Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3138352e39332e33332e302f32342d3234203d3e2037303138.roa
File: 3138352e39332e33332e302f32342d3234203d3e2037303138.roa (raw, json)
Hash identifier: /6/pkFqTdd2wdhH4fOWY48mCbn7EhGdR4vy0imj50PA=
Subject key identifier: 5C:BA:B0:83:8E:0E:2E:32:3C:C3:76:A7:64:57:FD:2B:5D:67:57:66
Certificate issuer: /CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Certificate serial: 5B757314B45D7D595BC793C192722A432B1ABED2
Authority key identifier: DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3138352e39332e33332e302f32342d3234203d3e2037303138.roa
Signing time: Wed 08 Nov 2023 09:20:58 +0000
ROA not before: Wed 08 Nov 2023 09:15:58 +0000
ROA not after: Wed 06 Nov 2024 09:20:58 +0000
asID: 7018
IP address blocks: 185.93.33.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.mft
rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:75:73:14:b4:5d:7d:59:5b:c7:93:c1:92:72:2a:43:2b:1a:be:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Validity
Not Before: Nov 8 09:15:58 2023 GMT
Not After : Nov 6 09:20:58 2024 GMT
Subject: CN=5CBAB0838E0E2E323CC376A76457FD2B5D675766
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:b2:12:16:01:50:6d:7c:6e:92:35:33:32:50:
24:8c:90:66:64:42:f0:5e:db:e0:4e:89:c7:b6:86:
52:d7:6b:33:20:45:3a:cf:92:0a:5b:39:5e:f1:51:
43:e2:e2:16:c4:47:f7:93:7c:e9:60:11:a8:33:67:
9d:ab:50:4b:8f:8a:b8:01:3d:a2:fc:44:eb:e0:7b:
ac:fe:61:06:11:c9:79:31:f3:bb:70:49:31:64:67:
4e:00:c9:6b:0c:7a:00:2c:f4:d8:45:83:86:16:24:
f1:51:1f:ec:12:0b:54:b1:df:c5:7e:62:cb:f0:3d:
33:b2:c3:4d:8d:4f:26:fd:f3:f6:f8:9b:a8:ee:a8:
4b:08:ea:9f:f4:7f:3a:19:65:35:0c:9e:cc:7c:c4:
b0:9d:d1:87:bb:37:25:a6:5f:2b:f9:52:dc:57:20:
67:2a:dc:26:9c:16:4a:3d:c2:fb:e0:ea:83:11:3b:
d1:8a:24:08:fe:1e:3a:1b:cd:5d:25:4f:bf:a6:94:
bb:04:ed:12:0f:d5:17:43:b0:89:ba:a7:89:db:4d:
24:20:7e:4c:cb:8f:f1:df:ed:94:df:d9:d9:26:3d:
9e:ca:e1:30:93:e6:d9:f7:c8:d2:44:db:0c:c2:aa:
0c:cf:1b:f2:17:92:06:b1:ef:14:e1:d2:cd:66:73:
7a:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:BA:B0:83:8E:0E:2E:32:3C:C3:76:A7:64:57:FD:2B:5D:67:57:66
X509v3 Authority Key Identifier:
keyid:DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3138352e39332e33332e302f32342d3234203d3e2037303138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.93.33.0/24
Signature Algorithm: sha256WithRSAEncryption
61:5f:f2:9c:37:66:e9:b4:48:df:9b:e1:5d:13:0b:35:c0:67:
a0:0d:11:90:d3:5d:70:ce:9c:81:de:c8:2d:24:e0:eb:7e:93:
c2:2c:4d:d1:d8:6d:ba:f4:f1:88:08:34:f0:b9:b7:12:3a:4b:
5d:e3:9f:06:af:50:c7:a3:33:3b:88:2f:83:b2:99:f4:0d:2f:
5d:0b:dc:d1:13:71:1b:ad:cf:84:00:46:39:47:48:e2:11:dd:
f3:ff:22:09:ba:1f:5c:b8:d6:68:e6:1b:cc:c6:04:66:f7:ba:
be:5a:88:ca:be:01:fd:6f:99:80:20:b3:8f:c7:7f:fb:0a:55:
88:a8:85:b8:9e:e4:8a:97:e6:35:82:7e:c8:50:65:06:0d:3a:
90:be:68:31:0d:54:38:ab:14:c1:77:be:74:4e:a1:97:4d:31:
62:1c:06:bb:f4:73:4e:71:f7:11:b9:07:eb:8c:dc:49:24:2e:
a3:51:f5:f8:36:40:25:c7:a5:f9:18:c5:32:2d:b3:c3:18:07:
2e:f8:90:b5:34:0f:15:eb:ed:16:26:b9:7a:e4:9f:43:0e:97:
cf:3e:c2:73:2a:94:7e:b2:25:95:b5:a5:b8:18:bc:c6:37:f5:
0f:a4:8a:9d:88:4a:92:98:56:2a:89:ee:99:05:55:77:ff:46:
97:29:5b:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:36:22 2024 by rpki-client on console-ams.rpki-client.org