c:f0:cd:2b:2f:0b:22:07:16:bf:7e:84:d3:
b4:da:86:9d:35:8c:34:d9:ac:19:8c:c4:47:ce:55:
f1:a5:42:e3:82:2d:dc:cb:6b:98:aa:8b:55:be:40:
40:24:03:a8:51:fd:1e:b9:55:70:5c:f5:5a:e5:f3:
1a:89:55:ac:cc:db:84:46:a8:f6:28:b3:d9:73:b3:
5c:48:c0:97:ec:b6:56:f9:46:85:58:e1:b7:6b:29:
b6:dd:da:e8:78:52:95:cc:aa:12:5b:ca:ed:fb:06:
ab:a5:13:ee:ff:67:22:8a:3f:e1:fd:dc:58:57:d5:
b2:7b:b8:3a:d9:52:87:32:be:53:32:5e:c3:0b:a2:
6c:1c:83:32:cb:04:b7:51:7c:9a:07:7a:d7:66:aa:
a0:77:bd:62:99:e4:07:bf:84:e8:25:9d:5e:c1:a4:
e0:2c:dd:b7:42:85:42:30:78:78:48:eb:be:88:bb:
9b:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:4A:81:A9:BC:A7:61:2A:EF:AC:2D:9F:FE:23:38:AA:71:3C:44:BF
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38382e3231382e3230302e302f32342d3234203d3e203539323533.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.200.0/24
Signature Algorithm: sha256WithRSAEncryption
97:0c:27:f1:db:85:da:4a:58:cd:8e:45:09:d8:a0:6a:d2:07:
77:f1:d1:28:6f:48:82:65:39:1a:a8:19:d1:17:ac:a4:6f:41:
a2:c4:3a:e4:ee:c5:c5:be:b0:ac:96:53:ce:43:69:b6:61:49:
ca:d8:02:8c:2a:f4:36:86:ee:61:28:f0:ed:01:90:3e:a5:c4:
4d:cc:74:22:ce:20:6c:15:b5:4e:26:68:6e:a9:09:3c:b6:8b:
27:9f:63:5b:72:8d:cc:de:2c:93:8b:3c:2d:fa:b1:f3:3e:ee:
65:0e:9e:be:25:b3:72:15:66:42:c3:eb:5b:8f:29:02:db:f8:
6d:42:37:cb:70:f9:43:50:27:4f:c4:ba:8b:00:f1:64:07:92:
63:33:af:9e:01:e2:19:2f:cf:cd:c2:43:cc:a6:80:a6:b1:14:
05:2b:a9:54:80:59:0e:80:36:07:93:89:73:f9:3e:d3:70:8c:
c2:3a:96:7b:d0:c5:81:1a:20:7e:87:14:2c:ec:3e:92:b9:b3:
48:c4:4a:54:9c:78:d0:3a:fe:46:f7:d5:3f:a5:de:24:da:39:
07:84:16:2a:1e:c5:a4:36:50:47:5a:f4:9d:4d:90:e6:b3:fa:
f2:9a:c3:db:be:2b:44:1b:8d:bc:ca:a4:f6:72:4f:5a:c3:15:
9e:a8:f5:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 19:28:05 2024 by rpki-client on console-fra.rpki-client.org