Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/38332e3135302e3231362e302f32322d3234203d3e203631333137.roa
File: 38332e3135302e3231362e302f32322d3234203d3e203631333137.roa (raw, json)
Hash identifier: 57aAYCaE5TgSVJlVlCOXKPFo7D7BRt8yiBp9fnzIrpI=
Subject key identifier: AC:20:DB:3E:EB:F8:95:99:90:8B:34:5B:E7:DE:C1:F8:22:9F:21:30
Certificate issuer: /CN=5e5179bb1757068d7028510feeb1177aa7cc8818
Certificate serial: 7F9738BE4C9D29EF2C06F60420639DE3C342C8A6
Authority key identifier: 5E:51:79:BB:17:57:06:8D:70:28:51:0F:EE:B1:17:7A:A7:CC:88:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XlF5uxdXBo1wKFEP7rEXeqfMiBg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/38332e3135302e3231362e302f32322d3234203d3e203631333137.roa
Signing time: Thu 07 Nov 2024 17:43:27 +0000
ROA not before: Thu 07 Nov 2024 17:38:27 +0000
ROA not after: Thu 06 Nov 2025 17:43:27 +0000
asID: 61317
IP address blocks: 83.150.216.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/5E5179BB1757068D7028510FEEB1177AA7CC8818.crl
rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/5E5179BB1757068D7028510FEEB1177AA7CC8818.mft
rsync://rpki.ripe.net/repository/DEFAULT/XlF5uxdXBo1wKFEP7rEXeqfMiBg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:97:38:be:4c:9d:29:ef:2c:06:f6:04:20:63:9d:e3:c3:42:c8:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e5179bb1757068d7028510feeb1177aa7cc8818
Validity
Not Before: Nov 7 17:38:27 2024 GMT
Not After : Nov 6 17:43:27 2025 GMT
Subject: CN=AC20DB3EEBF89599908B345BE7DEC1F8229F2130
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:93:95:4e:f9:21:28:70:bb:7f:3b:6f:a1:d6:
03:c3:21:5b:7f:bf:03:3a:b8:de:65:ec:44:bf:d7:
ac:d1:12:45:10:d7:06:2d:51:dd:a6:6a:8a:93:22:
c4:9f:b7:e8:c5:28:41:6d:70:3f:0f:4a:f3:5f:27:
77:f3:b1:37:82:b7:f8:c7:5f:84:33:6b:fe:18:44:
b5:7f:1c:2a:85:7a:e7:84:97:6c:39:68:d5:f6:30:
d2:47:23:dd:d0:bf:bf:79:26:ca:7f:0c:cf:38:cf:
b5:bb:0f:b6:8a:d6:12:d5:f0:8d:2f:23:90:c5:ed:
b0:30:ce:24:32:ad:63:85:a2:9e:61:0f:9f:d2:40:
0b:70:57:22:27:07:6e:93:37:99:7d:98:fd:05:e9:
f2:b7:ee:c2:26:b1:7b:c0:90:ee:aa:49:39:d6:2e:
dd:11:9a:84:9c:8d:d7:42:c3:d2:a2:fd:fe:da:4b:
92:7b:c2:ff:44:aa:6d:a2:5f:29:67:90:f5:46:fe:
17:70:1d:40:f5:c9:cf:c9:36:ce:ca:e1:e6:97:dd:
46:3a:75:d4:e4:ce:a6:0d:8f:b9:8b:f2:94:ea:d0:
91:34:b7:cf:3c:df:71:f0:14:fa:a7:6c:55:f0:80:
31:1d:3a:54:3f:24:8e:66:10:66:4b:d0:d5:b8:4e:
5a:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:20:DB:3E:EB:F8:95:99:90:8B:34:5B:E7:DE:C1:F8:22:9F:21:30
X509v3 Authority Key Identifier:
keyid:5E:51:79:BB:17:57:06:8D:70:28:51:0F:EE:B1:17:7A:A7:CC:88:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/5E5179BB1757068D7028510FEEB1177AA7CC8818.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XlF5uxdXBo1wKFEP7rEXeqfMiBg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/38332e3135302e3231362e302f32322d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.150.216.0/22
Signature Algorithm: sha256WithRSAEncryption
68:29:8f:2b:ef:71:68:9b:b1:32:a5:dd:fb:43:26:05:e2:21:
ee:f7:8b:eb:38:8c:e0:91:d4:d3:64:23:b9:9c:36:35:b9:66:
43:99:b9:b3:c0:cf:a0:6a:3c:a5:6d:94:6a:0e:0d:b9:8a:86:
d9:dd:4e:af:0e:f8:8c:22:f8:b9:85:bf:06:e5:40:41:19:bb:
07:50:b0:50:3b:3f:b4:be:30:fc:ca:c8:32:de:f6:96:ad:71:
46:6a:fa:a4:79:b6:69:ca:c1:4f:f7:71:03:65:15:3a:a4:d8:
c8:c2:ab:8e:af:fa:3e:72:78:92:9c:15:f6:0f:9c:6b:89:bc:
0b:48:0b:f6:8c:46:bc:9b:ed:63:b0:39:bb:4e:53:e6:86:9a:
c1:c1:f9:46:9d:23:3b:ff:20:24:1a:06:55:d6:36:b9:3b:ef:
dc:25:d0:a4:84:8c:35:3c:48:e5:89:c7:1e:48:09:12:d5:3c:
68:f8:8a:14:ac:5b:19:64:85:26:af:da:bf:46:43:34:a5:ec:
95:e3:0a:46:cc:2e:61:c0:1e:fe:71:cb:16:e6:44:94:19:da:
74:0a:5d:7d:50:60:50:fe:dc:c5:d3:11:21:0c:c6:25:13:a0:
d4:dd:7b:a1:cd:6e:b9:e6:f3:4f:dd:29:18:5e:cb:f4:6b:36:
5d:86:53:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 11:56:51 2024 by rpki-client on console-ams.rpki-client.org