Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/38332e3135302e3231372e302f32342d3234203d3e20323132353034.roa
File: 38332e3135302e3231372e302f32342d3234203d3e20323132353034.roa (raw, json)
Hash identifier: In0KiFLqEe00WMkMnB7sDX+0IaOzjOFpY6Xg4k+ovrU=
Subject key identifier: 72:A0:3A:78:C1:9E:2D:DF:1D:3D:AE:F0:DA:61:CD:9F:DA:E4:B1:F7
Certificate issuer: /CN=5e5179bb1757068d7028510feeb1177aa7cc8818
Certificate serial: 331BFCFC8A536788C4387679E262B306ABD165A9
Authority key identifier: 5E:51:79:BB:17:57:06:8D:70:28:51:0F:EE:B1:17:7A:A7:CC:88:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XlF5uxdXBo1wKFEP7rEXeqfMiBg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/38332e3135302e3231372e302f32342d3234203d3e20323132353034.roa
Signing time: Mon 07 Aug 2023 18:02:06 +0000
ROA not before: Mon 07 Aug 2023 17:57:06 +0000
ROA not after: Mon 05 Aug 2024 18:02:06 +0000
asID: 212504
IP address blocks: 83.150.217.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/5E5179BB1757068D7028510FEEB1177AA7CC8818.crl
rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/5E5179BB1757068D7028510FEEB1177AA7CC8818.mft
rsync://rpki.ripe.net/repository/DEFAULT/XlF5uxdXBo1wKFEP7rEXeqfMiBg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 May 2024 08:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:1b:fc:fc:8a:53:67:88:c4:38:76:79:e2:62:b3:06:ab:d1:65:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e5179bb1757068d7028510feeb1177aa7cc8818
Validity
Not Before: Aug 7 17:57:06 2023 GMT
Not After : Aug 5 18:02:06 2024 GMT
Subject: CN=72A03A78C19E2DDF1D3DAEF0DA61CD9FDAE4B1F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:91:d1:41:c6:35:09:4e:d6:b0:7a:d7:96:ab:
e1:fd:d8:b4:86:7e:bf:86:19:0a:79:2b:0c:07:66:
a9:35:90:08:b5:be:b7:19:95:9b:15:5c:fe:8e:e3:
4b:fd:10:35:0d:dc:2f:75:4e:0c:2d:f0:49:f7:31:
b7:1f:f2:ef:01:b8:cc:bb:97:b7:00:e5:fb:e3:e9:
82:b4:8c:ce:aa:f2:dd:d4:16:2f:72:80:65:73:4c:
99:7d:23:db:65:1b:07:07:42:ea:09:29:31:15:c7:
e4:fb:d6:94:58:cb:67:31:ee:55:d2:22:43:99:6f:
ad:c5:48:61:92:59:70:f0:fc:53:fa:99:fe:00:e8:
a5:29:0b:1b:0a:11:52:1d:4b:82:a1:38:cb:ab:60:
23:6a:8a:2a:17:63:d8:52:bf:53:a6:dd:6a:7e:f7:
da:6a:39:e2:00:90:f2:43:88:c0:24:f0:24:cf:a9:
99:0f:7b:a3:44:b1:f0:72:5f:d9:7f:47:49:4e:ff:
5c:6d:f2:41:38:ce:b7:d8:51:eb:aa:6c:0e:be:26:
cf:8e:8d:1c:73:a0:a5:d2:91:7f:47:8b:38:2e:79:
6c:06:05:d3:d5:2d:3a:d4:e5:92:1c:df:59:30:0f:
66:37:69:ee:f5:61:56:55:2a:f8:6b:49:3c:b9:5d:
93:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:A0:3A:78:C1:9E:2D:DF:1D:3D:AE:F0:DA:61:CD:9F:DA:E4:B1:F7
X509v3 Authority Key Identifier:
keyid:5E:51:79:BB:17:57:06:8D:70:28:51:0F:EE:B1:17:7A:A7:CC:88:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/5E5179BB1757068D7028510FEEB1177AA7CC8818.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XlF5uxdXBo1wKFEP7rEXeqfMiBg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/38332e3135302e3231372e302f32342d3234203d3e20323132353034.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.150.217.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:ba:c1:9a:26:f3:16:e1:64:d1:07:8e:38:59:71:78:47:92:
1b:ed:5f:0d:c5:42:62:06:4c:1c:62:e0:51:15:d5:06:8b:c2:
82:cf:a3:a6:2d:59:fa:76:49:02:79:2b:6d:86:76:3e:e6:e0:
8d:d1:fa:33:23:f7:4a:8f:87:a4:c6:db:9e:fd:03:79:0e:7a:
d0:af:3c:55:e2:11:45:09:ad:93:28:1d:ac:24:cd:5b:0f:9a:
6a:d5:19:65:54:63:b9:4a:5a:8b:27:80:cd:2e:08:2e:09:15:
9a:61:0e:8c:41:ee:41:b0:bd:f3:7d:08:7c:7f:89:7d:3f:79:
c0:ed:9a:4a:06:28:e8:c4:51:7d:74:83:05:f1:0d:45:0c:40:
92:c2:ea:60:60:03:5d:65:59:c3:31:c7:9d:34:80:f7:e3:df:
63:c8:09:ee:ba:e0:16:0e:3a:92:18:75:af:df:aa:27:3a:37:
73:93:be:76:00:4f:d1:11:97:30:c2:44:bb:71:5e:f3:c0:69:
14:56:71:62:7c:fd:8d:23:01:4d:18:14:aa:60:f2:91:74:0b:
d6:f6:02:91:b5:d6:d2:f9:b1:91:7c:c2:23:16:7b:7b:38:ac:
b0:df:8f:d1:fa:94:f2:42:ff:7b:dc:d7:87:06:d5:4f:f4:cb:
fc:02:a9:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 28 14:46:49 2024 by rpki-client on console-fra.rpki-client.org