Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/38322e3131382e32392e302f32342d3234203d3e20323036313530.roa
File: 38322e3131382e32392e302f32342d3234203d3e20323036313530.roa (raw, json)
Hash identifier: 6RvBoNNOnvKHi6cQrJWK6hMKLDlAlqGQf8eQsKw5Pro=
Subject key identifier: 28:FD:9A:94:F6:28:5D:79:C0:98:FF:BD:59:5C:AD:92:8D:86:F3:37
Certificate issuer: /CN=0d059f10d18d00052c808eb8069f90d47e30564a
Certificate serial: 51E78A16BD430E740BDBA063EAE5E4D570CF69C2
Authority key identifier: 0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/38322e3131382e32392e302f32342d3234203d3e20323036313530.roa
Signing time: Thu 04 Apr 2024 11:05:15 +0000
ROA not before: Thu 04 Apr 2024 11:00:15 +0000
ROA not after: Thu 03 Apr 2025 11:05:15 +0000
asID: 206150
IP address blocks: 82.118.29.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.mft
rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:e7:8a:16:bd:43:0e:74:0b:db:a0:63:ea:e5:e4:d5:70:cf:69:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d059f10d18d00052c808eb8069f90d47e30564a
Validity
Not Before: Apr 4 11:00:15 2024 GMT
Not After : Apr 3 11:05:15 2025 GMT
Subject: CN=28FD9A94F6285D79C098FFBD595CAD928D86F337
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:6d:a9:b4:39:4a:af:9c:44:7c:5d:63:a7:0e:
99:80:80:3c:56:c0:af:c7:c9:c0:e9:d0:53:1e:88:
69:63:e8:13:5d:40:12:e6:72:85:82:2c:f4:ef:3b:
6f:fe:ef:e1:99:95:22:0c:fd:dd:00:0a:29:63:71:
5a:30:96:d0:48:b2:5d:ee:92:09:9c:1a:01:c5:64:
61:de:2f:72:fe:40:f4:96:44:40:ef:7c:68:e6:46:
8a:f4:5c:f4:00:9d:2a:3e:62:50:18:62:35:13:ff:
8f:67:a6:96:b5:8e:33:11:25:24:98:ef:89:8c:06:
6b:b3:7e:73:3a:fc:bf:f9:47:7a:6d:b8:f9:cd:7f:
03:eb:89:03:55:71:71:85:f9:77:e7:e6:68:fb:a9:
29:50:5a:c9:e8:43:35:5d:ac:f6:1f:3a:67:61:63:
87:37:40:f6:e5:51:ec:37:e8:b5:1f:0c:40:aa:5e:
90:7a:c8:63:01:6c:41:7e:55:00:08:96:81:a8:ba:
66:46:23:d8:07:62:4a:29:52:72:e7:43:dc:25:6e:
02:a3:1a:ea:2a:11:86:f7:3e:e8:bb:cd:0f:cd:4c:
5d:40:e6:20:3a:02:15:07:9f:ba:26:1d:fa:67:6a:
84:ff:2e:09:7a:3c:ac:b5:3b:ae:38:d9:ce:66:ca:
a6:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:FD:9A:94:F6:28:5D:79:C0:98:FF:BD:59:5C:AD:92:8D:86:F3:37
X509v3 Authority Key Identifier:
keyid:0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/38322e3131382e32392e302f32342d3234203d3e20323036313530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.118.29.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:07:0e:fd:2d:85:62:45:fd:35:08:c7:9d:78:9b:80:c8:5a:
76:84:e1:78:24:56:26:a1:85:bc:ed:0d:0e:d7:d7:6e:c4:ca:
7a:66:d5:63:e6:fe:21:75:34:4d:40:ef:d6:1d:02:5b:c4:31:
aa:72:78:73:2a:de:4b:69:ab:52:0c:67:11:60:46:f9:1c:d5:
2c:00:4d:60:2a:bc:66:bf:0f:3d:08:06:be:26:3f:e9:6b:bc:
23:4a:09:43:d4:19:bf:54:b6:30:61:c0:08:ff:c4:38:75:88:
c5:9c:8f:26:1c:50:d7:47:c8:eb:84:87:a5:e8:f0:43:bb:05:
91:6f:ee:c4:b2:53:0a:cd:b0:07:84:3b:c3:c5:03:33:ca:c8:
bf:ae:e0:c3:de:88:82:f8:45:16:a3:ba:64:e9:bd:d9:e6:4a:
19:f8:59:a5:41:ac:06:e0:a2:61:a0:f0:ce:47:9e:e2:21:11:
35:5a:2e:49:da:90:72:ed:85:2b:22:df:7e:57:ec:c3:f1:04:
24:10:29:a8:38:37:10:a5:08:22:91:c9:ac:90:b0:07:8b:f6:
42:15:5d:75:bb:4e:ed:3b:19:98:e5:6c:a1:a2:e0:9d:ce:39:
05:14:9e:41:76:e4:f8:80:6b:73:87:b1:d7:40:22:3e:5a:f3:
e6:ba:4e:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 06:41:51 2024 by rpki-client on console-ams.rpki-client.org