Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/38322e3134302e3138392e302f32342d3234203d3e203135343139.roa
File: 38322e3134302e3138392e302f32342d3234203d3e203135343139.roa (raw, json)
Hash identifier: /R73oyZwtycfOIardsCBqBElyZyLAge3FIVtq7MzkqA=
Subject key identifier: 75:A1:43:B5:59:E7:C4:0B:CE:60:D7:F8:10:2B:2C:C0:9E:04:9E:13
Certificate issuer: /CN=9df85997b1b9b358e1c43f36765aa0a4a02144ae
Certificate serial: 64E239187C205A09F1C892F7DA6BE83B8BBA0525
Authority key identifier: 9D:F8:59:97:B1:B9:B3:58:E1:C4:3F:36:76:5A:A0:A4:A0:21:44:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/38322e3134302e3138392e302f32342d3234203d3e203135343139.roa
Signing time: Fri 07 Jun 2024 09:01:55 +0000
ROA not before: Fri 07 Jun 2024 08:56:55 +0000
ROA not after: Fri 06 Jun 2025 09:01:55 +0000
asID: 15419
IP address blocks: 82.140.189.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl
rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft
rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:e2:39:18:7c:20:5a:09:f1:c8:92:f7:da:6b:e8:3b:8b:ba:05:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9df85997b1b9b358e1c43f36765aa0a4a02144ae
Validity
Not Before: Jun 7 08:56:55 2024 GMT
Not After : Jun 6 09:01:55 2025 GMT
Subject: CN=75A143B559E7C40BCE60D7F8102B2CC09E049E13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:3a:89:0f:63:e9:00:4a:89:06:7d:52:22:1d:
07:7f:28:06:6a:65:32:d4:1f:88:68:95:d6:0e:25:
4d:28:12:dd:7e:92:8c:36:5f:13:d2:f1:91:a4:85:
ad:71:68:64:14:1a:ba:31:eb:01:af:09:d4:de:4b:
2c:56:b5:98:c6:a2:74:8f:f4:e4:86:48:95:17:89:
52:51:07:e9:c0:53:82:7c:5a:ae:90:14:6d:62:ad:
2b:ef:41:fd:a8:e8:32:d9:5b:f1:8d:07:83:40:3e:
c2:d0:85:0e:68:bb:57:32:c0:f5:f9:f3:de:9b:fc:
f0:4a:d9:52:31:86:4f:68:ce:e4:c5:47:14:01:55:
85:89:a7:b5:4a:b0:b4:c2:f9:ad:67:18:22:58:65:
30:dc:11:b6:40:a5:2a:6f:2d:73:d5:cf:ac:8c:df:
41:25:32:fc:f5:2c:da:d6:27:1b:aa:50:95:0f:f6:
2c:d4:4a:99:a8:aa:60:05:55:a1:5f:e7:45:53:1b:
c1:67:bc:90:7e:aa:c2:45:62:e2:ee:5d:e3:83:17:
c1:00:19:73:01:f9:96:28:fa:33:3b:5e:73:8f:8c:
e6:f7:20:1c:35:b5:79:bb:2e:a9:53:f2:ba:93:6b:
0e:84:dc:d4:7b:d8:e1:94:d5:e7:49:52:48:7e:0e:
8f:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:A1:43:B5:59:E7:C4:0B:CE:60:D7:F8:10:2B:2C:C0:9E:04:9E:13
X509v3 Authority Key Identifier:
keyid:9D:F8:59:97:B1:B9:B3:58:E1:C4:3F:36:76:5A:A0:A4:A0:21:44:AE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/38322e3134302e3138392e302f32342d3234203d3e203135343139.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.140.189.0/24
Signature Algorithm: sha256WithRSAEncryption
66:54:12:3d:33:07:c8:8f:f0:21:f5:38:dc:fb:44:28:fa:d5:
4a:37:c2:ee:03:b9:0c:6f:9b:e3:71:12:26:49:65:c9:fc:43:
ad:3f:63:9a:f6:1f:e5:e9:38:2b:af:73:29:11:d6:f4:6c:db:
65:69:9f:cc:ad:50:89:ca:e5:08:6d:0a:27:cf:49:ef:88:ee:
37:da:53:bc:ca:89:60:29:42:f8:8f:4d:b5:34:ef:65:4a:14:
53:29:4d:19:bb:1d:02:74:2b:1f:d4:94:07:12:f5:b3:4a:7d:
f5:bd:88:a5:48:02:5c:55:97:0c:26:c9:c6:6b:11:7c:76:30:
a0:17:63:1b:55:eb:63:7a:5c:3b:ed:58:2e:8a:0e:e5:73:a4:
1e:79:32:b4:49:48:1d:56:e4:af:ed:9f:b4:75:81:a0:ff:7e:
7f:66:e6:89:f2:23:d6:8c:cd:41:a3:de:34:26:a7:65:fe:06:
af:70:7e:17:84:99:ab:8d:ae:fc:f2:0a:d9:28:62:d8:aa:19:
18:65:ed:95:5d:22:11:73:78:7f:9d:a9:73:30:46:6e:94:7e:
f2:2c:c4:d6:3c:4c:ab:b5:86:08:16:d9:23:ea:78:3a:de:02:
83:50:22:ae:04:66:02:d5:1a:6d:1b:dc:7b:8c:ff:5b:b4:ff:
07:2c:af:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:58:15 2024 by rpki-client on console-ams.rpki-client.org