Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/38332e3133382e35302e302f32342d3234203d3e20333936303236.roa
File: 38332e3133382e35302e302f32342d3234203d3e20333936303236.roa (raw, json)
Hash identifier: aGkutkuFvoReLAXnekUXaACBInWgGpPaZOg7j1/RDG8=
Subject key identifier: C2:05:4A:0D:B0:9B:BF:4C:FA:EF:91:D4:61:12:AD:36:00:63:99:40
Certificate issuer: /CN=cefce449bea8deaedb1804dba25c584df5873dc4
Certificate serial: 01DF79A95FE3A39C2EB0F3A97FBF916331B1A257
Authority key identifier: CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/38332e3133382e35302e302f32342d3234203d3e20333936303236.roa
Signing time: Mon 09 Oct 2023 20:05:41 +0000
ROA not before: Mon 09 Oct 2023 20:00:41 +0000
ROA not after: Mon 07 Oct 2024 20:05:41 +0000
asID: 396026
IP address blocks: 83.138.50.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.crl
rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.mft
rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 23:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:df:79:a9:5f:e3:a3:9c:2e:b0:f3:a9:7f:bf:91:63:31:b1:a2:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cefce449bea8deaedb1804dba25c584df5873dc4
Validity
Not Before: Oct 9 20:00:41 2023 GMT
Not After : Oct 7 20:05:41 2024 GMT
Subject: CN=C2054A0DB09BBF4CFAEF91D46112AD3600639940
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:de:7f:98:b4:c4:ae:6e:68:5e:26:7f:95:ac:
78:fa:58:d7:47:a3:35:69:9e:71:e6:4b:e4:24:23:
a5:be:9f:40:ec:93:c5:40:44:22:2d:0d:49:d3:6c:
23:42:20:0a:fb:57:97:29:f2:0f:7e:89:e3:09:50:
ed:73:a2:39:18:69:c6:99:d0:ec:1c:3c:5d:2e:37:
2b:ce:8c:fc:81:1f:fb:62:e1:11:b9:56:a3:f7:49:
78:bf:1d:90:d9:f9:9a:4a:66:1e:72:69:c3:58:81:
03:dd:7c:36:bf:6a:55:2b:56:06:85:93:96:7f:85:
09:e5:09:39:1e:ec:29:e0:dd:22:bb:54:8b:0d:33:
19:8f:d8:0a:9f:ef:23:c1:8d:4a:df:8e:d6:fe:67:
21:10:0f:de:8f:2c:ff:31:a9:ad:e8:5c:b0:83:1a:
c5:0a:3f:eb:4f:53:78:3a:12:53:63:98:dd:a6:f5:
62:ba:9e:b2:97:65:ae:2a:db:5f:08:88:33:be:af:
25:18:3a:57:e0:22:e9:43:af:46:81:06:43:bd:86:
73:27:00:29:a3:97:14:df:85:c9:16:5f:d0:b2:c4:
ad:cd:1e:72:58:30:71:c4:37:b9:64:8e:48:0f:07:
f2:19:36:4c:b0:f3:fb:67:3b:24:0f:cb:da:76:88:
ea:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:05:4A:0D:B0:9B:BF:4C:FA:EF:91:D4:61:12:AD:36:00:63:99:40
X509v3 Authority Key Identifier:
keyid:CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/38332e3133382e35302e302f32342d3234203d3e20333936303236.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.138.50.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:a7:65:28:59:ad:60:62:bd:25:95:8e:48:82:2a:f0:4a:d5:
a9:0a:32:3c:e4:77:77:e5:53:fc:63:8c:d9:b7:66:7d:c0:a6:
5c:85:fd:88:7f:e3:73:f8:97:5c:ea:02:c4:20:dd:98:27:1d:
d1:4e:4c:9b:90:f6:e7:e2:74:02:33:00:a2:fb:2d:c3:61:1b:
09:29:3b:77:0b:91:6c:ef:f1:25:3c:0a:7f:bb:76:ef:a3:ed:
3f:be:09:d3:31:bb:5d:07:1e:3f:53:7c:e3:4b:bc:2e:3c:84:
5e:de:c2:04:90:02:59:30:af:d4:d3:24:b1:41:1f:2f:8d:28:
13:68:4b:31:9e:9a:3b:23:0e:9b:7d:43:ce:82:de:26:2e:f5:
f5:dd:cd:98:cc:63:21:76:07:b5:16:45:d1:86:1d:4b:f7:84:
f3:cf:91:51:4b:29:b3:3f:d3:b7:19:a3:aa:e4:b2:15:b0:43:
09:3d:32:c8:85:57:81:2b:25:e3:50:9c:0b:43:ea:03:16:07:
6e:fd:07:88:81:8b:9d:f6:38:cf:fe:d7:28:95:67:18:81:65:
ec:59:ce:31:34:1a:78:ff:72:3f:13:1f:e9:08:3f:21:fd:a4:
9e:32:04:e9:22:b3:fd:49:27:6f:02:4c:9f:a2:43:cc:1a:c9:
f4:65:db:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 8 07:55:57 2024 by rpki-client on console-ams.rpki-client.org