Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/38332e3135302e3231372e302f32342d3234203d3e20323132353034.roa
File: 38332e3135302e3231372e302f32342d3234203d3e20323132353034.roa (raw, json)
Hash identifier: EYMH7CjdMy9JP9JNDcl6zZaDx4KYYmlLE/oQCuakPqQ=
Subject key identifier: FF:05:B6:8D:12:3E:70:48:12:BA:1D:35:3B:1A:08:FD:55:88:15:84
Certificate issuer: /CN=5e5179bb1757068d7028510feeb1177aa7cc8818
Certificate serial: 09CAE2AAE2F52F28221F1B8E54D035704520B4C3
Authority key identifier: 5E:51:79:BB:17:57:06:8D:70:28:51:0F:EE:B1:17:7A:A7:CC:88:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XlF5uxdXBo1wKFEP7rEXeqfMiBg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/38332e3135302e3231372e302f32342d3234203d3e20323132353034.roa
Signing time: Mon 08 Jul 2024 18:05:18 +0000
ROA not before: Mon 08 Jul 2024 18:00:18 +0000
ROA not after: Mon 07 Jul 2025 18:05:18 +0000
asID: 212504
IP address blocks: 83.150.217.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/5E5179BB1757068D7028510FEEB1177AA7CC8818.crl
rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/5E5179BB1757068D7028510FEEB1177AA7CC8818.mft
rsync://rpki.ripe.net/repository/DEFAULT/XlF5uxdXBo1wKFEP7rEXeqfMiBg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:ca:e2:aa:e2:f5:2f:28:22:1f:1b:8e:54:d0:35:70:45:20:b4:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e5179bb1757068d7028510feeb1177aa7cc8818
Validity
Not Before: Jul 8 18:00:18 2024 GMT
Not After : Jul 7 18:05:18 2025 GMT
Subject: CN=FF05B68D123E704812BA1D353B1A08FD55881584
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:e6:18:1e:c7:f9:5c:84:2d:53:01:eb:cb:bd:
03:78:6d:a7:0c:74:e4:f1:a2:e7:91:81:97:ed:c0:
d9:18:c5:6f:7e:c6:cc:f8:d2:fb:1d:10:6c:fe:bd:
95:a6:05:21:9c:7a:39:c7:db:96:8a:c1:e6:30:61:
ff:c8:e7:d9:9f:c7:86:44:40:78:bd:7f:57:77:99:
ce:56:33:0d:d0:92:9b:eb:83:dd:25:40:e9:5b:64:
18:e0:24:0d:07:95:8d:6d:7e:b5:d3:3c:d7:f0:ce:
18:1f:69:bd:d1:f0:22:3d:ee:f5:9c:2e:66:c8:07:
b0:de:c6:70:5d:7b:9f:d6:13:bc:44:55:37:81:e1:
87:25:f0:db:d7:e0:dd:70:c1:cd:5b:ec:c4:10:d9:
8b:0a:5c:15:40:32:12:75:de:22:84:5e:ab:a4:f3:
2e:16:1d:9a:04:83:9a:f9:39:b2:18:b9:8a:a0:0f:
1b:e2:93:59:8e:1f:34:a7:21:f3:81:66:58:ba:64:
89:29:93:90:17:06:b4:ca:55:4b:48:a4:bc:59:6e:
00:69:ea:61:ed:21:60:9c:93:24:e7:00:a8:47:df:
49:dd:01:61:fa:da:58:f0:e7:44:d1:ef:a1:14:37:
86:70:8c:8f:20:4c:0b:f5:db:79:b8:b3:87:fd:f8:
a4:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:05:B6:8D:12:3E:70:48:12:BA:1D:35:3B:1A:08:FD:55:88:15:84
X509v3 Authority Key Identifier:
keyid:5E:51:79:BB:17:57:06:8D:70:28:51:0F:EE:B1:17:7A:A7:CC:88:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/5E5179BB1757068D7028510FEEB1177AA7CC8818.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XlF5uxdXBo1wKFEP7rEXeqfMiBg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/38332e3135302e3231372e302f32342d3234203d3e20323132353034.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.150.217.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:59:1b:78:98:b2:5d:69:d8:b7:e9:82:87:e1:c4:9a:65:4d:
f1:cb:d8:02:81:61:e9:73:a6:cd:f6:e9:ec:9c:d1:8a:a8:be:
f0:f9:5e:77:eb:8e:a5:5f:a3:04:b6:96:95:47:a4:8d:cf:f1:
43:f9:68:1e:5b:ee:60:4b:88:d2:eb:17:75:78:2d:81:08:03:
2f:4b:22:31:c6:1b:0e:8c:28:25:b7:0b:47:f6:e2:68:a1:60:
e1:8d:90:df:f5:37:31:75:7f:3e:7d:23:9b:0c:38:f7:30:4f:
15:04:72:a3:cc:73:fa:5b:81:32:81:ac:69:cb:63:67:38:a9:
c4:89:ba:e2:47:e1:3d:38:1b:cb:a5:5f:3e:6b:b3:56:ad:3b:
e6:dd:7f:e8:cc:0e:7f:cc:6d:91:7b:00:c4:3b:b5:d8:5f:0b:
85:ef:cf:0a:c2:6e:64:b0:03:d2:fc:c0:61:4a:fe:10:6e:cb:
14:f2:e4:42:23:f5:f7:ce:b5:cc:ef:60:5d:77:6a:8a:bb:8e:
e7:02:85:f5:d0:81:40:1a:c2:23:d4:0a:dd:9a:29:07:3b:de:
96:f5:3a:97:4a:e1:ba:db:0e:d6:55:f3:e0:ce:87:ff:a9:60:
5d:79:55:51:0d:71:15:ce:ba:c6:00:d7:40:53:18:96:b5:e2:
8a:49:24:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:59:14 2024 by rpki-client on console-ams.rpki-client.org