Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38312e31372e3132312e302f32342d3234203d3e20313336373837.roa
File: 38312e31372e3132312e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: grHFs1CPqBqINW750oWjKYE1eULeGPPGOfws85sxh/M=
Subject key identifier: 1B:AC:63:60:A6:7D:E2:F6:68:75:47:31:20:4A:28:EC:C3:10:00:49
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 6A0E95040A6845B9C91DBC407671B46045713C42
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38312e31372e3132312e302f32342d3234203d3e20313336373837.roa
Signing time: Wed 25 Oct 2023 18:30:19 +0000
ROA not before: Wed 25 Oct 2023 18:25:19 +0000
ROA not after: Wed 23 Oct 2024 18:30:19 +0000
asID: 136787
IP address blocks: 81.17.121.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 14:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:0e:95:04:0a:68:45:b9:c9:1d:bc:40:76:71:b4:60:45:71:3c:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Oct 25 18:25:19 2023 GMT
Not After : Oct 23 18:30:19 2024 GMT
Subject: CN=1BAC6360A67DE2F668754731204A28ECC3100049
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e4:64:d7:b6:14:8b:ae:3e:c0:66:11:1c:67:
3f:4a:fb:ef:a6:85:e8:c3:52:b5:6f:bd:ff:9e:28:
2b:a1:e9:29:d2:13:f6:a7:a1:3c:e8:88:a1:84:21:
43:c2:44:98:b6:da:27:19:8b:26:52:86:ae:ba:2e:
e3:70:12:e6:18:1a:b3:fd:02:ba:4f:22:2b:9e:c7:
6b:c3:3b:c0:c7:f7:b9:c9:11:ba:88:15:53:87:5a:
35:90:d4:73:da:ea:47:e3:f4:c2:19:e4:13:ea:4d:
35:bd:bd:eb:53:69:81:1c:55:a3:18:81:7b:eb:cf:
90:58:87:04:cc:3a:2f:4f:6e:ca:5c:cc:b2:71:da:
26:e0:cf:96:b9:6a:c8:a7:b4:44:f3:cc:cf:c3:0b:
bb:ed:7a:42:f1:a2:59:71:2b:65:d8:08:b9:13:30:
2b:8f:5e:39:6a:ee:10:7f:af:83:df:55:c8:ee:5f:
b0:8d:f3:0f:2a:d9:88:53:d6:76:ac:e8:94:4d:10:
66:ca:4c:83:bb:56:8f:29:86:83:a5:5e:0e:14:fb:
68:7a:ac:31:1a:ed:b7:69:03:30:43:a8:e9:1e:e4:
f9:95:34:7a:9d:95:20:f9:a9:4f:d8:44:60:65:e0:
ec:7b:9a:80:e8:6f:39:79:c4:27:5f:e6:7c:82:9a:
ac:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:AC:63:60:A6:7D:E2:F6:68:75:47:31:20:4A:28:EC:C3:10:00:49
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38312e31372e3132312e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.17.121.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:37:26:14:39:67:f2:0b:33:5e:80:f5:e2:15:79:c0:80:ed:
50:44:ca:29:b7:9f:19:ef:91:d4:30:06:6e:3d:41:4c:41:eb:
fe:b8:96:ec:bf:e3:20:7e:ef:4e:1d:c5:aa:62:e1:c5:c3:42:
94:24:a9:58:87:7e:74:7e:49:6d:ea:6b:4e:b0:9a:a0:bf:75:
f0:82:a6:d1:3f:20:67:4f:68:e2:90:cd:ce:5c:e8:e8:dc:5a:
7f:01:e7:e6:a9:f0:57:a7:1d:81:b4:c0:5f:ad:85:ed:6f:19:
41:a8:91:50:d8:7e:14:55:77:bc:60:f0:fe:61:f0:1d:29:fd:
75:3c:17:08:c1:7d:58:d7:ff:9a:d9:6d:ce:6b:3f:e5:c6:f5:
3b:d9:3f:a1:15:56:6c:7c:f7:da:52:28:cf:6a:27:f6:b1:a5:
4c:cb:00:7f:e9:36:ca:3e:67:c2:9f:76:c7:51:2d:df:29:ae:
9e:58:48:be:d3:1a:21:b0:b7:91:bb:49:a2:63:7a:db:de:9c:
07:da:b7:bc:05:ae:cf:0d:61:c4:a9:5d:7c:c3:a1:18:ea:43:
cb:1a:50:d5:9a:37:02:91:e4:f5:08:35:e3:ac:5c:49:85:58:
b3:08:28:8b:9d:58:52:1a:52:ab:94:dd:42:29:90:6e:07:fb:
39:e3:4b:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 21:49:16 2024 by rpki-client on console-ams.rpki-client.org