Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/38332e3135302e3231382e302f32342d3234203d3e20313939343135.roa
File: 38332e3135302e3231382e302f32342d3234203d3e20313939343135.roa (raw, json)
Hash identifier: 36SJwMwQnc5Z6CaXgIV9Q5f7SC9VmcHf8jjJMOMqEFE=
Subject key identifier: 8B:0D:18:C0:8B:C8:18:81:5F:BF:5A:AC:2A:F3:82:B0:9D:FB:33:7C
Certificate issuer: /CN=5e5179bb1757068d7028510feeb1177aa7cc8818
Certificate serial: 54BDD5E447CCCAA96BEF951437AF8874EF499177
Authority key identifier: 5E:51:79:BB:17:57:06:8D:70:28:51:0F:EE:B1:17:7A:A7:CC:88:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XlF5uxdXBo1wKFEP7rEXeqfMiBg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/38332e3135302e3231382e302f32342d3234203d3e20313939343135.roa
Signing time: Sun 07 Jul 2024 11:05:18 +0000
ROA not before: Sun 07 Jul 2024 11:00:18 +0000
ROA not after: Sun 06 Jul 2025 11:05:18 +0000
asID: 199415
IP address blocks: 83.150.218.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/5E5179BB1757068D7028510FEEB1177AA7CC8818.crl
rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/5E5179BB1757068D7028510FEEB1177AA7CC8818.mft
rsync://rpki.ripe.net/repository/DEFAULT/XlF5uxdXBo1wKFEP7rEXeqfMiBg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:bd:d5:e4:47:cc:ca:a9:6b:ef:95:14:37:af:88:74:ef:49:91:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e5179bb1757068d7028510feeb1177aa7cc8818
Validity
Not Before: Jul 7 11:00:18 2024 GMT
Not After : Jul 6 11:05:18 2025 GMT
Subject: CN=8B0D18C08BC818815FBF5AAC2AF382B09DFB337C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:74:06:ba:8d:d7:fa:9d:50:b2:11:be:fd:a3:
f5:d4:c6:a4:c8:9c:51:34:eb:c8:19:a6:74:90:d0:
bb:b9:9b:91:98:38:a0:e9:b9:41:eb:7d:91:05:55:
20:c5:8c:3c:6e:7b:48:46:51:b4:00:78:56:21:29:
ec:6d:dc:87:f0:04:f0:f0:b1:fd:4b:62:bf:75:85:
04:7d:a0:81:c9:87:b0:f3:48:e6:02:e3:59:41:f3:
71:aa:59:2c:5a:8b:25:6e:79:6d:0b:b6:34:90:c8:
58:a7:85:b5:ea:3c:94:fb:60:39:74:33:52:32:0b:
21:84:7c:9e:f2:3e:cb:1f:15:ab:23:80:6f:52:f7:
28:3a:94:c5:e2:b0:ef:cf:1a:0f:e1:84:1f:60:af:
42:38:72:65:a9:9b:5f:b0:f7:11:cd:f9:1c:cd:67:
76:32:cb:1c:dc:e2:2d:29:bf:c4:8b:8d:76:18:73:
99:ae:35:54:21:97:70:51:13:1a:8a:8e:c7:17:1e:
53:24:c7:a7:68:fa:c4:fc:0d:11:98:c3:8d:da:a7:
59:80:ef:39:ff:23:03:33:30:8e:3e:d6:c2:bb:90:
5b:15:64:3d:19:1e:eb:9c:2e:76:12:22:8e:97:de:
64:83:69:ac:53:54:e7:56:32:e4:41:a1:f1:6c:5c:
9f:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:0D:18:C0:8B:C8:18:81:5F:BF:5A:AC:2A:F3:82:B0:9D:FB:33:7C
X509v3 Authority Key Identifier:
keyid:5E:51:79:BB:17:57:06:8D:70:28:51:0F:EE:B1:17:7A:A7:CC:88:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/5E5179BB1757068D7028510FEEB1177AA7CC8818.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XlF5uxdXBo1wKFEP7rEXeqfMiBg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/38332e3135302e3231382e302f32342d3234203d3e20313939343135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.150.218.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:8e:b1:e3:7b:e6:c8:fe:51:b0:be:21:52:b2:0e:50:d3:34:
c0:46:b2:f8:49:df:45:81:98:df:c7:2e:92:c2:49:79:35:ed:
87:56:15:20:1d:d7:26:46:52:e1:b0:54:4f:1d:4f:d5:7f:03:
c5:24:23:78:a1:e7:ad:f9:d0:7b:e0:72:2a:30:ec:af:02:f8:
17:90:dc:6e:b8:a9:75:ea:20:e7:8a:95:b1:44:51:11:3e:19:
52:6e:f1:3a:8c:e7:f5:8d:16:88:78:09:81:25:9e:25:af:2d:
7c:9a:1f:1a:b0:29:8a:b6:c3:cb:13:3d:a3:cf:cc:52:8f:f9:
54:ba:36:c1:2d:a6:78:3b:28:d6:ff:81:fc:5b:72:07:2e:ef:
89:2e:ff:c7:f1:e6:e3:ad:23:40:8b:02:36:1e:50:db:2f:8c:
23:4c:a3:7c:0b:8e:6b:46:40:64:08:4f:90:05:4f:e7:32:7d:
eb:40:c0:ed:6d:51:d4:39:ac:53:84:06:ba:75:4e:2e:8e:62:
96:c8:c2:99:03:cc:88:91:65:55:bb:a7:c3:5e:03:c6:99:ac:
95:38:ae:b3:e3:5f:f9:d1:42:f3:4b:a0:5c:7d:d2:f7:ee:d1:
d8:75:2a:c9:29:59:0e:83:17:8d:48:d6:2e:ab:4a:1d:d4:ff:
84:82:0b:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 22:24:49 2024 by rpki-client on console-ams.rpki-client.org