Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/38352e3233372e3230352e302f32342d3234203d3e203432393632.roa
File: 38352e3233372e3230352e302f32342d3234203d3e203432393632.roa (raw, json)
Hash identifier: N6HfiMR1aCWXH35Vkwffe9RlRbYQl9QdJZ+epB7qr6U=
Subject key identifier: 54:6B:DB:32:F8:01:35:39:75:1A:1A:E8:A7:6B:19:87:2C:A2:E8:97
Certificate issuer: /CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Certificate serial: 3D3A0441293978759F5F7BC411148FFF95F7DD68
Authority key identifier: DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/38352e3233372e3230352e302f32342d3234203d3e203432393632.roa
Signing time: Wed 08 Nov 2023 09:21:25 +0000
ROA not before: Wed 08 Nov 2023 09:16:25 +0000
ROA not after: Wed 06 Nov 2024 09:21:25 +0000
asID: 42962
IP address blocks: 85.237.205.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.mft
rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 07 Jun 2024 17:11:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:3a:04:41:29:39:78:75:9f:5f:7b:c4:11:14:8f:ff:95:f7:dd:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Validity
Not Before: Nov 8 09:16:25 2023 GMT
Not After : Nov 6 09:21:25 2024 GMT
Subject: CN=546BDB32F8013539751A1AE8A76B19872CA2E897
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ed:4f:72:86:d7:f8:27:b4:4a:b0:3c:22:a8:
22:c8:3e:94:76:34:ea:58:2a:44:1a:d9:f6:24:fa:
a5:ef:4f:0d:25:aa:bb:db:cf:b2:bd:bd:bf:bb:a4:
29:53:d5:df:07:e3:cc:c3:e1:1b:b1:a2:0d:71:de:
5c:00:11:9a:15:7f:a3:ed:d4:16:d6:f7:93:a8:86:
5a:7a:c3:4a:61:73:c5:34:a0:13:37:60:cf:58:d1:
71:d2:b2:fe:7c:44:32:7f:03:89:ea:bc:93:d5:91:
ba:c3:8c:b8:ff:74:a9:e3:46:83:97:a9:87:c7:15:
c7:15:c7:6c:15:ca:35:92:a8:f3:e0:31:b1:ff:0c:
6e:58:ac:6f:d9:a9:aa:c5:c3:05:a3:da:a1:67:12:
3d:24:e2:6b:05:45:72:19:12:25:5b:69:c1:88:23:
68:bf:af:89:49:27:3d:2c:b7:07:61:35:91:fc:aa:
01:69:2d:4d:ca:bf:dd:df:a0:b7:9d:14:c8:16:4b:
e0:4d:ab:94:79:9e:b2:0b:46:d1:5d:ae:04:37:c9:
26:22:a8:05:3d:a3:33:80:71:9f:e0:b2:67:b3:06:
b1:41:50:82:96:0a:05:4c:a9:88:88:52:7b:e2:5f:
c6:ae:ea:75:9b:f1:db:c1:17:14:23:fe:79:5c:2e:
48:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:6B:DB:32:F8:01:35:39:75:1A:1A:E8:A7:6B:19:87:2C:A2:E8:97
X509v3 Authority Key Identifier:
keyid:DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/38352e3233372e3230352e302f32342d3234203d3e203432393632.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.205.0/24
Signature Algorithm: sha256WithRSAEncryption
33:16:e4:5f:e6:ba:b2:6d:0c:b1:72:b6:0b:8f:5c:36:30:47:
74:72:3f:d8:01:c6:1c:75:29:3f:b4:78:53:a9:7c:05:56:9a:
7e:89:0a:c1:67:24:d2:ad:69:22:4f:39:97:9e:d6:47:44:ca:
12:7e:d3:96:bc:29:65:83:5c:65:f7:9e:e1:29:d2:0e:3a:c4:
4f:5e:6b:51:0f:81:83:e6:65:7a:30:82:ac:ff:12:83:6e:a0:
35:17:e2:b0:4b:7f:bb:f8:4f:a7:a0:b8:5a:d4:84:4c:40:6e:
a3:59:8d:a7:94:73:89:84:17:47:56:61:a1:68:86:34:6c:55:
44:8b:74:77:4e:1f:03:41:ab:4e:65:03:f2:29:5c:1c:d8:27:
dc:5a:23:9b:b0:b0:f4:cd:57:d7:a8:1d:ba:7d:71:8f:cb:04:
0d:6c:83:36:2b:3a:67:d5:51:23:f9:5d:e3:24:e3:c2:03:9f:
92:05:dc:98:69:42:8b:59:d9:08:b9:bf:8b:bf:41:79:07:23:
d6:ab:df:83:35:09:38:07:ac:3b:42:19:65:b5:67:26:08:d8:
76:85:8c:cd:1a:60:87:ea:df:a9:12:fc:de:e1:dc:94:0c:81:
e0:f6:63:7d:95:49:28:28:b1:98:61:b1:d8:fd:11:15:18:74:
04:e0:26:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 23:20:33 2024 by rpki-client on console-ams.rpki-client.org