Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/38332e3135302e3231362e302f32342d3234203d3e203630353538.roa
File: 38332e3135302e3231362e302f32342d3234203d3e203630353538.roa (raw, json)
Hash identifier: lzsV2+CvdRQWkxx4Hw3iV6yt2JgkApUFCcPnO0HFJOM=
Subject key identifier: E4:DC:4C:57:BC:B8:70:42:FF:ED:AC:4D:63:E8:94:0C:5A:F5:E3:F7
Certificate issuer: /CN=5e5179bb1757068d7028510feeb1177aa7cc8818
Certificate serial: 2937A047F467BC0BE9C18B40F3823B7A8360119E
Authority key identifier: 5E:51:79:BB:17:57:06:8D:70:28:51:0F:EE:B1:17:7A:A7:CC:88:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XlF5uxdXBo1wKFEP7rEXeqfMiBg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/38332e3135302e3231362e302f32342d3234203d3e203630353538.roa
Signing time: Fri 29 Dec 2023 15:05:08 +0000
ROA not before: Fri 29 Dec 2023 15:00:08 +0000
ROA not after: Fri 27 Dec 2024 15:05:08 +0000
asID: 60558
IP address blocks: 83.150.216.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/5E5179BB1757068D7028510FEEB1177AA7CC8818.crl
rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/5E5179BB1757068D7028510FEEB1177AA7CC8818.mft
rsync://rpki.ripe.net/repository/DEFAULT/XlF5uxdXBo1wKFEP7rEXeqfMiBg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:37:a0:47:f4:67:bc:0b:e9:c1:8b:40:f3:82:3b:7a:83:60:11:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e5179bb1757068d7028510feeb1177aa7cc8818
Validity
Not Before: Dec 29 15:00:08 2023 GMT
Not After : Dec 27 15:05:08 2024 GMT
Subject: CN=E4DC4C57BCB87042FFEDAC4D63E8940C5AF5E3F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:e1:d8:0d:37:d9:fc:91:bf:38:05:07:6f:82:
fd:07:3d:10:e6:5c:84:27:b6:8b:15:93:53:8a:4f:
5f:0c:96:25:16:4d:a5:b9:87:3f:2b:33:ee:14:ab:
0f:ca:c3:50:d2:65:52:27:ee:99:54:1f:6b:55:7f:
ea:6a:2e:fe:ff:3b:bb:15:aa:b9:aa:a6:88:f3:e1:
21:ec:8e:d0:64:d9:04:b2:4c:b9:f3:f1:de:dc:af:
67:a9:38:4b:be:84:ef:d3:2a:8e:ef:7e:7f:65:81:
a3:b7:86:3b:b7:d9:48:85:88:4c:34:fb:33:b0:d9:
9c:77:65:c1:9b:4d:f2:06:37:d1:e5:49:97:3f:1a:
fd:ab:c6:b9:e1:19:49:11:31:d9:1a:3c:4f:44:43:
d7:53:89:c0:ce:50:0b:56:a5:03:a0:f5:d3:f5:be:
56:cb:cd:73:88:ca:ac:bf:f9:ee:9c:f1:f2:2b:c5:
80:68:1e:4f:19:80:e6:75:73:92:eb:0c:8f:76:15:
3a:38:d5:3c:bb:39:ef:65:ad:77:d1:25:80:74:30:
c1:54:5e:d7:d5:b1:cc:06:3b:c2:5c:9c:67:8c:7f:
2f:50:f2:01:a3:8d:97:bd:c3:a3:75:b1:6b:0f:15:
99:3c:f8:e6:25:91:95:8a:7a:45:8d:25:38:b1:6a:
67:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:DC:4C:57:BC:B8:70:42:FF:ED:AC:4D:63:E8:94:0C:5A:F5:E3:F7
X509v3 Authority Key Identifier:
keyid:5E:51:79:BB:17:57:06:8D:70:28:51:0F:EE:B1:17:7A:A7:CC:88:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/5E5179BB1757068D7028510FEEB1177AA7CC8818.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XlF5uxdXBo1wKFEP7rEXeqfMiBg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/38332e3135302e3231362e302f32342d3234203d3e203630353538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.150.216.0/24
Signature Algorithm: sha256WithRSAEncryption
92:47:79:27:dc:c5:5b:58:a4:a7:84:48:68:7a:f5:d9:2e:d2:
a1:69:d6:b7:a9:c8:de:de:0a:b1:4a:2c:6f:15:13:78:ee:9f:
d4:7d:d3:22:4d:bd:e6:3c:54:ce:3c:56:ed:bd:b2:43:e5:c1:
b1:1a:7e:5d:e5:c5:c0:fb:93:e5:b5:b8:e6:8f:c1:de:15:e0:
b1:7e:74:98:7f:1d:ad:48:99:25:fe:9d:83:80:43:e5:60:b4:
cf:f8:a9:7e:41:e5:d2:a9:ae:7d:b2:da:ff:63:5e:b1:74:b0:
c9:e1:1a:32:a5:73:26:f9:de:f1:33:68:23:5e:90:80:85:50:
db:66:76:49:89:02:69:2e:55:79:ca:94:a2:76:5b:72:58:9a:
6e:78:69:93:84:c0:ec:bd:ea:92:b1:f8:f3:3a:c4:9c:86:ea:
09:38:52:3e:b1:8a:ad:a3:92:c4:f7:a4:a1:ac:2c:32:b2:9e:
36:84:3d:4b:b4:69:51:e7:cc:b1:cf:9f:d7:23:7a:6a:f6:01:
f3:ee:7a:bb:88:9c:7d:ec:55:dc:ec:4b:2e:f8:31:04:02:02:
e0:4e:b4:0e:dd:a1:17:c1:8c:ff:28:78:15:d7:c4:a9:f5:43:
c8:19:8e:5b:00:e4:dd:8d:fa:e2:4f:0e:1b:81:7f:b9:67:38:
c5:a8:55:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:59:14 2024 by rpki-client on console-ams.rpki-client.org