Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3131322e3234382e302f32322d3234203d3e203437353833.roa
File: 38322e3131322e3234382e302f32322d3234203d3e203437353833.roa (raw, json)
Hash identifier: XoEMAEB+gE/Nsn8o7p5YMAeFmp6e+NHwTe98qEgYkb4=
Subject key identifier: C0:73:48:99:C6:C6:36:27:34:D1:43:E9:78:63:95:54:65:59:F1:52
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 3B0FEA9617848F4EAE04C36163A73B2F7F385B39
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3131322e3234382e302f32322d3234203d3e203437353833.roa
Signing time: Thu 04 Jul 2024 16:35:16 +0000
ROA not before: Thu 04 Jul 2024 16:30:16 +0000
ROA not after: Thu 03 Jul 2025 16:35:16 +0000
asID: 47583
IP address blocks: 82.112.248.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:0f:ea:96:17:84:8f:4e:ae:04:c3:61:63:a7:3b:2f:7f:38:5b:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jul 4 16:30:16 2024 GMT
Not After : Jul 3 16:35:16 2025 GMT
Subject: CN=C0734899C6C6362734D143E9786395546559F152
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:c9:fd:09:94:9d:40:d7:4f:8a:e7:68:15:25:
f1:fe:5e:89:3a:5a:28:24:7a:47:fc:29:69:20:10:
86:df:cd:b0:1a:a1:e6:3b:6f:aa:5f:c6:e8:30:73:
ab:39:97:08:d2:cf:38:b6:28:58:f9:12:3e:29:9a:
59:4d:04:be:9b:b4:8e:14:97:27:5c:f5:64:5c:fc:
12:e2:1a:2b:5d:82:26:e3:75:18:c2:b4:7e:6b:b6:
73:70:11:7c:d7:db:a0:f5:97:b5:2f:57:ae:2f:a4:
50:5d:1a:54:5d:5a:a8:c0:b1:35:c6:ea:fc:14:77:
c6:38:05:02:ce:8f:f8:a3:c5:de:e9:29:63:0d:ee:
74:c4:a6:99:86:33:c3:05:37:d2:d5:56:46:69:6c:
b4:38:80:e9:14:3b:c9:de:48:c3:c7:d1:17:0f:5c:
2a:f3:0c:b4:b2:63:71:c5:8d:8d:e6:54:5b:b6:ab:
c8:ca:ac:44:41:61:cb:e0:b5:d4:1d:40:c7:b7:41:
37:70:4e:64:24:3f:01:4a:b8:7c:22:1e:88:d8:80:
87:e4:c8:ca:23:3e:37:c1:16:f7:c1:84:a8:85:f8:
2c:78:2f:7d:05:8f:37:ee:8b:5d:43:5e:ff:93:34:
63:f7:0e:44:e0:24:85:0b:86:8b:d6:06:ce:49:10:
d9:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:73:48:99:C6:C6:36:27:34:D1:43:E9:78:63:95:54:65:59:F1:52
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3131322e3234382e302f32322d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.112.248.0/22
Signature Algorithm: sha256WithRSAEncryption
11:90:c8:8d:2d:a5:f8:7a:e1:dc:d7:b8:51:c0:a8:5a:0f:a0:
c9:79:35:0d:76:39:b8:68:8a:4d:55:fa:ce:a7:45:8b:4d:bd:
69:86:28:c9:6c:a0:f0:c2:c1:67:f4:39:62:63:19:0a:ac:0f:
03:cd:4f:37:62:c7:7d:e3:ce:93:61:fd:89:da:d6:3f:3f:dd:
b8:ec:3e:c1:fd:82:56:e1:c6:a3:21:d0:93:66:a4:5a:1f:cc:
74:bc:9c:e3:f1:2b:85:ef:f0:97:b5:fc:2d:44:4a:05:20:22:
d6:e4:f2:3b:5a:c4:be:ce:1a:22:7d:c7:09:83:53:54:34:00:
ab:6a:47:f2:0f:6e:58:97:b5:81:1d:ce:be:cc:88:68:7a:a1:
8e:c2:7e:7b:7b:60:48:b0:3e:88:15:c8:b2:04:eb:1c:a0:c4:
f5:d4:6a:74:a9:e8:97:59:57:13:99:34:04:04:12:c5:25:e0:
28:c2:c5:57:17:6e:7f:8c:a1:38:32:ed:a1:a8:3c:24:0a:51:
8c:f0:98:a6:0f:46:b4:ff:73:76:57:05:b0:90:41:5c:e6:14:
33:f3:87:82:ef:6d:f7:bf:a0:1b:e0:47:f9:1e:27:21:df:08:
9a:65:f4:57:72:fb:cc:e6:3f:4e:c5:24:f2:55:44:54:7b:ed:
7a:d9:63:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:35:26 2024 by rpki-client on console-ams.rpki-client.org