Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/38322e3131382e32362e302f32342d3234203d3e20323132343737.roa
File: 38322e3131382e32362e302f32342d3234203d3e20323132343737.roa (raw, json)
Hash identifier: fPcUpNy+WOhAEIKu4xebTqjF/pK5l+6MORmL6bSk7iA=
Subject key identifier: EA:C8:39:AF:EB:71:C2:D0:D3:5B:A4:E7:99:17:BC:8E:22:A2:31:83
Certificate issuer: /CN=0d059f10d18d00052c808eb8069f90d47e30564a
Certificate serial: 338E2EC6E882AD5A9B4BD4FD855419955A1A0F11
Authority key identifier: 0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/38322e3131382e32362e302f32342d3234203d3e20323132343737.roa
Signing time: Sun 04 Aug 2024 01:05:19 +0000
ROA not before: Sun 04 Aug 2024 01:00:19 +0000
ROA not after: Sun 03 Aug 2025 01:05:19 +0000
asID: 212477
IP address blocks: 82.118.26.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.mft
rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:8e:2e:c6:e8:82:ad:5a:9b:4b:d4:fd:85:54:19:95:5a:1a:0f:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d059f10d18d00052c808eb8069f90d47e30564a
Validity
Not Before: Aug 4 01:00:19 2024 GMT
Not After : Aug 3 01:05:19 2025 GMT
Subject: CN=EAC839AFEB71C2D0D35BA4E79917BC8E22A23183
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a6:72:86:03:eb:08:15:e2:d4:03:66:5d:b2:
5f:41:86:81:2c:59:05:4f:bf:73:a5:8e:2f:0d:d7:
3b:31:19:82:a4:6b:ac:82:8f:18:b3:fc:3f:2a:46:
83:3e:b6:0b:61:65:ce:04:0d:f3:73:c0:1e:b3:84:
16:15:cd:7e:26:b0:f7:a8:3a:79:be:80:12:e3:d7:
4d:d5:c3:d6:02:d4:05:cf:38:34:85:99:b5:0f:5d:
34:3b:41:1b:2d:62:4c:26:44:2c:59:6f:cc:84:49:
64:16:be:6f:4c:9e:66:ef:9c:bd:fd:e7:f6:a1:e5:
7c:51:0d:50:9e:7a:fc:48:66:a5:72:c5:bd:ae:0f:
55:52:61:b5:8c:52:04:a8:43:06:a0:df:54:9b:7a:
ff:b0:75:97:65:9a:31:1e:04:b0:a5:e9:4d:87:b2:
3a:29:a4:46:be:55:f1:c7:72:10:92:5b:5c:16:c9:
4d:31:fa:44:7a:d4:a1:e0:6c:cb:b7:52:4a:f3:46:
24:fb:0a:13:c5:40:ea:28:59:be:45:9d:17:3c:30:
d1:8c:c6:f2:d4:16:c0:88:84:00:92:b3:0c:68:82:
14:22:3e:60:d0:b9:f0:d7:d0:7a:96:12:b2:ff:72:
e3:c5:64:11:ce:7a:4f:06:0d:d4:89:d4:90:c2:e0:
7f:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:C8:39:AF:EB:71:C2:D0:D3:5B:A4:E7:99:17:BC:8E:22:A2:31:83
X509v3 Authority Key Identifier:
keyid:0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/38322e3131382e32362e302f32342d3234203d3e20323132343737.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.118.26.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:2b:44:8a:b1:a8:4c:2d:51:06:da:84:96:b9:0e:8b:77:7d:
3c:1d:1f:f4:01:ba:99:e3:98:1b:d4:f3:da:b2:ce:80:26:63:
46:9e:da:02:bd:2e:17:b7:b8:4d:e2:9c:2e:b7:20:27:4d:7b:
b0:a9:28:bd:39:ec:d7:bf:38:be:aa:ed:46:dc:c1:e8:bf:c3:
fc:72:e8:c5:a4:7b:3c:4e:1e:9a:b2:a3:45:b0:43:73:b2:e2:
a6:1d:79:6e:b4:96:9e:6d:4d:5b:ab:91:b9:7d:d7:e8:92:a4:
49:13:34:a4:bf:f7:eb:58:ca:86:a9:29:cf:92:08:89:da:a1:
2b:d5:3b:22:55:96:64:a0:ec:79:85:b1:d9:24:3a:28:23:47:
6f:c5:c0:48:e7:a2:e5:82:2b:49:97:84:74:48:2a:71:ae:ce:
23:be:50:88:21:fc:6a:b7:d2:da:6f:3f:25:38:77:0b:49:56:
1c:db:2d:3e:ff:56:4d:d6:cf:ff:21:d1:44:e1:fe:db:06:41:
4a:13:96:4c:ca:da:0d:87:9d:20:fd:37:a2:fc:8e:dc:16:ee:
48:88:87:e2:83:5d:19:07:22:43:a6:6c:8d:88:0b:78:d6:e6:
2f:84:a8:9a:e0:88:8e:b2:c9:c6:f1:fa:be:80:fc:8e:3d:7b:
dc:d2:c5:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 07:03:46 2024 by rpki-client on console-fra.rpki-client.org