Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/39312e3232392e3234352e302f32342d3332203d3e203531313637.roa
File: 39312e3232392e3234352e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: udKRxsiJrpLNydDJehvE8Ar+tuzjiojzMm81/mhCTlc=
Subject key identifier: E5:F3:C6:E0:1D:27:53:27:DF:83:13:EE:E6:98:69:DB:AE:40:B8:80
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 67E8041DD939ED72A631389D199EF3F41DE8EEF1
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/39312e3232392e3234352e302f32342d3332203d3e203531313637.roa
Signing time: Wed 27 Sep 2023 13:40:11 +0000
ROA not before: Wed 27 Sep 2023 13:35:11 +0000
ROA not after: Wed 25 Sep 2024 13:40:11 +0000
asID: 51167
IP address blocks: 91.229.245.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 16:11:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:e8:04:1d:d9:39:ed:72:a6:31:38:9d:19:9e:f3:f4:1d:e8:ee:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Sep 27 13:35:11 2023 GMT
Not After : Sep 25 13:40:11 2024 GMT
Subject: CN=E5F3C6E01D275327DF8313EEE69869DBAE40B880
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:05:cd:ac:e2:7c:ad:75:75:ad:b5:9d:62:74:
9b:db:e1:1b:7c:ad:a5:99:fe:38:d0:93:60:d3:a2:
bc:8f:6f:e1:a6:fc:cd:44:5d:e4:f3:3f:05:32:17:
50:17:6e:52:15:ab:a4:e0:17:0c:bb:98:c3:7a:06:
8c:fa:21:d5:d8:cd:79:60:a9:ed:52:43:e6:0b:45:
d9:75:67:10:02:00:03:ba:f1:15:60:26:14:12:42:
76:8b:1d:af:33:4a:db:ec:e2:eb:8f:07:80:ca:d0:
98:57:42:65:f3:c8:45:f9:19:02:ac:9c:c5:db:2b:
a3:6b:fc:0e:a5:47:b5:5d:d8:87:a8:88:8c:89:13:
6a:02:e8:bd:00:83:89:d4:64:7a:2e:d9:9e:a9:c8:
ec:a5:27:af:a8:72:0f:c1:53:c9:15:6f:49:59:91:
26:1b:43:64:e6:83:3b:0b:e7:0e:aa:e8:d2:b1:e5:
58:40:6d:ed:d9:de:22:6c:8d:69:a2:b4:a4:18:44:
c4:56:e0:ee:78:93:7c:53:87:1e:a1:a0:df:e9:c0:
57:cb:36:aa:4b:82:ff:91:79:6c:94:9b:a9:94:2c:
22:37:95:20:06:9a:a2:b2:66:c7:53:35:f4:e5:70:
cd:ed:03:a3:8e:ad:a0:48:d7:67:b0:b7:27:00:da:
eb:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:F3:C6:E0:1D:27:53:27:DF:83:13:EE:E6:98:69:DB:AE:40:B8:80
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/39312e3232392e3234352e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.229.245.0/24
Signature Algorithm: sha256WithRSAEncryption
64:14:6a:33:ef:58:84:03:da:0b:0a:54:1a:0e:0a:94:92:b5:
b1:3e:10:f9:1f:19:16:06:c0:54:0f:49:36:97:12:05:a6:ac:
35:28:85:ce:e0:5d:fe:f9:88:1c:3b:31:65:a3:7b:d2:d7:ae:
2c:82:fa:2d:86:43:7d:54:a4:56:fb:df:19:27:3b:c0:60:b8:
c1:a4:1e:38:77:7d:a3:a5:eb:8f:a2:34:dc:f6:bf:13:71:a8:
75:ac:49:5f:ff:2e:b2:1a:71:56:53:0b:0d:92:9a:71:eb:38:
29:51:a9:28:5d:81:a6:42:ce:66:cd:31:58:91:2b:79:bc:5b:
01:a4:83:39:43:b5:50:f8:23:00:89:90:2d:68:c0:2d:f9:78:
d6:41:37:ed:55:49:61:76:c2:59:49:3a:15:b2:f3:c4:a4:2d:
41:de:37:11:a6:a4:5c:66:4e:8f:40:c9:a7:7f:1a:44:b4:33:
c6:5c:11:0f:9f:6d:0b:fc:26:4f:bb:70:18:3b:13:bf:37:be:
f9:db:17:09:1a:bf:97:b0:42:5b:b4:83:55:7b:90:b9:e1:56:
75:11:df:9d:ed:82:5e:d6:75:56:91:f8:64:68:bd:59:4c:21:
9c:23:c7:c2:ae:ea:f4:97:fd:9e:a2:d7:bb:eb:74:06:22:29:
75:10:57:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 20:18:11 2024 by rpki-client on console-ams.rpki-client.org