Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/38302e37312e3134382e302f32342d3234203d3e20323031333431.roa
File: 38302e37312e3134382e302f32342d3234203d3e20323031333431.roa (raw, json)
Hash identifier: v+PYean9ftuFallkbRLWqEmTMzaG3KASHL0UsSW6Lww=
Subject key identifier: B3:44:3A:33:70:A1:82:DC:7F:40:28:CF:21:CD:D8:79:15:8E:D5:72
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 77358C7847D9FD3755BEF83E1D5E660D063E97DD
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/38302e37312e3134382e302f32342d3234203d3e20323031333431.roa
Signing time: Thu 21 Dec 2023 16:14:43 +0000
ROA not before: Thu 21 Dec 2023 16:09:43 +0000
ROA not after: Thu 19 Dec 2024 16:14:43 +0000
asID: 201341
IP address blocks: 80.71.148.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft
rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 May 2024 08:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:35:8c:78:47:d9:fd:37:55:be:f8:3e:1d:5e:66:0d:06:3e:97:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 21 16:09:43 2023 GMT
Not After : Dec 19 16:14:43 2024 GMT
Subject: CN=B3443A3370A182DC7F4028CF21CDD879158ED572
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:9e:24:4e:b4:eb:66:2e:f2:a4:13:8f:e2:6b:
4f:ff:df:dc:d2:a4:6a:bf:0f:7c:a8:8f:75:6b:20:
bd:74:45:27:fb:e7:96:8b:98:5a:4b:1b:f9:0e:c0:
93:ab:5b:fb:37:59:ca:de:de:f7:9e:3f:04:6a:2a:
4e:f8:22:7c:16:2f:08:c1:06:3d:14:08:af:71:66:
d4:9b:09:c0:72:1d:34:b8:be:66:fb:81:45:5f:ee:
bb:db:c5:e4:54:99:08:2a:8d:a8:c1:b4:de:5b:31:
e2:00:c2:ff:28:dd:24:75:9f:eb:70:20:16:2c:16:
9c:ba:19:24:a9:b6:3f:a0:57:7c:68:92:a4:9a:38:
8a:5c:19:80:66:1d:7e:d5:25:6f:00:bf:4f:b8:58:
96:02:a2:e1:76:8b:7a:2f:9a:c9:61:48:c8:fd:31:
d4:33:35:85:3e:6d:c5:0b:d0:9d:a1:94:05:94:38:
00:8b:d3:96:13:88:5c:31:72:e7:70:15:84:41:65:
3f:3f:2f:f0:fe:10:53:0e:e7:6e:de:7a:55:b2:e5:
c5:b8:25:31:55:c7:2e:18:e5:bc:b4:ea:7f:09:2b:
e6:46:d0:50:0d:81:44:59:b9:19:c5:f0:2b:c6:1a:
9b:28:44:da:e1:ac:97:d3:0b:e9:8d:a7:67:cd:1e:
e8:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:44:3A:33:70:A1:82:DC:7F:40:28:CF:21:CD:D8:79:15:8E:D5:72
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/38302e37312e3134382e302f32342d3234203d3e20323031333431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.71.148.0/24
Signature Algorithm: sha256WithRSAEncryption
59:d0:4f:1c:8f:07:49:41:48:0e:b3:7c:4b:4a:6b:cf:cc:9e:
84:c2:f1:04:ce:d7:a0:e9:42:d0:98:3f:96:d1:df:db:39:2b:
11:b0:10:84:f8:9f:5d:71:b6:88:f4:96:fc:7d:f7:21:02:75:
fe:dc:e8:e1:2a:02:f3:d6:57:e9:84:2c:c1:04:d4:cb:d9:7b:
7d:f3:ff:6b:33:c1:26:a6:ae:ab:48:be:7e:87:99:84:8e:bb:
4a:9c:06:ce:25:5c:c3:4b:8b:87:1b:d2:81:e3:c0:22:fc:bd:
e2:23:df:ac:c5:89:32:00:30:bc:c3:82:ab:46:68:8a:13:f0:
45:9c:37:bc:ef:04:8e:7f:1e:fe:5b:b6:f4:b4:20:41:15:18:
a3:52:42:dc:ff:d4:5e:82:77:d7:5e:5f:80:68:81:6d:66:9f:
4b:4b:2c:62:54:b2:e6:c9:9e:f1:f6:47:7a:fd:2f:4f:f7:1b:
f7:df:49:11:87:e2:b0:16:70:d6:75:cd:22:e5:13:e2:09:76:
79:fa:72:93:06:f2:be:2c:a1:86:f5:2c:4d:91:0d:8e:7d:cd:
bf:24:02:63:d4:b1:3f:94:33:d6:da:11:80:a6:28:16:07:fb:
1f:1a:aa:c9:c6:e3:31:b2:87:f5:b4:91:9f:ae:cc:b7:dd:6e:
1d:d0:4b:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 28 14:46:51 2024 by rpki-client on console-fra.rpki-client.org