Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/38352e3233372e3139342e302f32342d3234203d3e20323036303932.roa
File: 38352e3233372e3139342e302f32342d3234203d3e20323036303932.roa (raw, json)
Hash identifier: kBIPYbff2J1FAFISscmPAb/MTyWwhNRLAwrVplTk4eM=
Subject key identifier: E6:E5:BE:43:51:2E:73:55:28:51:F7:A6:05:16:91:05:8E:58:4C:A8
Certificate issuer: /CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Certificate serial: 2E0E27EAE998AAC9DAF6C6FB823F6A665A1D896D
Authority key identifier: DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/38352e3233372e3139342e302f32342d3234203d3e20323036303932.roa
Signing time: Wed 08 Nov 2023 09:23:17 +0000
ROA not before: Wed 08 Nov 2023 09:18:17 +0000
ROA not after: Wed 06 Nov 2024 09:23:17 +0000
asID: 206092
IP address blocks: 85.237.194.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.mft
rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 23:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:0e:27:ea:e9:98:aa:c9:da:f6:c6:fb:82:3f:6a:66:5a:1d:89:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Validity
Not Before: Nov 8 09:18:17 2023 GMT
Not After : Nov 6 09:23:17 2024 GMT
Subject: CN=E6E5BE43512E73552851F7A6051691058E584CA8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:e3:d3:f8:d8:e0:8e:1a:43:62:29:f7:11:b7:
24:db:15:13:8f:38:a2:2a:86:fd:ce:a5:f5:8c:32:
23:23:79:60:10:cb:ad:90:46:8a:43:37:4b:d6:dd:
58:59:67:27:91:ad:03:43:93:6e:48:26:e6:61:b4:
c1:58:74:b2:e4:ff:6b:31:ec:ec:f8:59:28:40:b9:
1e:78:d7:c2:c0:6e:f0:a2:7d:f5:dd:c0:25:09:b6:
a1:31:26:c8:d1:03:8f:48:9d:5b:b4:de:95:af:b9:
b9:99:18:d6:65:cb:68:dd:f2:7e:4e:25:81:cf:bb:
46:1e:11:74:a2:fc:44:a0:69:56:26:b6:5d:5e:d7:
c6:ae:84:3e:b9:95:b6:4f:5b:73:ab:bf:99:24:23:
e7:19:c9:97:50:a1:f1:df:ef:ef:ab:3a:8f:ea:8f:
27:06:eb:88:ef:28:6b:5c:07:f9:48:c1:ab:42:b1:
55:08:12:a7:27:a8:72:b6:07:99:28:8e:7c:7e:f6:
99:41:c4:2e:b4:50:94:0f:12:8d:dc:61:8a:ae:81:
c3:94:81:41:5c:89:17:6d:2a:60:03:02:dd:9a:e8:
c6:a5:5b:bd:e4:9d:83:fc:14:d4:29:75:8e:47:64:
31:7b:a2:e7:7c:b4:c4:28:ad:76:19:6d:45:d3:bb:
54:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:E5:BE:43:51:2E:73:55:28:51:F7:A6:05:16:91:05:8E:58:4C:A8
X509v3 Authority Key Identifier:
keyid:DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/38352e3233372e3139342e302f32342d3234203d3e20323036303932.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.194.0/24
Signature Algorithm: sha256WithRSAEncryption
78:38:a4:5c:da:c7:6a:e9:a9:12:a7:9c:36:96:70:11:b7:74:
3a:97:80:5c:9a:e3:69:a2:2f:a3:91:e9:a4:74:ab:40:d2:ad:
f4:a9:67:f4:5e:eb:1d:64:6e:81:0a:8d:0b:1e:12:e2:bb:b2:
31:ff:50:0e:11:27:78:55:bb:24:d7:5d:4e:ad:f0:04:68:ac:
f0:b2:c9:14:10:49:6b:d0:4d:f0:03:b1:e7:bf:71:62:94:f4:
92:b9:d4:24:e0:0f:2f:b9:c7:2e:e0:e7:07:e9:42:f3:74:be:
72:fa:60:cc:e1:88:7d:db:04:0b:92:59:35:f4:ff:2a:91:20:
f2:1b:9b:2b:7c:c5:d6:58:04:0f:45:6b:07:03:9a:a4:5b:d5:
37:84:55:92:66:dc:6d:5e:d3:7b:5d:4d:53:27:e3:36:88:bc:
6c:4b:b2:1a:10:01:09:fb:aa:86:9c:55:c2:a9:d9:b2:ac:70:
71:d6:51:77:e8:0b:73:ec:88:96:47:1b:fe:b4:18:fe:33:e9:
4f:22:db:25:d2:e7:0c:cc:c2:b5:58:e8:96:81:16:23:19:96:
5e:99:97:57:80:3a:16:c1:58:e8:1e:8a:06:c5:98:25:d6:df:
24:d7:bd:05:6d:e1:92:4e:28:d6:6e:a8:44:39:ab:c5:d5:ab:
10:a8:f7:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 06:34:42 2024 by rpki-client on console-fra.rpki-client.org