Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3134392e37322e302f32322d3232203d3e20323034313730.roa
File: 38322e3134392e37322e302f32322d3232203d3e20323034313730.roa (raw, json)
Hash identifier: n9UUCQBpBrZmAgRib19s0FRAP7bg2wZ5o4Q8kD/NsFY=
Subject key identifier: 7D:82:92:39:1A:27:67:FA:ED:3F:1A:22:96:C7:09:61:8D:A5:D7:70
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 4CBA7165866218E6BD00B1EDB6E6E8EBA8F75B14
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3134392e37322e302f32322d3232203d3e20323034313730.roa
Signing time: Tue 08 Aug 2023 08:34:13 +0000
ROA not before: Tue 08 Aug 2023 08:29:13 +0000
ROA not after: Tue 06 Aug 2024 08:34:13 +0000
asID: 204170
IP address blocks: 82.149.72.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 May 2024 02:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:ba:71:65:86:62:18:e6:bd:00:b1:ed:b6:e6:e8:eb:a8:f7:5b:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Aug 8 08:29:13 2023 GMT
Not After : Aug 6 08:34:13 2024 GMT
Subject: CN=7D8292391A2767FAED3F1A2296C709618DA5D770
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:18:eb:ee:1b:2c:58:f4:21:ba:4c:33:71:10:
89:72:27:44:24:bd:28:04:b8:e0:c5:cf:3d:91:46:
0c:6d:b3:98:9e:71:37:61:d7:56:34:a2:72:27:b5:
83:a7:31:87:f5:7a:2a:b7:9b:08:61:bf:14:53:38:
5c:04:1c:e8:27:2b:f5:79:66:1c:99:57:5a:c9:b7:
46:fe:cc:a3:ff:eb:9e:42:8d:4b:cb:8f:ec:84:62:
0c:ef:56:27:c3:19:44:de:91:11:6b:91:b0:af:5a:
0d:9a:df:e2:33:d7:a0:a1:eb:d5:71:cb:de:ef:bb:
33:df:60:b7:85:35:40:d4:83:88:38:1d:6b:26:85:
63:81:82:0a:d2:30:fe:5c:87:18:b5:14:2c:4c:36:
85:1e:c8:50:93:3e:4e:b2:77:e1:15:df:8a:31:0d:
08:22:68:d0:ae:f9:80:9b:e9:5f:98:f7:c5:06:52:
ec:3f:ac:9c:73:78:d8:3b:07:76:2c:5f:86:51:3e:
31:76:9b:d5:51:35:00:a7:42:b8:8a:72:80:fe:33:
16:db:2a:d5:06:94:36:98:c8:4b:e3:1f:6e:37:b0:
6c:8d:62:66:8e:e7:f8:44:29:ca:91:0c:a9:ba:ab:
87:85:71:94:83:8a:f6:77:20:c4:dc:bb:0c:a8:05:
7a:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:82:92:39:1A:27:67:FA:ED:3F:1A:22:96:C7:09:61:8D:A5:D7:70
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3134392e37322e302f32322d3232203d3e20323034313730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.149.72.0/22
Signature Algorithm: sha256WithRSAEncryption
6f:b7:1c:fc:e4:b0:4c:b0:e3:c0:6f:a5:53:ec:7a:40:3a:ae:
a8:a1:14:ff:5f:d0:07:5b:2d:1b:12:d8:6d:58:45:d6:8f:67:
1e:b6:3f:ca:49:d1:30:b4:90:f8:67:2f:25:da:47:9f:89:86:
04:11:8e:ae:56:51:9a:29:f6:58:4c:86:dd:34:f2:bb:f6:d6:
34:2a:95:bb:58:64:10:b7:24:ad:ca:d8:d0:aa:0f:a0:e7:79:
4d:c5:61:e1:48:94:10:26:de:37:d4:32:25:20:f1:c4:f8:ae:
7e:e3:3f:40:ad:7d:e6:50:6f:20:17:82:8c:6f:96:88:7d:c9:
e0:19:32:00:1b:2f:0d:93:72:28:2a:b3:67:33:46:77:9d:c4:
9b:29:49:a7:4e:26:7a:01:44:6f:47:79:53:b4:d1:6f:f1:6e:
04:cd:ca:c9:4a:83:55:de:52:bc:18:52:b0:be:c2:3f:e4:07:
ba:c4:d6:6a:01:1f:22:c6:12:a8:08:c0:ea:bd:bc:0f:c1:31:
3e:c9:31:34:77:93:14:b0:14:98:91:7f:ed:99:c3:c7:ad:95:
7f:81:e3:f6:57:99:11:06:fb:8f:fc:fd:6a:17:e5:ac:cf:9c:
9a:41:89:83:24:9d:1b:8b:ad:9f:96:ee:a6:79:71:8f:e0:d6:
9b:3f:03:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 08:01:45 2024 by rpki-client on console-fra.rpki-client.org