Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38302e37352e31372e302f32342d3234203d3e20323036323833.roa
File: 38302e37352e31372e302f32342d3234203d3e20323036323833.roa (raw, json)
Hash identifier: iH5rUjYNn/lzI7FlEVJZOYaVkVsDFPpaSyD9j3o/944=
Subject key identifier: C3:CB:0F:65:01:9D:4C:A4:07:25:CA:8E:97:98:D5:DF:C0:76:F9:32
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 5F83E038F2231A835CFD0006E749B260DAC8A698
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38302e37352e31372e302f32342d3234203d3e20323036323833.roa
Signing time: Tue 02 Apr 2024 09:27:18 +0000
ROA not before: Tue 02 Apr 2024 09:22:18 +0000
ROA not after: Tue 01 Apr 2025 09:27:18 +0000
asID: 206283
IP address blocks: 80.75.17.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:83:e0:38:f2:23:1a:83:5c:fd:00:06:e7:49:b2:60:da:c8:a6:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Apr 2 09:22:18 2024 GMT
Not After : Apr 1 09:27:18 2025 GMT
Subject: CN=C3CB0F65019D4CA40725CA8E9798D5DFC076F932
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:b5:70:5a:b9:dd:85:13:80:5a:d1:19:d1:ec:
d3:d4:17:8a:a9:dc:81:5c:d4:31:79:8c:0f:f1:9b:
86:28:76:ec:eb:85:9f:65:bb:b2:50:18:bc:f0:bc:
a4:a9:80:7e:20:bf:2b:15:10:4f:ed:05:52:d6:18:
74:d5:e0:f5:65:a1:3a:72:02:50:e7:50:d7:58:19:
dc:af:0c:c5:60:5d:4b:3b:8c:ba:40:36:98:d7:87:
27:f7:6f:70:25:f8:d6:4e:e5:cc:1d:c6:6a:c7:bd:
05:35:b1:34:4c:34:1e:ca:f7:94:71:95:f7:66:52:
0f:bd:ae:05:d6:19:c1:1f:e7:24:ac:83:7f:46:dc:
cf:58:0e:20:8e:89:04:9c:8c:1a:9b:27:d1:93:0f:
1f:c5:a5:d1:86:4b:68:1e:24:01:59:05:ef:db:67:
ca:ef:0c:b8:59:51:28:a4:ab:eb:ae:36:91:fa:a4:
3d:d7:be:9a:87:6d:0d:f1:8c:12:ce:23:5b:07:84:
0e:8e:58:43:02:0f:5a:5b:56:c0:37:83:89:74:01:
c8:c3:1e:74:8e:ab:c1:9a:eb:68:3e:e9:88:c6:fe:
3b:61:33:fc:8e:7f:d6:5c:84:cc:c6:b0:48:75:f7:
ee:d8:52:d8:aa:2a:b1:1a:31:95:d6:fc:05:19:9d:
f7:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:CB:0F:65:01:9D:4C:A4:07:25:CA:8E:97:98:D5:DF:C0:76:F9:32
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38302e37352e31372e302f32342d3234203d3e20323036323833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.75.17.0/24
Signature Algorithm: sha256WithRSAEncryption
14:a2:eb:b2:cc:28:cb:ad:65:5d:5c:6d:30:4d:5a:dd:c6:9e:
19:96:39:a2:f2:e5:45:0a:71:b6:4d:81:a4:5a:2a:ce:03:f3:
f8:ad:b1:9f:4f:d0:9e:82:60:fe:b3:b4:69:39:b4:70:37:6d:
00:be:e2:d0:77:b1:87:7a:ce:8a:cf:f0:58:3d:d1:07:46:80:
07:e5:45:d5:86:1a:57:59:6a:f8:09:f3:2c:7f:ac:9a:6d:a3:
08:44:06:50:0f:6d:f2:d3:da:b3:4e:05:c5:af:ae:44:b6:aa:
fc:92:67:c7:91:1d:54:3f:75:54:cc:77:8a:f2:3a:5e:81:bb:
e6:7d:88:d6:94:a9:cd:9f:b6:23:23:19:3c:9e:fc:e2:32:e4:
10:c9:6a:bd:6e:ce:aa:f4:88:c2:aa:9c:35:b9:a2:50:d5:65:
e3:09:95:b6:bf:ed:70:25:dd:14:df:86:5a:72:4f:2a:aa:44:
db:d1:fa:58:5f:5b:90:f4:7b:84:92:f0:b1:77:8e:f1:df:fa:
19:a3:b3:90:4b:ad:69:98:4b:39:20:04:e7:6f:a3:2e:ec:1e:
aa:44:72:04:d5:01:2e:3a:76:b6:00:c4:33:6a:09:a1:31:c7:
0a:1f:9a:b9:91:9a:98:e9:6c:b3:48:f2:e1:46:87:15:4a:a3:
52:bd:dd:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 18:06:16 2024 by rpki-client on console-fra.rpki-client.org