Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3138352e38392e37372e302f32342d3234203d3e20323131333733.roa
File: 3138352e38392e37372e302f32342d3234203d3e20323131333733.roa (raw, json)
Hash identifier: LxAv42hVbQigZEs/KT5OQJdqJi65SEBRCwUPQ+0T+gA=
Subject key identifier: AA:56:94:F3:F7:E0:0A:03:9D:B1:39:17:53:05:F2:FE:F3:A8:72:6D
Certificate issuer: /CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Certificate serial: 09C4D3C2F4887C65FE0E1125A1FA0AFC9632F0E2
Authority key identifier: DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3138352e38392e37372e302f32342d3234203d3e20323131333733.roa
Signing time: Wed 08 Nov 2023 09:23:52 +0000
ROA not before: Wed 08 Nov 2023 09:18:52 +0000
ROA not after: Wed 06 Nov 2024 09:23:52 +0000
asID: 211373
IP address blocks: 185.89.77.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.mft
rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 May 2024 20:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:c4:d3:c2:f4:88:7c:65:fe:0e:11:25:a1:fa:0a:fc:96:32:f0:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Validity
Not Before: Nov 8 09:18:52 2023 GMT
Not After : Nov 6 09:23:52 2024 GMT
Subject: CN=AA5694F3F7E00A039DB139175305F2FEF3A8726D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:3f:45:ef:f9:27:ed:8b:70:36:82:10:84:ed:
d7:fe:c0:f3:f6:c5:93:f0:78:f7:be:cf:10:b3:01:
0c:1e:cb:b8:19:85:3d:0f:79:a3:47:00:90:e0:ce:
24:27:65:2e:8d:b4:46:05:04:8a:7a:32:3a:2c:e8:
b7:bd:46:f4:9d:cc:44:f0:4e:63:bf:21:01:1e:74:
1d:4c:5f:be:e1:0e:b2:21:bd:47:ee:74:79:ca:36:
09:ac:e0:38:11:ce:9e:16:4d:b5:b5:6d:0c:b0:ec:
23:4e:ab:49:67:89:eb:00:f3:2c:a3:c1:7c:e2:73:
86:91:c7:0d:56:41:2f:ea:0d:bd:d3:60:a0:ee:4c:
49:2d:56:b8:b5:b8:c8:a8:dc:32:a9:bb:0c:d6:2d:
57:75:53:51:ed:d7:1f:5c:61:47:e9:f3:04:2d:58:
03:fd:20:20:20:11:5d:36:58:d4:90:54:3c:06:a8:
1b:de:27:32:86:cb:c8:b5:bf:70:86:13:9a:d4:e2:
cf:3f:d7:81:6c:72:93:37:55:d9:04:26:69:3c:dc:
e4:ed:9c:73:4b:e4:24:b3:19:60:34:a8:89:a7:1c:
44:9b:29:5d:75:8a:44:65:96:2d:f8:1d:71:62:24:
d0:0b:0a:55:e1:db:82:4c:f1:ac:25:8b:dc:40:67:
f0:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:56:94:F3:F7:E0:0A:03:9D:B1:39:17:53:05:F2:FE:F3:A8:72:6D
X509v3 Authority Key Identifier:
keyid:DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3138352e38392e37372e302f32342d3234203d3e20323131333733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.89.77.0/24
Signature Algorithm: sha256WithRSAEncryption
53:4b:16:11:9d:98:48:ce:b8:7f:02:7d:e5:90:33:e9:3f:10:
da:fb:fa:79:29:16:60:5b:fe:89:55:30:ae:44:a3:45:be:72:
64:72:f8:92:b0:d8:e2:cb:6f:c8:03:b1:bd:6c:90:16:9d:6a:
77:97:3c:12:af:53:d2:32:94:99:f4:85:9a:87:fd:32:71:e6:
46:36:d4:93:9d:90:05:66:c6:9e:9a:c8:2f:f3:0d:b3:cc:d8:
34:f0:d6:1e:3b:15:4c:ec:d5:25:00:58:21:41:aa:70:66:a4:
34:88:bd:0c:68:2a:e8:0e:d8:53:9e:36:a3:2c:0f:d5:cc:6e:
48:71:5d:f0:db:b4:cf:17:1f:43:21:c6:0e:10:4f:39:f0:8c:
cf:ba:2b:16:70:92:59:a8:b6:6d:19:cc:39:83:0d:9a:2d:e8:
cb:38:8b:bb:38:e3:d9:8a:e5:dc:5a:8e:2f:df:f7:7a:6c:50:
49:21:c5:45:fa:a8:37:75:a2:66:ed:b2:aa:7c:ee:85:6a:d6:
e8:f7:eb:c6:14:fd:e7:cd:f9:e9:51:41:5c:fc:11:66:fc:0f:
bc:1d:17:a8:49:96:7f:59:d3:91:b9:ab:c9:1e:a7:8f:8f:d1:
cf:dc:a3:a0:9a:72:29:0a:65:85:00:d8:a9:68:9a:45:28:32:
0a:eb:7c:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 23:30:57 2024 by rpki-client on console-fra.rpki-client.org