Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3134392e37322e302f32342d3234203d3e20323034313730.roa
File: 38322e3134392e37322e302f32342d3234203d3e20323034313730.roa (raw, json)
Hash identifier: 55O1XEFMzB35o/OvGqxIW1mdf63Dcn2lWDvOdztQv40=
Subject key identifier: 1A:C4:F5:0C:9F:19:F7:8A:10:BA:69:14:84:BD:49:9E:9B:09:F8:69
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 21F311DBCB62FA911CCEADF8D5E6E2A50AA1F0E2
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3134392e37322e302f32342d3234203d3e20323034313730.roa
Signing time: Wed 17 Jul 2024 14:04:14 +0000
ROA not before: Wed 17 Jul 2024 13:59:14 +0000
ROA not after: Wed 16 Jul 2025 14:04:14 +0000
asID: 204170
IP address blocks: 82.149.72.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:f3:11:db:cb:62:fa:91:1c:ce:ad:f8:d5:e6:e2:a5:0a:a1:f0:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jul 17 13:59:14 2024 GMT
Not After : Jul 16 14:04:14 2025 GMT
Subject: CN=1AC4F50C9F19F78A10BA691484BD499E9B09F869
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:7b:f9:c3:e7:e3:53:29:9c:33:63:31:63:f8:
42:3b:c2:6f:ed:e4:e7:95:6a:fa:e7:a5:8e:c8:3f:
0c:cf:3e:c4:24:23:94:29:ba:23:56:78:2f:8c:b3:
42:c7:d5:be:63:56:7f:23:6f:56:f6:fd:a2:9a:05:
ab:72:0a:be:1c:75:f5:95:73:3c:14:4d:9d:fd:b0:
b7:d7:e8:38:b1:31:73:1d:25:c7:7f:16:6d:b7:d8:
7a:5c:d9:5d:2a:88:fa:ce:e3:1c:33:cc:e8:18:26:
c9:b2:b1:0c:50:e1:ec:7b:b3:43:ea:13:3f:31:f0:
bb:5f:d4:fc:a3:b6:22:6c:a2:c2:12:69:69:bf:9f:
42:63:2c:22:fd:3b:8b:11:53:fc:be:e2:7e:ca:cd:
db:02:69:9e:7d:9b:1e:b6:2c:9a:8f:46:4e:5e:11:
f9:40:5a:11:e6:9e:ae:43:af:ca:bc:2b:95:77:79:
3a:eb:25:27:04:02:59:71:3e:1f:23:a3:10:6e:66:
aa:42:b9:2b:15:09:8a:c3:38:a5:64:3e:0c:6f:b6:
cb:9e:44:88:3e:e9:e7:32:cf:df:1b:15:66:b3:68:
50:5b:52:80:0f:2b:01:35:a7:a0:78:57:92:fe:56:
37:86:89:f6:d3:eb:58:00:58:65:cf:5c:6d:bc:ae:
7b:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:C4:F5:0C:9F:19:F7:8A:10:BA:69:14:84:BD:49:9E:9B:09:F8:69
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3134392e37322e302f32342d3234203d3e20323034313730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.149.72.0/24
Signature Algorithm: sha256WithRSAEncryption
84:37:d1:07:76:0c:b7:39:e6:0a:55:af:ee:1b:47:10:26:74:
6c:1b:d3:df:dd:78:c6:ac:ec:72:81:df:51:6c:07:45:ec:7b:
9b:b1:8c:43:b5:77:51:9e:7c:9e:19:05:ae:9e:63:19:7e:76:
d7:6d:79:2c:9c:cd:29:11:47:b0:37:6e:88:ff:cc:fa:2e:04:
b7:d8:a5:54:3d:86:4d:62:de:a2:7f:db:f9:9a:4c:99:06:a3:
a2:2d:97:86:ac:d2:93:1b:ae:7c:4e:32:3b:aa:d0:f6:4b:11:
61:a7:4a:f1:4b:11:37:4f:dd:4a:e1:51:62:d9:05:ef:2a:15:
db:af:c5:fa:62:ff:54:92:17:2b:e0:f4:35:d8:92:b1:76:c5:
d9:a8:f0:58:a5:46:72:26:49:c8:37:4a:f2:70:7f:38:ec:05:
35:42:74:c3:5f:1d:50:b5:2b:fb:af:6d:64:ea:1a:60:38:ab:
e2:fb:a4:0e:6a:fa:f2:09:82:ef:46:8f:d0:1e:80:7c:b8:e1:
b2:33:6b:41:5e:a0:42:96:ad:67:47:bf:9f:11:1d:20:70:03:
69:fd:7c:32:72:0c:59:08:f4:02:69:66:05:33:0f:3e:08:06:
11:a3:50:e0:27:fa:f0:90:bb:0e:c3:65:d2:d1:5a:5d:70:ef:
5c:5a:2f:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 03:29:15 2024 by rpki-client on console-ams.rpki-client.org