Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/38322e3131382e32392e302f32342d3234203d3e20323036303932.roa
File: 38322e3131382e32392e302f32342d3234203d3e20323036303932.roa (raw, json)
Hash identifier: /utqcMu5yYb9VYRP/qbdpwv9+p2e2tNF7zO2A+Og+Mg=
Subject key identifier: 36:D3:99:BE:F2:A3:22:6F:3F:13:7D:FE:81:6A:A8:3F:9D:4E:06:C4
Certificate issuer: /CN=0d059f10d18d00052c808eb8069f90d47e30564a
Certificate serial: 18A6D640FC06EF351115A077486337EA5C6A14E9
Authority key identifier: 0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/38322e3131382e32392e302f32342d3234203d3e20323036303932.roa
Signing time: Thu 04 Apr 2024 11:05:14 +0000
ROA not before: Thu 04 Apr 2024 11:00:14 +0000
ROA not after: Thu 03 Apr 2025 11:05:14 +0000
asID: 206092
IP address blocks: 82.118.29.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.mft
rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:a6:d6:40:fc:06:ef:35:11:15:a0:77:48:63:37:ea:5c:6a:14:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d059f10d18d00052c808eb8069f90d47e30564a
Validity
Not Before: Apr 4 11:00:14 2024 GMT
Not After : Apr 3 11:05:14 2025 GMT
Subject: CN=36D399BEF2A3226F3F137DFE816AA83F9D4E06C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:35:66:61:0e:28:5d:f4:05:e6:98:e3:eb:a6:
f6:dc:a1:5a:bd:95:65:41:67:05:ec:af:9b:64:0e:
e0:38:68:ba:cb:72:61:d2:1c:77:9d:18:6c:72:c2:
05:86:47:c5:24:99:ab:de:6e:8e:8b:80:c2:a3:e8:
20:f4:9e:da:17:c8:68:76:28:86:1a:5d:53:58:50:
f0:18:85:c4:8f:c2:fd:dc:05:7b:c3:15:56:92:26:
d5:ba:52:b5:64:31:0e:03:73:4a:5b:83:1c:b1:eb:
a9:19:b0:2a:be:57:89:5e:08:cb:98:94:4f:23:42:
8e:bb:d1:51:1c:5c:52:41:66:d7:ed:97:61:1c:59:
a6:f5:8c:ae:45:93:14:bf:af:81:70:61:8d:fe:d0:
7c:41:b1:24:3e:8b:f2:e9:3b:41:4b:a4:74:0b:91:
bd:8d:c9:55:dd:00:29:5b:ea:be:1b:5e:fa:f5:3d:
6f:eb:8f:55:56:87:ff:f0:ec:18:20:4f:1f:77:f0:
df:04:a3:e5:fa:df:11:ff:33:1c:84:d8:29:4f:42:
ba:9a:63:56:5b:17:22:87:a6:62:02:e6:12:1f:8e:
cf:8e:4e:23:b7:3e:73:3c:7b:a8:9f:27:18:02:20:
62:76:41:91:7d:c0:b2:2b:5d:eb:d5:b8:c1:05:a2:
a2:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:D3:99:BE:F2:A3:22:6F:3F:13:7D:FE:81:6A:A8:3F:9D:4E:06:C4
X509v3 Authority Key Identifier:
keyid:0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/38322e3131382e32392e302f32342d3234203d3e20323036303932.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.118.29.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:a0:03:ee:0f:58:9f:93:8a:03:13:bf:58:a7:fb:e4:31:40:
cc:cf:8f:c0:56:d5:5b:e6:c4:81:89:d3:b7:df:af:00:d3:76:
93:af:af:26:a9:d1:f2:10:6e:7c:76:03:7a:5c:4a:b1:78:e9:
8b:22:3a:97:7a:34:e6:6c:ec:f3:20:f9:be:59:82:96:4f:67:
23:bd:72:c1:15:c5:12:f0:71:34:11:6c:b1:21:ed:6e:4e:f1:
b1:ab:5f:10:3a:27:ff:4f:61:85:75:ad:ae:e7:2c:4f:94:88:
0c:45:81:72:8f:cc:61:61:c7:66:9f:f8:5e:46:75:0d:0d:f2:
59:51:eb:0c:00:63:7e:f1:d3:cf:ce:13:05:6c:b6:ec:38:00:
12:32:8c:d0:6d:ee:25:32:f3:69:bd:71:07:6b:4b:4c:dc:93:
53:9e:ba:65:ab:c0:1a:2a:76:5f:1e:af:00:a0:8b:21:6d:84:
06:c2:4b:f5:4d:55:89:2b:db:b0:69:5b:58:bd:ca:1f:16:c5:
9d:4c:95:0a:15:17:36:a5:83:58:d0:96:0a:68:d6:c6:0a:ac:
df:c6:8b:b8:2b:e6:74:18:19:f3:2f:59:e9:b7:ef:f0:4e:e4:
94:31:74:f7:a5:cf:68:28:f7:40:48:e9:f5:a5:45:0a:59:db:
4d:97:fa:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 17:32:44 2024 by rpki-client on console-fra.rpki-client.org