Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/38332e3135302e3231392e302f32342d3234203d3e203533333430.roa
File: 38332e3135302e3231392e302f32342d3234203d3e203533333430.roa (raw, json)
Hash identifier: woOa8XrslJUNd/zhwfkw+8SfH4VdemvQujuqkpyzwss=
Subject key identifier: 03:B7:78:84:C7:E1:11:49:A3:0C:96:4A:E2:38:95:F8:6A:09:BE:88
Certificate issuer: /CN=5e5179bb1757068d7028510feeb1177aa7cc8818
Certificate serial: 352C612F641B3AAD77F35D9BCE7B8E547AA89950
Authority key identifier: 5E:51:79:BB:17:57:06:8D:70:28:51:0F:EE:B1:17:7A:A7:CC:88:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XlF5uxdXBo1wKFEP7rEXeqfMiBg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/38332e3135302e3231392e302f32342d3234203d3e203533333430.roa
Signing time: Thu 07 Nov 2024 17:43:27 +0000
ROA not before: Thu 07 Nov 2024 17:38:27 +0000
ROA not after: Thu 06 Nov 2025 17:43:27 +0000
asID: 53340
IP address blocks: 83.150.219.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/5E5179BB1757068D7028510FEEB1177AA7CC8818.crl
rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/5E5179BB1757068D7028510FEEB1177AA7CC8818.mft
rsync://rpki.ripe.net/repository/DEFAULT/XlF5uxdXBo1wKFEP7rEXeqfMiBg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:2c:61:2f:64:1b:3a:ad:77:f3:5d:9b:ce:7b:8e:54:7a:a8:99:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e5179bb1757068d7028510feeb1177aa7cc8818
Validity
Not Before: Nov 7 17:38:27 2024 GMT
Not After : Nov 6 17:43:27 2025 GMT
Subject: CN=03B77884C7E11149A30C964AE23895F86A09BE88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:d5:fa:48:aa:56:10:61:35:92:00:6f:5f:8c:
6b:13:84:ba:f0:d5:bd:c1:ad:88:86:c3:85:66:5c:
52:85:c5:35:fc:ea:55:cb:68:fa:74:9a:e0:2c:63:
ce:be:00:b2:2e:e1:dd:e3:19:1f:9b:7a:a9:eb:ff:
e4:80:96:92:2f:e2:cf:f7:8d:16:69:80:9f:86:32:
53:95:fa:b8:e8:59:8f:d8:93:a8:57:4e:24:5e:65:
31:bb:bf:b7:28:8f:90:78:53:1e:b6:d7:61:41:0c:
7e:65:26:71:c2:c1:f5:69:7d:de:69:fa:a8:92:dd:
27:bb:cb:8d:37:9d:7c:9c:60:77:4e:50:b7:4f:2f:
42:7f:ee:7a:b0:6b:ba:c9:be:c1:c5:5d:64:9e:a2:
44:7e:18:0b:ea:92:e6:db:6d:19:05:46:6e:04:66:
fc:7b:3a:06:8f:6d:d1:a5:99:4e:33:f7:e5:a8:45:
0d:82:e4:82:93:ac:1e:e4:c0:fc:55:f4:cc:db:f0:
bc:b1:ca:05:18:c3:63:d8:df:0e:71:6b:4e:b5:45:
64:bc:cd:3f:32:4e:01:a2:41:58:5c:9f:6c:04:5d:
5f:63:0d:c0:c2:29:9c:76:4a:04:34:a9:74:3f:83:
2a:67:cd:24:49:88:22:da:4c:e3:17:1b:a6:4e:54:
0d:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:B7:78:84:C7:E1:11:49:A3:0C:96:4A:E2:38:95:F8:6A:09:BE:88
X509v3 Authority Key Identifier:
keyid:5E:51:79:BB:17:57:06:8D:70:28:51:0F:EE:B1:17:7A:A7:CC:88:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/5E5179BB1757068D7028510FEEB1177AA7CC8818.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XlF5uxdXBo1wKFEP7rEXeqfMiBg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/38332e3135302e3231392e302f32342d3234203d3e203533333430.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.150.219.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:93:8d:b0:9f:4f:b3:cf:c9:17:c7:6e:fd:31:5a:55:43:5d:
d9:ed:2e:96:dd:da:cb:db:59:b4:d4:b7:cd:94:0f:17:33:90:
fc:f6:f3:1c:0a:bd:af:0f:d5:93:5d:86:fb:54:36:f7:8a:9d:
cd:29:a2:8c:80:14:40:fe:a0:3a:68:6b:0d:24:57:78:ff:6f:
08:8d:ef:e2:8b:a7:bd:0e:c6:7a:4c:87:d3:68:0c:2d:32:b2:
ee:df:16:a4:21:36:1e:7d:8d:33:57:4b:a9:ea:24:e7:10:d0:
f2:90:18:63:b4:d2:72:32:64:e2:e4:99:26:17:63:b3:6f:cc:
0c:ff:67:be:68:18:d8:f4:c6:28:10:36:0f:b2:17:b8:86:1b:
38:a8:9b:24:3a:5c:36:04:af:be:25:4f:75:66:14:07:96:c5:
cd:be:38:19:59:4f:e9:81:d5:09:34:14:36:6f:cf:b9:5e:eb:
5e:5e:24:70:c4:b4:39:48:b3:9d:d1:1f:23:52:9a:28:f7:4a:
49:f4:46:9a:6c:4a:34:8b:7e:2e:0c:73:36:ae:23:cb:d1:25:
db:7c:fe:5c:08:37:43:2d:14:b1:78:5e:d2:9c:74:3e:44:a4:
6a:cd:15:3c:b9:65:aa:7c:33:79:7f:96:bc:88:f2:a5:0f:4c:
61:76:56:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 12:18:36 2024 by rpki-client on console-ams.rpki-client.org