Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/33312e3232302e31302e302f32342d3234203d3e20313336373837.roa
File: 33312e3232302e31302e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: CxTCYOhwBXXN8hgX1iiYNzjpET76BjyYbDkW25QzjVU=
Subject key identifier: 4D:E0:1D:53:9C:E0:EB:ED:40:7F:37:AA:27:49:AF:05:C7:B5:03:0C
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 7D7BE4AF534D031BBB3EAC1AAA6DE4C9690BBD61
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/33312e3232302e31302e302f32342d3234203d3e20313336373837.roa
Signing time: Sun 26 Nov 2023 19:47:27 +0000
ROA not before: Sun 26 Nov 2023 19:42:27 +0000
ROA not after: Sun 24 Nov 2024 19:47:27 +0000
asID: 136787
IP address blocks: 31.220.10.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:7b:e4:af:53:4d:03:1b:bb:3e:ac:1a:aa:6d:e4:c9:69:0b:bd:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Nov 26 19:42:27 2023 GMT
Not After : Nov 24 19:47:27 2024 GMT
Subject: CN=4DE01D539CE0EBED407F37AA2749AF05C7B5030C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:93:a9:71:6a:d5:65:22:48:74:2d:75:1f:d9:
44:1a:25:0f:25:e3:9d:0d:11:ef:9b:91:ed:c9:01:
35:4f:48:b6:a0:03:0b:66:ee:e0:e8:b8:4f:cc:a2:
cb:a2:9f:03:3e:e6:20:33:1a:df:4b:05:ca:e3:74:
b0:97:81:f3:ac:29:bf:e9:db:d6:c5:4b:7d:94:d6:
19:f9:96:01:65:72:4c:3b:c8:23:d9:ba:3b:f5:0a:
89:7b:85:a1:ea:de:5a:18:f7:23:5a:2d:38:23:bd:
b8:48:fe:3e:45:d4:1f:06:a9:b8:46:c9:35:f9:c0:
45:74:8e:70:31:47:6e:f5:e1:24:11:1a:d7:35:75:
25:fb:07:fc:b0:d9:22:55:42:3b:b9:7a:d6:1f:16:
14:c1:a9:b7:6a:e7:e0:d7:47:36:f7:2b:bf:05:b9:
8a:21:dc:3a:d6:ce:bb:fc:d5:29:8c:43:5e:18:d6:
dc:49:4c:61:72:83:81:8f:bd:37:9b:9c:e7:77:05:
23:3b:2c:f9:bb:8b:3e:21:e3:82:70:24:9c:bd:df:
bf:90:85:b4:ee:69:43:56:4a:05:5d:e7:4e:54:61:
e1:f5:87:4a:ee:b3:9c:07:f0:a7:a4:96:fd:02:22:
cc:52:42:4b:c5:96:21:f7:21:23:a7:7f:3c:75:de:
53:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:E0:1D:53:9C:E0:EB:ED:40:7F:37:AA:27:49:AF:05:C7:B5:03:0C
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/33312e3232302e31302e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.220.10.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:19:c7:05:c9:f1:42:6d:5e:2c:9e:26:69:45:a7:06:05:cf:
63:1a:89:4f:2c:98:72:80:57:f2:3d:c2:78:78:70:98:12:aa:
1e:02:b0:20:ea:04:0f:17:23:bb:48:53:9a:52:0d:e8:19:fd:
4d:eb:84:67:33:f7:30:27:50:da:41:c2:b9:b9:e3:21:fd:a0:
11:e7:9f:7f:1d:a1:e4:01:df:59:76:a0:c5:40:fc:9b:93:0c:
f9:06:0e:04:e1:e9:bc:2c:d4:90:d7:35:b2:f9:84:c3:12:79:
64:81:4a:ca:98:cc:9a:2d:8f:2a:42:70:d1:fd:c5:c5:bc:41:
21:2d:00:9b:06:fb:04:64:ee:e2:bc:f2:3f:30:a6:dc:b6:a0:
ac:1e:6c:c9:50:c3:2f:3e:73:c4:36:cf:63:61:ae:1a:46:6a:
93:1d:fa:88:d6:c3:00:25:24:09:60:19:77:31:92:31:a4:38:
91:d2:49:ca:08:48:d0:3a:50:ce:13:e6:2e:ee:63:6c:c8:a6:
46:92:d2:67:01:35:38:96:3c:93:b5:c5:5f:75:8f:a5:bf:6b:
82:57:00:79:75:6c:f3:51:d2:ec:50:80:4b:d7:b8:6c:da:e1:
eb:31:cb:ab:a0:34:0b:7a:a1:53:c0:1a:4a:4a:7b:b7:fd:2c:
5c:e0:71:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 11:32:59 2024 by rpki-client on console-ams.rpki-client.org