Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/33312e3138372e36362e302f32342d3234203d3e20313336373837.roa
File: 33312e3138372e36362e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: om90gnd1E64xFCFinQbRfAJYqrzZ+3MAvp60XG5eL8k=
Subject key identifier: 39:57:7C:D4:40:5E:7C:81:DB:77:6D:71:C0:25:3C:AD:E1:73:58:65
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 294A62E8B1B6EE2CA47BEC9325EC9537A911F28C
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/33312e3138372e36362e302f32342d3234203d3e20313336373837.roa
Signing time: Sun 26 Nov 2023 19:47:31 +0000
ROA not before: Sun 26 Nov 2023 19:42:31 +0000
ROA not after: Sun 24 Nov 2024 19:47:31 +0000
asID: 136787
IP address blocks: 31.187.66.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 14:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:4a:62:e8:b1:b6:ee:2c:a4:7b:ec:93:25:ec:95:37:a9:11:f2:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Nov 26 19:42:31 2023 GMT
Not After : Nov 24 19:47:31 2024 GMT
Subject: CN=39577CD4405E7C81DB776D71C0253CADE1735865
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:21:51:3d:0b:bc:f2:e4:da:c2:a3:02:a1:43:
15:5f:8f:1b:6b:65:a0:25:2d:80:5c:4e:1d:fe:e7:
09:30:74:a7:b2:6a:77:27:cb:78:f8:98:46:88:97:
b3:15:9a:f9:a6:15:16:4a:9b:bd:4d:1b:9e:28:77:
8c:b3:c8:27:e9:74:7e:22:cf:5e:7e:a0:81:42:3a:
45:e0:93:ca:37:c6:cf:65:db:0e:e1:15:a6:b7:80:
99:b2:b2:53:34:e5:a0:e1:41:e4:e6:1d:57:b0:bf:
88:f6:66:39:05:53:5f:35:b3:0b:75:87:3d:bb:fe:
b8:59:6d:71:0e:d8:31:c4:cd:45:4f:d7:c6:ba:89:
d6:2d:9e:00:91:62:5d:e3:38:c7:53:d7:3a:7e:dc:
1e:de:82:95:c1:c5:1a:e5:46:34:7c:b4:7f:3f:53:
70:06:74:9c:04:aa:7a:a1:72:95:36:09:ab:99:77:
67:14:1d:7b:6e:ac:9d:66:81:91:84:be:f8:61:3e:
0e:cc:53:b2:2f:da:23:93:64:cf:3a:69:91:e8:c1:
2e:d7:3b:57:ec:ea:82:fd:52:e7:26:37:4d:08:f0:
1f:79:f7:41:bf:03:9f:57:ef:17:c3:15:3d:a0:d7:
b3:74:4c:f5:57:9d:d9:54:0a:6a:13:57:1c:86:76:
bb:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:57:7C:D4:40:5E:7C:81:DB:77:6D:71:C0:25:3C:AD:E1:73:58:65
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/33312e3138372e36362e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.187.66.0/24
Signature Algorithm: sha256WithRSAEncryption
87:90:3c:31:75:4d:32:61:5a:09:93:11:f8:5c:69:18:0e:1b:
7d:ea:d9:e8:af:d3:e0:61:ad:29:b3:d0:5f:f9:df:16:cb:5a:
80:3f:91:9a:5d:47:9e:1d:a6:e1:a4:be:02:06:75:8a:f9:c7:
a3:7f:e2:8e:6b:25:b1:7b:59:a1:48:92:07:89:53:ea:2a:c1:
a8:ce:2d:1f:d1:2f:0f:03:ec:77:37:74:47:e7:e2:d3:a9:94:
0e:28:4f:6d:7f:70:9a:07:9b:2c:0e:ed:a2:77:8f:23:cb:bd:
00:cf:3f:59:fe:6a:6f:c1:a0:c7:f2:11:21:70:74:a5:a4:7f:
e8:bb:2a:6b:cc:27:53:7a:b9:fd:a8:da:16:97:86:2c:d4:41:
1d:c0:ec:73:1d:ec:4d:ba:a6:52:4c:70:d9:dc:de:09:08:db:
dd:3b:d4:02:d7:65:15:0f:96:28:3f:b6:31:80:43:1e:33:7f:
64:d8:00:3e:a9:ea:fd:94:d4:76:ba:67:b4:4b:b2:54:86:ed:
77:7b:fe:ba:70:32:75:41:7d:ca:4c:19:18:34:ce:64:16:1a:
62:45:4a:cf:c9:1f:87:fc:91:09:5a:c9:13:bc:57:7a:a9:be:
e1:22:49:e6:4f:11:1d:db:6e:55:65:72:5e:38:36:e8:23:12:
34:c0:6f:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 21:49:15 2024 by rpki-client on console-ams.rpki-client.org